Sign Up
Log In
Log In
or
Sign Up
Places
All Projects
Status Monitor
Collapse sidebar
GNOME:Factory
webkit2gtk3
webkit2gtk3.changes
Overview
Repositories
Revisions
Requests
Users
Attributes
Meta
File webkit2gtk3.changes of Package webkit2gtk3
------------------------------------------------------------------- Thu Nov 14 10:18:18 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org> - Add 63f7badbada070ebaadd318b2801818ecf7e7ea0.patch: Fix build using ICU 76.1. ------------------------------------------------------------------- Tue Nov 12 17:24:48 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com> - Add 9e9ea966373d3858668f6a29d8ba91a5807c8dd8.patch: Fix aspect ratio in videos with gststreamer-1.24.9. ------------------------------------------------------------------- Mon Nov 4 16:08:38 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.46.3 (boo#1232747): + Flatten layers to a plane when preseve-3d style is set. + Fix DuckDuckGo links by adding a user agent quirk. + Fix several crashes and rendering issues. + Security fixes: CVE-2044-44244, CVE-2024-44296. - Drop bug281492.patch: fixed upstream. ------------------------------------------------------------------- Mon Oct 21 15:09:18 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.46.2: + Own well-known bus name on a11y bus. + Improve memory consumption when putImageData is used repeatedly on accelerated canvas. + Disable cached web process suspension for now to prevent leaks. + Improve text kerning with different combinations of antialias and hinting settings. + Destroy all network sessions on process exit. + Fix visible rectangle calculation when there are animations. + Fix the build with ENABLE_NOTIFICATIONS=OFF. + Fix the build with ENABLE_FULLSCREEN_API=OFF. + Fix the build with ENABLE_WEB_AUDIO=OFF. + Fix the build on ppc64le. + Fix several crashes and rendering issues. - Drop bug281495.patch: fixed upstream. ------------------------------------------------------------------- Wed Oct 16 21:49:23 UTC 2024 - Michael Gorse <mgorse@suse.com> - Add bug281492.patch: fix crash in AccessibilityAtspi::textAttributes. - Add bug281495.patch: fix crash in ProcessLauncher socket monitor callback. ------------------------------------------------------------------- Fri Oct 4 11:19:52 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.46.1: + Fix login QR code not shown in WhatsApp web. + Disable PSON by default again in GTK 3 API versions. + Disable DMABuf video sink by default to prevent file descriptor leaks. + Fix the build with GCC 13. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Tue Sep 17 19:04:26 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.46.0 (boo#1231039): + Use Skia instead of cairo for 2D rendering and enable GPU rendering by default. + Enable offscreen canvas by default. + Add support for system tracing with Sysprof. + Implement printing using the Print portal. + Add new API to load settings from a config file. + Add a new setting to enable or disable the 2D canvas acceleration (enabled by default). + Undeprecate console messages API and make it available in 6.0 API. + Security fixes: CVE-2024-40866, CVE-2024-44187, CVE-2044-44185. ------------------------------------------------------------------- Wed Sep 11 16:53:03 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.45.92: + Add webkit://gpu/stdout to dump the information from webkit://gpu to stdout. + Undeprecate injected bundle frame access interfaces. + Fix drag and drop. + Fix connection to a11y bus under flatpak. + Fix the build with Wayland and GBM disabled. + Fix linker relocation errors on Debug/RelWithDebInfo builds. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Tue Sep 10 21:35:51 UTC 2024 - Michael Gorse <mgorse@suse.com> - Up gcc requirement to match cmake check. Remove wpe and wpebackend-fdo from BuildRequires: no longer used. ------------------------------------------------------------------- Mon Sep 9 21:12:42 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.45.91: + Add new API to WebKitAutomationSession to be notified when the session is about to be closed. + Fix WebGL with accelerated compositing disabled. + Fix image filtering not being applied in some cases. + Fix the build on 32 bits systems. + Fix the build with -DUSE_TEXTURE_MAPPER_DMABUF=OFF + Fix several crashes and rendering issues. + Updated translations. - Rebase patch with quilt. - Drop webkit2gtk3-disable-dmabuf-nvidia.patch: Should not be needed anymore. - Pass USE_SYSTEM_SYSPROF_CAPTURE=NO to cmake, avoid building sysprof capture for now. - Disable LTO on x86 and ppc64le. ------------------------------------------------------------------- Mon Sep 9 20:12:42 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.44.4: + Add quirk to allow totale.rosettastone.com to load properly. + Fix webkit_web_resource_get_data() not working properly in some sites. + Fix not being able to jump-to-source in Web Inspector canvas traces. + Fix not being able to scroll list of WebGL shader programs in the Web Inspector. + Fix linker relocation errors on Debug/RelWithDebInfo builds. + Fix crashes when built with Clang with Link-Time Optimization (LTO). + Fix several crashes and rendering issues. - Drop revert-271175.patch: Fixed upstream. - Enable LTO again, pass define _lto_cflags for only select targets ------------------------------------------------------------------- Sun Sep 1 16:30:22 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com> - Add revert-271175.patch: This reverts commit 279c9d7, it broke wasm. ------------------------------------------------------------------- Tue Aug 13 16:48:56 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.44.3 (boo#1228696 boo#1228697 boo#1228698): + Fix web process cache suspend/resume when sandbox is enabled. + Fix accelerated images dissapearing after scrolling. + Fix video flickering with DMA-BUF sink. + Fix pointer lock on X11. + Fix movement delta on mouse events in GTK3. + Undeprecate console message API and make it available in 2022 API. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-40776, CVE-2024-40779, CVE-2024-40780, CVE-2023-40782, CVE-2024-40785, CVE-2024-40789, CVE-2024-40794, CVE-2024-4558, CVE-2024-27838, CVE-2024-27851. - Drop patches now upstream: 9d5844679af8f84036f1b800307e799bd7ab73ba.patch webkit2gtk3-CVE-2024-40776.patch webkit2gtk3-CVE-2024-40779.patch webkit2gtk3-CVE-2024-40780.patch webkit2gtk3-CVE-2024-40782.patch ------------------------------------------------------------------- Thu Aug 1 20:25:14 UTC 2024 - Michael Gorse <mgorse@suse.com> - Add CVE fixes: + webkit2gtk3-CVE-2024-40776.patch (boo#1228613 CVE-2024-40776) + webkit2gtk3-CVE-2024-40779.patch (boo#1228693 CVE-2024-40779) + webkit2gtk3-CVE-2024-40780.patch (boo#1228694 CVE-2024-40780) + webkit2gtk3-CVE-2024-40782.patch (boo#1228695 CVE-2024-40782) ------------------------------------------------------------------- Tue Jul 2 21:39:04 UTC 2024 - Bjørn Lie <bjorn.lie@gmail.com> - Add 9d5844679af8f84036f1b800307e799bd7ab73ba.patch VA+DMABuf videos flicker ------------------------------------------------------------------- Fri May 17 20:40:00 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.44.2 (boo#1225071): + Make gamepads visible on axis movements, and not only on button presses. + Disable the gst-libav AAC decoder. + Make user scripts and style sheets visible in the Web Inspector. + Use the geolocation portal where available, with the existing geoclue as fallback if the portal is not usable. + Use the printing portal when running sandboxed. + Use the file transfer portal for drag and drop when running sandboxed. + Avoid notifying an empty cursor rectangle to input methods. + Remove empty bar shown in detached inspector windows. + Consider keycode when activating application accelerators. + Fix the build with ENABLE_WEBAUDIO disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-27834, CVE-2024-27808, CVE-2024-27820, CVE-2024-27833. - Update keyring (taken from rawhide). ------------------------------------------------------------------- Tue Apr 16 16:42:31 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.44.1: + Fix handling of lifetime of web view child dialogs in GTK4. + Do not schedule layer flushes when drawing area size is empty. + Fix videos with alpha when using the DMA-BUF sink. + Fix the build with USE_GBM=OFF. + Fix the build in 32bit platforms + Fix several crashes and rendering issues. - Drop webkit2gtk3-271108.patch: fixed upstream. ------------------------------------------------------------------- Wed Mar 20 12:19:12 UTC 2024 - Michael Gorse <mgorse@suse.com> - Use WebAssembly on aarch64. It is the upstream default and no longer makes the build fail. Stop passing -DENABLE_C_LOOP=ON, -DENABLE_WEBASSEMBLY=OFF and -DENABLE_SAMPLING_PROFILER=OFF for the same reason. - Drop webkit2gtk3-llint-build-fix.patch: no longer needed. - Update some version requirements to match cmake checks. ------------------------------------------------------------------- Mon Mar 18 12:15:24 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org> - Add webkit2gtk3-271108.patch: Fix build on 32bit archs (https://bugs.webkit.org/show_bug.cgi?id=271108). ------------------------------------------------------------------- Sat Mar 16 09:36:58 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.44.0 (boo#1222010): + Make the DOM accessibility tree reachable from UI process with GTK4. + Removed the X11 and WPE renderers in favor of DMA-BUF. + Improved vblank synchronization when rendering. + Removed key event reinjection in GTK4 to make keyboard shortcuts work in web sites. + Fix gamepads detection by correctly handling focused window in GTK4. + Security fixes: CVE-2024-23252, CVE-2024-23254, CVE-2024-23263, CVE-2024-23280, CVE-2024-23284, CVE-2023-42950, CVE-2023-42956, CVE-2023-42843. - Rebase webkit2gtk3-disable-dmabuf-nvidia.patch. ------------------------------------------------------------------- Tue Mar 5 16:20:56 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org> - baselibs.conf: Do not build libjavascriptcoregtk-4_1-0-32bit and libwebkit2gtk-4_1-0-32bit: they are not used, and in fact not built in Factory (build excluded). ------------------------------------------------------------------- Thu Feb 29 13:15:27 UTC 2024 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.43.4: + Remove key event reinjection in GTK4 to make keyboard shortcuts work in web sites. + Use the new GTK API to create a GdkTexture from a DMA-BUF buffer when available. + Fix rendering when GTK is using the vulkan renderer. + Fix gamepads detection by correctly handling focused window in GTK4. + Fix rendering after history navigation. + Write bwrapinfo.json to disk for xdg-desktop-portal. + Fixed several memory leaks in media backend. + Fix several crashes and rendering issues. - Changes from version 2.43.3: + Show vblank monitor information in webkit://gpu. + Fallback to timer based vblank monitor if drmWaitVBlank fails. + Fix several memory leaks in media backend. + Fix several crashes and rendering issues. - Changes from version 2.43.2? + Remove the X11 and WPE renderers. + Release unused buffers when the view is hidden. + Fix flickering while playing videos with DMA-BUF sink. + Do not special case the "sans" font family name. + Fix webkit_web_context_allow_tls_certificate_for_host() for IPv6 URIs produced by SoupURI. + Fix several crashes and rendering issues. - Changes from version WebKitGTK 2.43.1? + Improve vblank synchronization when rendering. + Improve DMA-BUF buffers handling for video frames. + Use the buffer format preferred by the driver in DMA-BUF renderer. + Do not block the compositing thread waiting for rendering threads. + Improve performance when scaling images in a canvas. + Fix several crashes and rendering issues. + Updated translations. - Drop webkit2gtk3-create-destroy-egl-image.patch: fixed upstream. - Add libbacktrace-devel BuildRequires (for gtk4 flavor). ------------------------------------------------------------------- Fri Feb 16 15:33:11 UTC 2024 - Michael Gorse <mgorse@suse.com> - Increase mem_per_process again to match what is in SLE. The build was sporadically failing there (bsc#1198743). - Require libwaylandclient0 >= 1.20. 15.4 originally had 1.19.0, but webkitgtk uses a function added in 1.20.0, so we need to ensure that the wayland update is pulled in (bsc#1215072). ------------------------------------------------------------------- Thu Feb 15 04:03:27 UTC 2024 - Michael Gorse <mgorse@suse.com> - Fix package names for v6, and obsolete old packages. ------------------------------------------------------------------- Wed Feb 14 17:44:28 UTC 2024 - Michael Gorse <mgorse@suse.com> - Use gcc 11 on SLE, to match what is currently used on SP4, and adjust version check to include SP6. Also, use system malloc there; the build currently fails without this (webkit#243535). - Require gcc >= 10.2 to match the current cmake test. - Disable jpegxl on SLE; it isn't currently available there. ------------------------------------------------------------------- Mon Feb 5 16:58:41 UTC 2024 - Michael Gorse <mgorse@suse.com> - Update to version 2.42.5 (boo#1219604): + Fix webkit_web_context_allow_tls_certificate_for_host to handle IPv6 URIs produced by SoupURI. + Ignore stops with offset zero before last one when rendering gradients with cairo. + Write bwrapinfo.json to disk for xdg-desktop-portal. + Fix gamepads detection by correctly handling focused window in GTK4. + Fix several crashes and rendering issues. + Security fixes: CVE-2024-23222, CVE-2024-23206, CVE-2024-23213, CVE-2024-23271. - Drop webkit2gtk3-CVE-2024-23222.patch: fixed upstream. - Add webkit2gtk3-llint-build-fix.patch: fix the build for non-x86 architectures. ------------------------------------------------------------------- Wed Jan 24 19:33:03 UTC 2024 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-CVE-2024-23222.patch: fix a type confusion issue (bsc#1219113 CVE-2024-23222). ------------------------------------------------------------------- Sat Dec 16 13:51:42 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.42.4 (boo#1218032): + Fix incorrect random images incorrectly displayed as backgrounds of <div> elements. + Fix videos displayed aliased after being resized e.g. in YouTube. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-42883. ------------------------------------------------------------------- Wed Dec 6 17:03:18 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.42.3 (boo#1217844): + Fix flickering while playing videos with DMA-BUF sink. + Fix color picker being triggered in the inspector when typing "tan". + Do not special case the "sans" font family name. + Fix build failure with libxml2 version 2.12.0 due to an API change. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-42916, CVE-2023-42917. ------------------------------------------------------------------- Tue Nov 28 09:52:05 UTC 2023 - Dominique Leuenberger <dimstar@opensuse.org> - Adjust path to (openSUSE renamed) gst-plugin-scanner in the code using sed. ------------------------------------------------------------------- Tue Nov 21 12:20:53 UTC 2023 - Dominique Leuenberger <dimstar@opensuse.org> - Ensure max_link_jobs and max_compile_jobs have valid values even when %{jobs} is not defined (like when building outside of OBS). ------------------------------------------------------------------- Thu Nov 16 15:47:38 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.42.2 (boo#1217210): + Bump Safari version in user agent header. + Fix CSP regression that broke Unity WebGL applications. + Fix the build with GBM disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-41983, CVE-2023-42852. ------------------------------------------------------------------- Wed Nov 1 19:52:33 UTC 2023 - Mike Gorse <mgorse@suse.com> - Add webkit2gtk3-disable-dmabuf-nvidia.patch: disable DMABuf renderer for NVIDIA proprietary drivers (boo#1216778). ------------------------------------------------------------------- Mon Oct 23 18:48:15 UTC 2023 - Mike Gorse <mgorse@suse.com> - Add webkit2gtk3-create-destroy-egl-image.patch: fix "No provider of EglDestroyImage Found" (boo#1216483). ------------------------------------------------------------------- Fri Sep 29 18:10:40 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.42.1 (boo#1215661 boo#1215866 boo#1215867 boo#1215868 boo#1215869 boo#1215870): + Fix enable-html5-database setting to properly enable/disable IndexedDB API. + Fix the build with GBM disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-41993, CVE-2023-40414. ------------------------------------------------------------------- Thu Sep 28 08:47:58 UTC 2023 - Marcus Meissner <meissner@suse.com> - switch to pkgconfig(icu-i18n) instead of libicu-devel, to allow switching to a different libicu*-devel (jsc#PED-6193) ------------------------------------------------------------------- Fri Sep 15 19:04:16 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.42.0 (boo#1218033 boo#1222905): + New renderer based on DMA-BUF shared buffers. + Add new permission request to handle DOM paste access requests. + Add API to configure experimental features at runtime. + Add API to set the percentage of volume space that can be used for data storage. + GBM is no longer required for WebGL implementation. + Security fixes: CVE-2023-39928, CVE-2023-41074, CVE-2023-32359, CVE-2023-42890, CVE-2014-1745, CVE-2024-23226. ------------------------------------------------------------------- Mon Sep 11 15:02:19 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.41.92: + Fix render updates after cross origin history navigation with GTK4. + Fix flickering in non accelerated compositing mode. + Fix pixelated accelerated blur filter. + Fix web process launching when xdg-dbus-proxy is not installed. + Pass GBM_BO_USE_RENDERING to gbm_bo_create. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Fri Sep 1 19:57:17 UTC 2023 - Luciano Santos <luc14n0@opensuse.org> - Expand lang sub-package in spec file unconditionally to handle previous name change from WebKit2GTK-lang to WebKitGTK-lang. This change affected the automatic generated Requires tag on WebKit2GTK-%{_apiver}, then getting out of sync of what's being required and what's being provided. Now, any sub-package that was providing WebKit2GTK-%{_apiver} will provide WebKitGTK-%{_apiver} instead (boo#1214835, boo#1214640, boo#1214093). ------------------------------------------------------------------- Thu Aug 31 18:53:42 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Add explicit pkgconfig(epoxy) and pkgconfig(xdamage) BuildRequires: meson setup checks for them, so we should list them. ------------------------------------------------------------------- Mon Aug 21 21:34:34 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.41.91: + Properly handle toplevel window state changes in GTK4. + Do not keep processing frames while the view is unrealized when using DMA-BUF renderer. + Fallback to first render node returned by DRM when failing to get using EGLDevice. + Fix the build with libjxl < 0.7.0. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Sun Aug 13 09:33:40 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.41.90: + Fix the popup menu always shown in github when logged in. + Add API to replace and retrieve the entire cookie jar. + Apply the device scale factor when changed after web view is created. + Do not expose media devices that can’t be used in enumerateDevices. + Add support for P010 video format. + Fix non-accelerated rendering that broke web inspector. + Fix several crashes and rendering issue ------------------------------------------------------------------- Wed Aug 2 18:25:13 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.41.6: + Add API to set the percentage of volume space that can be used for data storage. + Do not use GBM and DMA-BUF for WebGL implementation. + Use EGL_MESA_image_dma_buf_export if available when GBM is disabled. + Fix AV1 video with the dav1d decoder when using the DMA-BUF sink. + Use three buffers for DMA-BUF renderer. + Fix several crashes and rendering issues. - Changes from version 2.41.5: + Include key modifiers in wheel events. + Remove support for OpenGL API in the web process. + Native DASH support is now opt-in, like HLS. + Fix scrollbar jumping to top when drag released outside window in GTK4. + Fix contents not rendered in new web view when realized after configure and frame with DMA-BUF renderer. + Fix several crashes and rendering issues. - Changes from version 2.41.4: + Add new API to configure experimental features at runtime. + Add support for prefers-reduced-motion media query. + Split hardware acceleration information in webkit://gpu. + Fix CPU usage on autoplaying videos. + Fix video rendering when GL is disabled. + Choose amount of painting threads depending on available CPU cores on GTK4. + Add memory usage of images in web inspector memory timeline. + Fix the build with X11 target disabled. + Fix several crashes and rendering issues. - Changes from version 2.41.3: + Ensure the same GPU device is used by GBM in all processes. + Fix memory corruption causing glitches in several web sites. + Use more reliable generated application ID. + Show DRM device and render node files when available in webkit://gpu. + Fix the build on i386. + Fix several crashes and rendering issues. - Changes from version 2.41.2: + Properly handle the modifier value when exporting/importing DMA-BUF buffers. + Don’t require GApplication for bubblewrap sandbox. + Fix cap height calculation in font metrics. + Fix the build on i386. + Fix the build with libgbm disabled. + Fix several crashes and rendering issues. + Updated translations. - Changes from version 2.41.1: + Use DMABuf and WebKit IPC for rendering instead of wpe/x11. + Calculate scroll step depending on scrollable area size when scrolling with the mouse wheel or arrow keys. + Add WebKitClipboardPermissionRequest to handle DOM paste access requests. + Remove support for rendering with GLX in the web process. + Fix several crashes and rendering issues. - Add pkgconfig(libjxl) BuildRequires: New dependency. ------------------------------------------------------------------- Wed Aug 2 18:25:12 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.40.5 (boo#1213905 boo#1215230): + Fix several crashes and rendering issues. + Security fixes: CVE-2023-38133, CVE-2023-38572, CVE-2023-38592, CVE-2023-38594, CVE-2023-38595, CVE-2023-38597, CVE-2023-38599, CVE-2023-38600, CVE-2023-38611, CVE-2023-40397, CVE-2023-39434, CVE-2023-40451. ------------------------------------------------------------------- Fri Jul 21 20:49:06 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.40.4 (boo#1213379): + Fix a bug in JavaScript reading variable arguments in a call. + Security fixes: CVE-2023-37450. ------------------------------------------------------------------- Wed Jun 28 16:41:25 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.40.3 (boo#1212863): + Make memory pressure monitor honor memory.memsw.usage_in_bytes if exists. + Include key modifiers in wheel events. + Apply cookie blocking policy to WebSocket handshakes. + Remove accidental dependency on GLib 2.70. + Fix the build with BUBBLEWRAP_SANDBOX disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-32439. ------------------------------------------------------------------- Wed May 31 16:05:38 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.40.2 (boo#1211846): + Fix scrollbar jumping to top when drag released outside window in GTK4. + Fix video rendering when GL is disabled. + Fix flickering on looped videos when starting again. + Fix CPU usage on autoplaying videos. + Choose amount of painting threads depending on available CPU cores on GTK4. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-28204, CVE-2023-32373 (boo#1211658 boo#1211659). - Drop gcc13-fix.patch: fixed upstream. ------------------------------------------------------------------- Thu Apr 20 14:21:35 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.40.1 (boo#1210295 boo#1210731): + The Bubblewrap sandbox no longer requires setting an application identifier via GApplication to operate correctly. Using GApplication is still recommended, but optional. + Adjust the scrolling speed for mouse wheels to make it feel more natural. + Allow pasting content using the Asynchronous Clipboard API when the origin is the same as the clipboard contents. + Improvements to the GStreamer multimedia playback, in particular around MSE, WebRTC, and seeking. + Make all supported image types appear in the Accept HTTP header. + Fix text caret blinking when blinking is disabled in the GTK settings. + Fix default database quota size definition. + Fix application of all caps tags listed in the font-feature-settings CSS property. + Fix the build with journald support enabled when using elogind instead of the systemd libraries. + Fix the build when libgcrypt provides a libgcrypt-config script instead of a pkg-config module file. + Fix font height calculations for the font-size-adjust CSS property. + Fix the build when ccache is used in certain setups. + Fix the build for RISC-V 64-bit targets. + Fix the build with GCC 13. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-0108, CVE-2023-28205, CVE-2022-32885, CVE-2023-27932, CVE-2023-27954, CVE-2023-28198, CVE-2023-32370. - Drop regression-fix.patch and fix-gst-crash.patch: fixed upstream. - Rebase gcc13-fix.patch. ------------------------------------------------------------------- Tue Mar 28 08:22:05 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Add fix-gst-crash.patch: Fix crash in webkit_media_stream_src_class_init(). https://bugs.webkit.org/show_bug.cgi?id=254025 - Add reproducibility.patch: Make build more reproducible. Still not there yet though. Inject fixed year in file. ------------------------------------------------------------------- Fri Mar 24 19:23:02 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Tweak constraints. ------------------------------------------------------------------- Fri Mar 24 09:14:45 UTC 2023 - Martin Liška <mliska@suse.cz> - Add gcc13-fix.patch fix that handles invalid code as reported here: https://github.com/WebKit/WebKit/pull/11910. ------------------------------------------------------------------- Tue Mar 21 08:17:44 UTC 2023 - Dominique Leuenberger <dimstar@opensuse.org> - Fix provides of libwebkit2gtk-4.[01]: Provide WebKitGTK-4.x. This symbol is only needed by the lang packages and those have been renamed from WebKit2GTK to WebKitGTK. ------------------------------------------------------------------- Fri Mar 17 19:06:13 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.40.0 (boo#1213581): + New GTK4 API is now stable. + Use ANGLE for WebGL implementation and enable WebGL2. + Prefer EGL over X11, intead of GLX, where available. + Add support for speech synthesis using Flite. + Enable the async clipboard API. + Add API to query the permission state of web features. + Add API to support asynchronously returning values from user script messages. + Make it possible to handle WebKitDownload::decide-destination signal asynchronously. + Add new JavaScript execution APIs. + Make webkit://gpu output exportable as JSON. + Fix large memory allocation when uploading content. - Add regression-fix.patch: [GLib] Broke WebKitUserContentManager::script-message-received + Security fixes: CVE-2023-32393, CVE-2023-32435, CVE-2023-35074. ------------------------------------------------------------------- Wed Mar 8 16:18:06 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.39.91: + Rename WebKitWebExtension to WebKitWebProcessExtension in GTK4 API. + Remove WebKitJavascriptResult in favor of using JSCValue directly in GTK4 API. + Add new API to get the request body of WebKitURISchemeRequest. + Make it possible to handle WebKitDownload::decide-destination signal asynchronously. + Allow WebKitDownload destination to be a path instead of a URI. + Make webkit://gpu output exportable as JSON. + Improve scrolling performance in accelerated compositing mode. + Implement KeyboardEvent.repeat. + Fix a crash in MiniBrowser when the favicon is updated. + Fix the build in Ubuntu 20.04 and Debian Stable. + Fix several crashes and rendering issues. + Updated translations. - Drop no-forced-sse.patch: Due to changes in the code, trying to build without SSE2 support fails even with this patch. We are forced to give up on this, SSE2 support is now mandatory for all build targets. - Add new defines and sub-packages in conditional ways, upstream did a lot of changes for new gtk4 variant. ------------------------------------------------------------------- Sun Feb 26 17:23:07 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.39.90: + Add new JavaScript execution APIs. + Merge functions of registering and unregistering script message handler in GTK4 API. + Mark non-derivable types as final and make instance and class struct declarations private in GTK4 API. + Make favicon and snapshot API use GdkTexture instead of cairo surfaces in GTK4 API. + Fix scrolling after a history navigation with PSON enabled. + Fix criticals from webkitOptionMenuSetEvent when opening any combo box. + Fix large memory allocation when uploading content. + Always update the active uri of WebKitFrame. + Fix several crashes and rendering issues. + Updated translations. - Drop webkit2gtk3-missing-include.patch: Fixed upstream ------------------------------------------------------------------- Wed Feb 15 14:39:07 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.39.7: + Fix the webkit.h public header causing applications to fail to build. + Fix several crashes and rendering issues. - Changes from version 2.39.6: + Add support for speech synthesis using Flite. + Bring back WebKitConsoleMessage API implementation. + Fix async scroll event propagation for GTK4. + Add network session API when building with GTK4. + Make most public types final when building with GTK4. + Remove WebKitPrintCustomWidget when building with GTK4. + Remove most of the webkit_web_view_new_with_*() constructors when building with GTK4. + Remove webkit_web_context_get/set_process_model when building with GTK4. + Do not allow the sandbox to mount the entire home directory. + Fix several crashes and rendering issues. - Add pkgconfig(gstreamer-transcoder-1.0) and pkgconfig(openssl) BuildRequires: New dependencies. - Pass conditional ENABLE_WEBDRIVER=ON/OFF to cmake, enable/disable build of webdriver where apropiate. ------------------------------------------------------------------- Wed Feb 15 14:39:05 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.39.5: + Enable WebGL2 by default again that was disabled by mistake. + Fix the build with WebGL disabled. + Fix the webkit.h public header causing applications to fail to build. - Changes from version 2.39.4: + Fix WebGL when sandbox is enabled. + Fix loading of media documents. + Add new API disable web security. + Disable support for HLS in media backend by default. + Fix several crashes and rendering issues. + Updated translations. - Changes from version 2.39.3: + Add new API to query the permission state of web features. + Deprecate all web extension DOM APIs (WebKitDOMDocument, WebKitDOMElement, WebKitDOMNode). + Add webkit_web_hit_test_result_get_js_node() to get the JSCValue for the node. + Add WebKitWebFormManager and deprecate WebKitWebPage form related signals. + Don’t perform position queries on video sink when the player is for audio only. + Fix gibberish text when loading alternate data. + Fix several crashes and rendering issues. - Changes from version 2.39.2: + Add API to support asynchronously returning values from user script messages. + Deprecate WebKitConsoleMessage API. + Deprecate event parameter of WebKitWebView::context-menu and WebKitWebView::show-option-menu signals in favor of a getter in WebKitConextMenu and WebKitOptionMenu. + Do not emit context-menu signals for media settings popup menu. + Use async scrolling also for keyboard scrolling. + Add support for client side certificates on WebSocket connections. + Fix first party for cookies set on every media request. + Fix a crash on authentication dialog with GTK4. + Fix web process leak when webkit_download_set_destination is called with empty destination. + Fix several warnings when building for ARMv7 (32-bits). + Fix several crashes and rendering issues. - Changes from version 2.39.1: + Use ANGLE for WebGL implementation and enable WebGL2. + Remove internal nested wayland compositor making libwpe mandatory when building with wayland enabled. + Prefer EGL over X11, intead of GLX, where available. + Add support for background-repeat: space. + Add API to check if a response policy decision is for the main resource. + Fix rendering of checkbox and radio buttons in black backgrounds. + Make checkbox, radio and inner spin button scale along by page zoom. + Add support for get computed label and get computed role WebDriver commands. + Fix several crashes and rendering issues. - Rebase patches with quilt. - Add unifdef BuildRequires: New dependency. ------------------------------------------------------------------- Wed Feb 15 14:30:47 UTC 2023 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.38.5 (boo#1208328): + Fix large memory allocation when uploading content. + Fix scrolling after a history navigation with PSON enabled. + Always update the active uri of WebKitFrame. + Fix the build on Ubuntu 20.04. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-23529. ------------------------------------------------------------------- Thu Feb 2 15:51:06 UTC 2023 - Michael Gorse <mgorse@suse.com> - Update to version 2.38.4 (boo#1207997): + Improve GStreamer multimedia playback across the board with improved codec selection logic, better handling of latency, and improving frame discard to avoid audio/video desynchronizationg, among other fixes. + Disable HLS media playback by default, which makes web sites use MSE instead. If needed WEBKIT_GST_ENABLE_HLS_SUPPORT=1 can be set in the environment to enable it back. + Disable threaded rendering in GTK4 builds by default, as it was causing crashes. + Fix MediaSession API not showing artwork images. + Fix MediaSession MPRIS usage when running inside a Flatpak sandbox. + Fix input element controls to correctly scale when applying a zoom factor different than the default. + Fix leakage of Web processes in certain situations. + Fix the injected bundle not being found when running inside a sandbox. + Fix the build with ENABLE_INTROSPECTION when cross-compiling. + FIx the build with ENABLE_WEBGL disabled. + Fix the build with GStreamer-based WebRTC enabled. + Fix the build with USE_GTK4 enabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2023-23517, CVE-2023-23518, CVE-2022-42826, CVE-2022-32919, CVE-2022-46705, CVE-2022-46725. ------------------------------------------------------------------- Fri Jan 27 15:09:41 UTC 2023 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-missing-include.patch: fix the build with gcc 13. ------------------------------------------------------------------- Thu Dec 22 14:54:41 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.38.3 (boo#1206474 boo#1206750): + Fix runtime critical warnings from media player. + Fix network process crash when fetching website data on ephemeral session. + Fix the build with Ruby 3.2. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-42852, CVE-2022-42856, CVE-2022-42867, CVE-2022-46692, CVE-2022-46698, CVE-2022-46699, CVE-2022-46700. - Drop b7ac5d0c.patch: fixed upstream. ------------------------------------------------------------------- Wed Dec 14 16:45:15 UTC 2022 - Dominique Leuenberger <dimstar@opensuse.org> - Add upstream patch b7ac5d0c.patch: Fix build with Ruby 3.2. ------------------------------------------------------------------- Thu Nov 17 13:29:15 UTC 2022 - Guillaume GARDET <guillaume.gardet@opensuse.org> - Update _constraints for webkit2gtk3:gtk3-soup2 on aarch64 to avoid slow workers and OOM ------------------------------------------------------------------- Mon Nov 7 15:20:15 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.38.2 (boo#1205120 boo#1205123 boo#1205124): + Fix scrolling issues in some sites having fixed background. + Fix prolonged buffering during progressive live playback. + Fix the build with accessibility disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-42799, CVE-2022-42823, CVE-2022-42824. ------------------------------------------------------------------- Mon Oct 24 17:47:17 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.38.1: + Make xdg-dbus-proxy work if host session bus address is an abstract socket. + Use a single xdg-dbus-proxy process when sandbox is enabled. + Fix high resolution video playback due to unimplemented changeType operation. + Ensure GSubprocess uses posix_spawn() again and inherit file descriptors. + Fix player stucking in buffering (paused) state for progressive streaming. + Do not try to preconnect on link click when link preconnect setting is disabled. + Fix close status code returned when the client closes a WebSocket in some cases. + Fix media player duration calculation. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-46691. ------------------------------------------------------------------- Fri Sep 16 22:44:55 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.38.0 (boo#1203530 boo#1205121 boo#1205122): + New media controls UI style. + Add new API to set WebView’s Content-Security-Policy for web extensions support. + Make it possible to use the remote inspector from other browsers using WEBKIT_INSPECTOR_HTTP_SERVER env var. + MediaSession is enabled by default, allowing remote media control using MPRIS. + Add support for PDF documents using PDF.js. + Security fixes: CVE-2022-32886, CVE-2022-32888, CVE-2022-32912, CVE-2022-32923, CVE-2022-42863, CVE-2023-25358, CVE-2023-25360, CVE-2023-25361, CVE-2023-25362, CVE-2023-25363, CVE-2022-48503, CVE-2022-32933, CVE-2023-42833. ------------------------------------------------------------------- Mon Sep 5 06:25:57 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.37.91: + Cache and reuse image-based backing stores to improve memory consumption. + Fix printing with bubblewrap sandbox enabled. + Deprecate enable-frame-flattening setting because the functionality will be removed for 2.40. + Fix deadlock when disposing player while handling rotation tag. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Fri Aug 26 13:40:09 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.37.90: + Remove libnotify dependency. + Add support for service worker notifications. + Add support for loading the notification icon. + Add support for pac proxy type in WebDriver. + Fix several crashes and rendering issues. + Updated translations. - Changes from version 2.37.1: + Add initial implementation of WebRTC using GstWebRTC if GStreamer 1.20 is available, disabled by default via web view settings. + Add new API to set WebView’s Content-Security-Policy for web extensions support. + Add new API to run async JavaScript functions. + Expose typed arrays in JavaScriptCore GLib API. + Add support for PDF documents using PDF.js. + Show font name and font variant settings in the inspector. + MediaSession is enabled by default, allowing remote media control using MPRIS. + Modernized media controls UI. + Add Support Google Dynamic Ad Insertion (DAI). + Add support for capturing encoded video streams from a webcam. + Make it possible to use the remote inspector from other browsers using WEBKIT_INSPECTOR_HTTP_SERVER env var. + Add support for IPv6 in the remote inspector. + Update form elements style to match libadwaita. + Fix canvas animations and images with threaded rendering enabled. + Switch to use gi-docgen for API documentation instead of gtk-doc. + Remove the ATK a11y implementation that has been replaced by AT-SPI DBus interfaces. + Fix several crashes and rendering issues. - Update no-forced-sse.patch with quilt. - Pass -DENABLE_DOCUMENTATION=OFF to configure, we did not build the API docs in the past, and I see no reason to start now. - Drop pkgconfig(libnotify) BuildRequires: No longer needed, nor used if available. ------------------------------------------------------------------- Fri Aug 26 13:40:08 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.36.7 (boo#1202807): - Fix several crashes and rendering issues. + Security fixes: CVE-2022-32893. ------------------------------------------------------------------- Sun Aug 7 14:40:05 UTC 2022 - Andreas Stieger <andreas.stieger@gmx.de> - Update to version 2.36.6 + Fix handling of touchpad scrolling on GTK4 builds + Fix WebKitGTK not allowing to be used from non-main threads (boo#1202169) + Fix several crashes and rendering issues ------------------------------------------------------------------- Fri Jul 29 15:09:20 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.36.5 (boo#1201980): + Add support for PAC proxy in the WebDriver implementation. + Fix video playback when loaded through custom URIs, this fixes video playback in the Yelp documentation browser. - Fix WebKitWebView::context-menu when using GTK4. - Fix LTO builds with GCC. - Fix several crashes and rendering issues. + Security fixes: CVE-2022-32792, CVE-2022-32816, CVE-2022-32891. - Drop webkit2gtk3-fix-build.patch: fixed upstream. ------------------------------------------------------------------- Tue Jul 5 15:16:48 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.36.4 (boo#1201221): + Fix the new ATSPI accessibility implementation to add the missing Collection interface for the loaded document. + Fix the MediaSession implementation to make the MPRIS object names more sandbox friendly, which plays better with Flatpak and WebKit's own Bubblwrap-based sandboxing. + Fix leaked Web Processes in some particular situations. + Fix the build with media capture support enabled. + Fix cross-compilation when targeting 64-bit ARM. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-22677, CVE-2022-26710. - Add webkit2gtk3-fix-build.patch: fix the build. ------------------------------------------------------------------- Sun May 29 19:07:38 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.36.3 (boo#1200106): + Support capturing already encoded video streams, which takes advantage of encoding done in hardware by devices which support this feature. + Avoid using experimental GStreamer elements for video demuxing. + Avoid using the legacy GStreamer VA-API decoding plug-ins, which often cause rendering issues and are not much maintained. Their usage can be re-enabled setting WEBKIT_GST_ENABLE_LEGACY_VAAPI=1 in the environment. + Fix playback of YouTube streams which use dynamic ad insertion. + Fix display capture with Pipewire. + Fix the build without the X11 target when X11 headers are not present. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-26700, CVE-2022-26709, CVE-2022-26716, CVE-2022-26717, CVE-2022-26719. ------------------------------------------------------------------- Fri May 20 16:02:05 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.36.2: + Fix some pages showing empty content boxes when using GTK4. + Fix the build with accessibility disabled. + Fix the build with newer Ruby versions. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Mon May 2 08:24:28 UTC 2022 - Martin Liška <mliska@suse.cz> - Remove dependency on binutils-gold as the package will be removed in the future. Gold linker is unmaintained by the upstream project. ------------------------------------------------------------------- Thu Apr 21 19:05:39 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.36.1 (boo#1199287): + Fix the build with accessibility disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-30293. ------------------------------------------------------------------- Wed Apr 6 15:12:09 UTC 2022 - Michael Gorse <mgorse@suse.com> - Drop webkit2gtk3-gcc12.patch. It isn't needed anymore, since the relevant gcc change has been reverted for now. - Update some minimum version requirements to match cmake checks. - Remove build requirements on geoclue and libbrotlidec: they are no longer build-time dependencies. Add geoclue2 to Recommends. ------------------------------------------------------------------- Wed Mar 30 18:04:39 UTC 2022 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-gcc12.patch: fix the build with gcc 12. ------------------------------------------------------------------- Tue Mar 29 11:48:56 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Disabled usage of gold linker for all targets via existing define. ------------------------------------------------------------------- Mon Mar 21 19:45:49 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.36.0 (boo#1198290): + Add new accessibility implementation using ATSPI DBus interfaces instead of ATK. + Add support for requestVideoFrameCallback. + Change hardware-acceleration-policy setting default value to always. + Add support for media session. + Add new API to set HTTP response information to custom uri schemes. + Make user interactive threads (event handler, scrolling, …) real time in linux. + Security fixes: CVE-2022-22624, CVE-2022-22628, CVE-2022-22629, CVE-2022-22662. ------------------------------------------------------------------- Mon Feb 28 01:29:27 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.35.90: + Fix scrolling with the mouse wheel on sites using overscroll-behavior. + Suspend web processes after some time in the process cache. + Fix renderning of horizontal scrollbars with themes enabling steppers. + Ensure EGL displays are terminated before web process exits. + Deinitialize gstreamer before web process exits. + Make fonts under XDG_DATA_DIRS available in web process sanbox. + Canonicalize paths passed to bubblewrap launcher. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Thu Feb 17 16:14:43 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.35.3: + Fix a crash at startup when bubblewrap sandbox is enabled. + Fix a crash when starting a drag an drop on touchscreen. + Fix several crashes and rendering issues. - Changes from version 2.35.2: + Add new accessibility implementation using ATSPI DBus interfaces instead of ATK. + Use native GtkWidgets for form validation popups. + Add support for requestVideoFrameCallback. + Add support for accent colors. + Fix pinch zooming from a link to not activate the link. + Fix kinetic scrolling via touch screen. + Fix several crashes and rendering issues. - Changes from version 2.35.1: + Make user interactive threads (event handler, scrolling, …) real time in linux. + Add new API to set HTTP response information to custom uri schemes. + Add support for media session. + Change hardware-acceleration-policy setting default value to always. + Fix jsc_value_object_define_property_accessor() to work with objects not having a wrapped instance. + Fix several crashes and rendering issues. - Add gstreamer-plugins-good, gstreamer-plugins-bad and xdg-desktop-portal-gtk Recommends: Needed for mediaplayback and features in the mandatory sandbox. - Add flex BuildRequires: Optional dependency. - Rebase no-forced-sse.patch: Not sure this makes sense anymore, we are building for i686, and the number of cpu of that class not supporting SSE2 can probably be counted on one hand. - Drop patches fixed upstream: + fix-warnings.patch + webkit2gtk3-link-fix.patch ------------------------------------------------------------------- Thu Feb 17 16:14:42 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.34.6 (boo#1196133): + Fix accessibility not working when the Bubblewrap sandbox is enabled. + Fix rendering of scrollbars when overlay scrollbars are disabled. + Fix the build when the X11 support is disabled. + Fix the build in a number of situations where the main OpenGL library is not called libGL or libgl, as is the case on systems that use libglvnd. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-22620. ------------------------------------------------------------------- Wed Feb 9 18:14:24 UTC 2022 - Michael Gorse <mgorse@suse.com> - Update to version 2.34.5 (boo#1195735): + Improve VP8 codec selection when using GStreamer 1.20. + Fix connecting to the accessiblity bus when using the Bubblewrap sandbox. + Fix links being incorrectly activated when starting a pinch zoom gesture. + Fix touch-based scrolling. + Fix the build with recent toolchains based on GCC 12 and on older ones as included e.g. in Ubuntu 18.04. + Fix the build with ICU 60, version 61 is no longer required. + Fix several crashes and rendering issues. + Security fixes: CVE-2022-22589, CVE-2022-22590, CVE-2022-22592. + Drop webkit2gtk3-gcc12.patch: fixed upstream. ------------------------------------------------------------------- Mon Jan 31 22:42:06 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update constraints for disk space even more, now at 20 gig. ------------------------------------------------------------------- Mon Jan 24 21:54:31 UTC 2022 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-gcc12.patch: fix the build with gcc 12. - Require glib2 2.44 to match source. ------------------------------------------------------------------- Fri Jan 21 12:58:32 UTC 2022 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.34.4 (boo#1195064): + Fix several crashes and rendering issues. + This release fixes numerous security issues, including an especially severe issue that allowed websites to read the names of IndexedDB databases created by other websites. + Security fixes: CVE-2021-30934, CVE-2021-30936, CVE-2021-30951, CVE-2021-30952, CVE-2021-30953, CVE-2021-30954, CVE-2021-30984, CVE-2022-22594, CVE-2022-22637. ------------------------------------------------------------------- Wed Jan 19 15:12:02 UTC 2022 - Frederic Crozat <fcrozat@suse.com> - Update _constraints, needs more disk space to build. ------------------------------------------------------------------- Tue Dec 21 15:03:42 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.34.3 (boo#1194019): + Make audio tools (like mixers) display the actual name of the application producing sound, instead of a generic one. + Fix several crashes and rendering issues. + Security fixes: CVE-2021-30887, CVE-2021-30890. ------------------------------------------------------------------- Tue Dec 14 13:30:29 UTC 2021 - Yifan Jiang <yfjiang@suse.com> - Typo fix for %define usegcc10. ------------------------------------------------------------------- Tue Dec 14 10:38:41 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Introduce usegcc10 %define in order to have the condition (0%{?sle_version} && 0%{?sle_version} <= 150400) only at one point. - Correct a very old "Obsoletes: webkit2gtk3-plugin-process-gtk2" to be a versioned obsoletes. ------------------------------------------------------------------- Tue Dec 14 01:05:29 UTC 2021 - Yifan Jiang <yfjiang@suse.com> - Make the earlier Obsoletes: libwebkit2gtk3-lang compliant with: https://en.opensuse.org/openSUSE:Upgrade_dependencies_explanation#Renaming_a_package ------------------------------------------------------------------- Wed Dec 8 08:07:59 UTC 2021 - Yifan Jiang <yfjiang@suse.com> - Add Obsoletes of the old-name -lang package to be ready for updating from it. This change is necessary for the gtk3-soup2 flavor. ------------------------------------------------------------------- Sat Nov 27 15:20:11 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.34.2: + Fix scrolling issues when pressing Home and PgDown keys. + Update effective appearance after web process switch on navigation. + Fix the build with video disabled. ------------------------------------------------------------------- Mon Nov 1 18:14:10 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com> - Add pkgconfig(libavif) BuildRequires and pass USE_AVIF=ON to cmake, build avif decoding support. ------------------------------------------------------------------- Mon Nov 1 17:54:51 UTC 2021 - Michael Gorse <mgorse@suse.com> - Add wayland-protocols to BuildRequires. ------------------------------------------------------------------- Tue Oct 26 22:10:23 UTC 2021 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-link-fix.patch: taken from upstream, fixes the build on SLE-15-SP4. - Use gcc10 package on SLE <= 15-SP4. Gcc 7 is currently the default there. - Update gcc-c++ version requirement to match the cmake check. ------------------------------------------------------------------- Thu Oct 21 20:07:32 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.34.1 (boo#1191937): + Update user agent browser versions. + Fix a crash with GTK >= 3.24.30. + Fix a crash when loading videos on reddit. + Fix file type detection when application calls g_desktop_app_info_set_as_default_for_extension() passing html. + Security fixes: CVE-2021-42762. ------------------------------------------------------------------- Wed Sep 29 10:16:33 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Add libjavascriptcoregtk-4_0-18 and llibwebkit2gtk-4_0-37 to baselibs.conf: provide those libraries as multilib version. ------------------------------------------------------------------- Wed Sep 29 06:47:28 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Rename -lang packages to WebKit2GTK-%{_apiver}, making the translations between the three flavors co-exist. ------------------------------------------------------------------- Wed Sep 22 16:18:00 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.34.0 (boo#1192063): + Fix another regression in JavaScriptCore on 32bit systems. + Security fixes: CVE-2021-30846, CVE-2021-30851, CVE-2021-30818, CVE-2021-30823, CVE-2021-30884, CVE-2021-30888, CVE-2021-30889, CVE-2021-30897, CVE-2021-45481, CVE-2021-45483. ------------------------------------------------------------------- Mon Sep 20 02:33:51 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.33.91: + Use the right display refresh monitor for animations in accelerated compositng mode. + Fix several issues in JavaScriptCore on 32bit systems. + Prefer python3 over python2 in CMake. ------------------------------------------------------------------- Mon Sep 20 02:33:50 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.33.90: + Show TLS protocol version and ciphersuite name in the inspector when building with libsoup3. + Add multi-track support to media backend. + Avoid strong alias computations in font fallback code. + Fix deadlock tearing down pipeline when using fallback sink. + Fix the build with gtk-doc enabled. + Fix several crashes and rendering issues. - Add fix-warnings.patch: silence return-type warnings. ------------------------------------------------------------------- Mon Sep 20 02:33:05 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Add a 3rd flavor: gtk3 with libsoup2 (which retains compatibility to the olderversions, identified as API version 4.0). ------------------------------------------------------------------- Mon Sep 20 02:33:04 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Add _multibuild file and enable build of webkit2gtk4. ------------------------------------------------------------------- Mon Sep 20 02:33:03 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.33.3: + Add support for display capture. + Add new API to access/modify capture devices states. + Add new API to configure the memory pressure handler. + Add support for client side certifiates authentication. + Add support color-schemes CSS property. + Add support for dark scrollbars. + Keep GtkSettings used by web processes in sync with the settings set in the UI process. + Add support for drawing the scrollbars corner. + Allow to opt-out of GL rendering at runtime for media player. + Add support for A420 compositing in media player. + Improve pinch to zoom gesture in accerlerated compositing mode. + Fix cookies configuration after a network process crash. + Fix touchscreen navigation swipe when the page scrolls horizontally. + Fix rendering of elliptic radial gradients. + Fix several crashes and rendering issues. + Updated translations. - Drop fix-lto.patch: fixed upstream. - Add pkgconfig(lcms2) BuildRequires: new dependency. - Replace pkgconfig(libsoup-2.4) BuildRequires with pkgconfig(libsoup-3.0): Follow upstreams port to Libsoup 3.0. ------------------------------------------------------------------- Sun Sep 19 19:00:09 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.32.4 (boo#1190701): + Do not append .asc extension to downloaded text/plain files. + Fix several crashes and rendering issues. + Security fixes: CVE-2021-30848, CVE-2021-30849, CVE-2021-30858, CVE-2021-30809, CVE-2021-30836, CVE-2021-45482. - Drop fix-lto.patch: fixed upstream. ------------------------------------------------------------------- Tue Aug 10 12:10:02 UTC 2021 - Martin Liška <mliska@suse.cz> - Enable LTO by using upstream patch fix-lto.patch. ------------------------------------------------------------------- Thu Aug 5 08:27:25 UTC 2021 - Yifan Jiang <yfjiang@suse.com> - Drop unneeded patch on Leap and SLE by now: webkit2gtk3-restore-npapi.patch (bsc#1189105). ------------------------------------------------------------------- Thu Jul 29 02:29:40 UTC 2021 - Yifan Jiang <yfjiang@suse.com> - Add BuildRequires pkgconfig(glproto) for SLE and Leap which have not included the new packaging of the relevant headers. ------------------------------------------------------------------- Mon Jul 26 15:38:26 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.32.3 (boo#1188697): + Properly set the cookies settings after a network process crash. + Fix accessibility tree after a cross site navigation with PSON enabled. + Ensure WebKitScriptWorld::window-object-cleared signal is always emitted. + Fix several crashes and rendering issues. + Security fixes: CVE-2021-21775, CVE-2021-21779, CVE-2021-30663, CVE-2021-30665, CVE-2021-30689, CVE-2021-30720, CVE-2021-30734, CVE-2021-30744, CVE-2021-30749, CVE-2021-30795, CVE-2021-30797, CVE-2021-30799. - Fix webkit2gtk3-restore-npapi.patch to install the plugin process. - Disable WPE renderer: our FDO backend is now too old. ------------------------------------------------------------------- Mon Jul 19 18:36:42 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.32.2: + Improve calculation of initial WebKitWebView size. + Fix kinetic scrolling on touchpad with async scrolling off. + Fix a crash on empty drag operation in X11. + Fix rendering on HiDPI /4k screen and scaling. + Handle null native surface for for surfaceless rendering. + Fix JavaScriptCore crash on 32-bit big endian systems. + Fix several crashes and rendering issues. + Security fixes: CVE-2021-30758. ------------------------------------------------------------------- Wed May 19 01:10:34 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.32.1: + Support building against the Musl C library. + Support building against ICU version 69 or newer. + Improve handling of Media Capture devices. + Improve WebAudio playback. + Improve video orientation handling. + Improve seeking support for MSE playback. + Improve flush support in EME decryptors. + Fix HTTP status codes for requests done through a custom URI handler. + Fix the Bubblewrap sandbox in certain 32-bit systems. + Fix inconsistencies between the WebKitWebView.is-muted property state and values returned by webkit_web_view_is_playing_audio(). + Fix the build with ENABLE_VIDEO=OFF. + Fix wrong timestamps for long-lived cookies. + Fix UI process crash when failing to load favicons. + Fix several crashes and rendering issues. + Updated translations. - Drop webkit2gtk3-icu69.patch: fixed upstream. ------------------------------------------------------------------- Wed Apr 28 06:41:41 UTC 2021 - Dominique Leuenberger <dimstar@opensuse.org> - Add webkit2gtk3-icu69.patch: Fix build with ICU 69: + ICU 69 deprecates ubrk_safeClone in favor of ubrk_clone. ------------------------------------------------------------------- Mon Apr 12 17:44:57 UTC 2021 - Michael Gorse <mgorse@suse.com> - Per discussion with maintenance, let's not remove features that customers could possibly be using: - Add webkit2gtk3-restore-npapi.patch: restore NPAPI plugin support. Reverts webkit#215503. ------------------------------------------------------------------- Tue Apr 6 18:25:11 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.32.0 (boo#1184155): + Fix the authentication request port when URL omits the port. + Fix iframe scrolling when main frame is scrolled in async scrolling mode. + Stop using g_memdup. + Show a warning message when overriding signal handler for threading suspension. - Fix the build on RISC-V with GCC 11. - Fix several crashes and rendering issues. + Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871 + Changes in version 2.30.6 (boo#1184262): + Update user agent quirks again for Google Docs and Google Drive. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-27918, CVE-2020-29623, CVE-2021-1765, CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870. - Remove webkit-font-scaling.patch: contained in upstream - Drop original SLE 15 support from the spec. Drop webkit-process.patch and old-wayland-scanner.patch; they are not needed for SP2. - Pass ENABLE_GAMEPAD=OFF to cmake, since we don't have manette. - Add glproto-devel to BuildRequires: now needed for the build on SLE 15. ------------------------------------------------------------------- Fri Apr 2 17:34:41 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.32.0 (boo#1184155): + Fix the authentication request port when URL omits the port. + Fix iframe scrolling when main frame is scrolled in async scrolling mode. + Stop using g_memdup. + Show a warning message when overriding signal handler for threading suspension. - Fix the build on RISC-V with GCC 11. - Fix several crashes and rendering issues. + Security fixes: CVE-2021-1788, CVE-2021-1844, CVE-2021-1871, CVE-2021-30682. - Drop old-wayland-scanner.patch and webkit-process.patch, and also drop support for Leap 15.0 and 15.1, since they are no longer supported. ------------------------------------------------------------------- Tue Mar 23 02:31:51 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.31.91: + Make WebKitSecurityOrigin a simple data store for <protocol, host, port> and deprecate webkit_security_origin_is_opaque(). + Fix user agent again to work on several google websites. + Fix web view url on web process terminate signals. + Fix preferred language overrides sent to the web process. + Fix the build in i386. + Translation updates: Simplified Chinese. - Drop webkitgtk-i586-build-fix.patch: fixed upstream. - Disable webkit-process.patch: needs to be rebased or dropped. ------------------------------------------------------------------- Mon Mar 22 02:31:51 UTC 2021 - Michael Gorse <mgorse@suse.com> - Add webkitgtk-i586-build-fix.patch: fix build on i586 (webkit#222480). ------------------------------------------------------------------- Mon Mar 22 02:31:50 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.31.90: + Add permission request API for MediaKeySystem access. + Fix rendering when using opacity filters on hardware accelerated layers. + Fix flatpak-spawn subsandbox to not clear environment variables. + Ensure a URI scheme handler can't be registered multiple times. + Fix several crashes and rendering issues. + The minimum required GStreamer version is now 1.14. + CEA-608 closed captions support (requires WEBKIT_GST_USE_PLAYBIN3=1 environment variable). - Advertise CBCS decryption and VP9 support in Thunder. - Advertise DASH as supported in the media player. - Improved support for playbin3. - Translation updates: Ukrainian. - Up required gstreamer and gtk3 versions. ------------------------------------------------------------------- Mon Mar 22 02:31:01 UTC 2021 - Callum Farmer <gmbr3@opensuse.org> - Update to version 2.31.1: + Remove support for NPAPI plugins. + Enable the web process cache when PSON is enabled too. + TLS errors and proxy settings APIs have been moved from WebKitContext to WebKitWebsiteDataManager. + Add new API to remove individual scripts/stylesheets using WebKitUserContentManager. + Correctly apply the system font scaling factor. + Show main loop frames information in the web inspector. - Remove webkit-font-scaling.patch: contained in upstream - New build requirement: pkgconfig(manette-0.2). ------------------------------------------------------------------- Sun Mar 21 20:33:09 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.30.6 (boo#1184262): + Update user agent quirks again for Google Docs and Google Drive. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-27918, CVE-2020-29623, CVE-2021-1765 CVE-2021-1789, CVE-2021-1799, CVE-2021-1801, CVE-2021-1870, CVE-2021-21806. ------------------------------------------------------------------- Fri Feb 19 07:45:12 UTC 2021 - Guillaume GARDET <guillaume.gardet@opensuse.org> - Update _constraints for armv6/armv7 (bsc#1182719) ------------------------------------------------------------------- Sat Feb 13 18:06:17 UTC 2021 - Michael Gorse <mgorse@suse.com> - Update to version 2.30.5 (boo#1182286): + Bring back the WebKitPluginProcess installation that was removed by mistake. + Fix RunLoop objects leaked in worker threads. + Fix aarch64 llint build with JIT disabled. + Use Internet Explorer quirk for Google Docs. + Security fixes: CVE-2020-13558. - Drop gir-multilib.patch: fixed upstream. ------------------------------------------------------------------- Wed Jan 20 10:47:33 UTC 2021 - Bjørn Lie <bjorn.lie@gmail.com> - Add gir-multilib.patch: Fix multilib conflict in gir files. - Disable gold linker for ppc64le ------------------------------------------------------------------- Tue Jan 19 19:12:53 UTC 2021 - Atri Bhattacharya <badshah400@gmail.com> - Add webkit-font-scaling.patch: Fix system font scaling not applied to 'font-size: XXXpt'; patch taken from upstream and rebased to apply cleanly (https://bugs.webkit.org/show_bug.cgi?id=218450). - Pass `-q` to setup to disable printing long list of files extracted from source tarball. ------------------------------------------------------------------- Tue Dec 15 14:06:42 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.30.4: + Fix text data sent with WebSockets when using libsoup < 2.68. + Fix the rendering on Raspberry Pi 3 using the proprietary video driver. + Fix clipping of descedant layers of a mask layer. + Fix the build with ICU 68.1. - Drop upstream merged patch: + 0001-ICU-68.1-no-longer-exposes-FALSE-and-TRUE-macros-by-.patch ------------------------------------------------------------------- Thu Dec 3 22:23:20 UTC 2020 - Michael Gorse <mgorse@suse.com> - Add old-wayland-scanner.patch for 15.0/15.1: support older wayland-scanner. Also renumber patches to group 15.0/15.1-specific patches together. - Have the libwebkit2gtk package require libjavascriptcoregtk of the same version (boo#1171531). ------------------------------------------------------------------- Wed Dec 2 13:36:15 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org> - 0001-ICU-68.1-no-longer-exposes-FALSE-and-TRUE-macros-by-.patch: ICU 68.1 no longer exposes FALSE and TRUE macros by default. ------------------------------------------------------------------- Sun Nov 22 16:37:46 UTC 2020 - Michael Gorse <mgorse@suse.com> - Update to version 2.30.3 (boo#1179122 boo#1179451): + Add new build option USE(64KB_PAGE_BLOCK). + Fix backdrop filters with rounded borders. + Fix scrolling iframes when async scrolling is enabled. + Allow applications to handle drag and drop on the web view again. + Update Outlook user agent quirk. + Fix the build with video support disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-13584, CVE-2020-9983, CVE-2020-13543. - Drop webkit2gtk3-fdo-soname.patch: fixed upstream. - Rebase webkit-process.patch. ------------------------------------------------------------------- Fri Oct 23 09:35:30 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.30.2: + Fix scrolling when smooth scrolling is enabled in async scrolling mode. + Fix WebSocket requests with same-site cookies. + Fix TLS certificate information for service workers. + Handle chassis type when its value is quoted. + Fix the build with ENABLE_MEDIA_STREAM enabled and ENABLE_WEB_RTC_DISABLED. + Fix the build with ENABLE_GAMEPAD enabled. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Wed Sep 30 19:03:18 UTC 2020 - Michael Gorse <mgorse@suse.com> - Enable c_loop on aarch64: currently needed for compilation to succeed with JIT disabled. Also disable sampling profiler, since it conflicts with c_loop (boo#1177087). ------------------------------------------------------------------- Tue Sep 22 01:34:43 UTC 2020 - Michael Gorse <mgorse@suse.com> - Update to version 2.30.1: + Bring back the environment variable to force single process mode when PSON is disabled. + Fix downloads started by an ephemeral web context. + Updated translations. ------------------------------------------------------------------- Mon Sep 14 23:28:52 UTC 2020 - Michael Gorse <mgorse@suse.com> - Update to version 2.30.0: + Fix NTLM authentication. + Don't try to use SHM on wayland with older wpebackend-fdo. + Fix the build due to seccomp.h header not found. + Security fixes: CVE-2020-9947, CVE-2020-9948, CVE-2020-9951, CVE-2021-1817, CVE-2021-1820, CVE-2021-1825, CVE-2021-1826, CVE-2021-30661. - Drop seccomp-build-fix.patch and wpe-shm-check.patch: fixed upstream. ------------------------------------------------------------------- Mon Sep 7 22:24:27 UTC 2020 - Michael Gorse <mgorse@suse.com> - Add wpe-shm-check.patch: make SHM initialization fail for wpebackend-fdo < 1.7.0. ------------------------------------------------------------------- Sun Sep 6 16:36:23 UTC 2020 - Michael Gorse <mgorse@suse.com> - Add seccomp-build-fix.patch: pass seccomp include directory to g++. - Re-enable bubblewrap sandbox for SLE-15-SP2 and Tumbleweed. ------------------------------------------------------------------- Sat Sep 5 15:26:46 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org> - Update to version 2.29.92: + Fix user agent header after a redirect when a new quirk is required. + Stop using firefox user agent quirk for google docs. + Fix rendering frames timeline panel in web inspector. + Fix per-thread cpu usage in web inspector. + Fix several crashes and rendering issues. - Changes from version 2.29.91: + Fix a web process crash introduced in 2.29.90. - Changes from version 2.29.90: + Fix font variation settings when font smoothing setting is also present. + Fix HTML drag and drop operations. + Fix argument order for clone syscall seccomp filter on s390x. + Fix a crash when selecting text. + Fix several crashes and rendering issues. - Changes from version 2.29.4: + Add support for backdrop filters. + Add support for text-underline-offset and text-decoration-thickness. + Add OpenCDM and AV1 support to media backend. + Add new API to get ITP data summary. + Use mobile user-agent on tablets. + Fix several crashes and rendering issues. - Changes from version 2.29.3: + Add webkit_authentication_request_get_security_origin. + Change the cookies accept policy to always when no-third-party is set and ITP is enabled. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Add support for sndio to bubblewrap sandbox. + Also handle dark themes when the name ends with -Dark. + Fix a race condition causing a crash in media player. + Fix several crashes and rendering issues. - Changes from version 2.29.2: + Add Intelligent Tracking Prevention (ITP) support. + Add support for video formats in img elements. + Add API to handle video autoplay policy that now defaults to disallow autoplay videos with audio. + Add API to mute a web view. + Add API to allow applications to handle the HTTP authentication credential storage. + Add a WebKitSetting to set the media content types requiring hardware support. + Fix a crash during drag an drop due to a bug introduced in 2.29.1. + Do not start page load during animation in back/forward gesture. + Fix several crashes and rendering issues. - Changes from version 2.29.1: + Stop using GTK theming to render form controls. + Add API to disable GTK theming for scrollbars too. + Fix several race conditions and threading issues in the media player. + Add USER_AGENT_BRANDING build option. + Add paste as plain text option to the context menu for rich editable content. + Fix several crashes and rendering issues. + Updated translations. - Rebase webkit2gtk3-fdo-soname.patch. - Add pkgconfig(libsystemd) BuildRequires: new dependency. ------------------------------------------------------------------- Thu Aug 6 08:22:08 UTC 2020 - Jan Engelhardt <jengelh@inai.de> - Add no-forced-sse.patch, cure execution of illegal instruction in i586 firefox. ------------------------------------------------------------------- Wed Jul 29 15:18:24 UTC 2020 - Michael Gorse <mgorse@suse.com> - Update to version 2.28.4 (boo#1174662): + Fix several crashes and rendering issues. + Security fixes: CVE-2020-9862, CVE-2020-9893, CVE-2020-9894, CVE-2020-9895, CVE-2020-9915, CVE-2020-9925. ------------------------------------------------------------------- Fri Jul 10 12:08:05 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.28.3 (boo#1173998): + Enable kinetic scrolling with async scrolling. + Fix web process hangs on large GitHub pages. + Bubblewrap sandbox should not attempt to bind empty paths. + Fix threading issues in the media player. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-9802, CVE-2020-9803, CVE-2020-9805, CVE-2020-9806, CVE-2020-9807, CVE-2020-9843, CVE-2020-9850, CVE-2020-13753, CVE-2020-9952. ------------------------------------------------------------------- Mon Apr 27 15:27:49 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.28.2 (boo#1170643): + Fix excessive CPU usage due to GdkFrameClock not being stopped. + Fix UI process crash when EGL_WL_bind_wayland_display extension is not available. + Fix position of select popup menus in X11. + Fix playing of Youtube 'live stream'/H264 URLs. + Fix a crash under X11 when cairo uses xcb. + Fix the build in MIPS64. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-3899. ------------------------------------------------------------------- Wed Apr 15 05:39:04 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.28.1 (boo#1169658): + Fix position of default option element popup windows under Wayland. + Fix rendering after a cross site navigation with PSON enabled and hardware acceleration forced. + Fix a crash in nested wayland compositor when closing a tab with PSON enabled. + Update Chrome and Firefox versions in user agent quirks. + Fix a crash with bubblewrap sandbox enabled. + Fix a crash in JavaScriptCore in ppc64el. + Fix the build with GStreamer 1.12. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-11793. - Drop webkit2gtk3-gstreamer-build-fix.patch: Fixed upstream. ------------------------------------------------------------------- Thu Apr 2 19:53:27 UTC 2020 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-gstreamer-build-fix.patch: fix build with gstreamer 1.12 (webkit#209296). - Rebase webkit-process.patch. - Use WebKit defaults for ENABLE_JIT and USE_SYSTEM_MALLOC, except for aarch64. WebKit now sets reasonable defaults based on architecture. Disable on aarch64 in case a user is still using the kernel-64kb package. - Use bubblewrap, xdg-dbus-proxy, wpe, and wpebackend-fdo on 15.2; they had been unintentionally excluded. - Increase mem_per_process; otherwise fails on SLE/Leap. ------------------------------------------------------------------- Thu Mar 12 12:10:03 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.28.0 (boo#1165528): + Add API to enable Process Swap on (Cross-site) Navigation. + Add user messages API for the communication with the web extension. + Add support for same-site cookies. + Service workers are enabled by default. + Add support for Pointer Lock API. + Add flatpak sandbox support. + Make ondemand hardware acceleration policy never leave accelerated compositing mode. + Always use a light theme for rendering form controls. + Add about:gpu to show information about the graphics stack. + Security fixes: CVE-2020-10018, CVE-2020-3885, CVE-2020-3894, CVE-2020-3895, CVE-2020-3897, CVE-2020-3900, CVE-2020-3901, CVE-2020-3902, CVE-2021-30762. - Drop webkit2gtk3-ppc-build-fix.patch: Fixed upstream. ------------------------------------------------------------------- Fri Feb 28 09:19:47 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Disable webkit-process.patch: Needs rebase, and furthermore it should not be applied for Leap 15.2 as it is today. ------------------------------------------------------------------- Thu Feb 27 19:14:05 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.27.91: + Update user agent quirks to fix the unsupported browser message in several google services. + Fix several compile warnings with GCC 10. + Fix the build with GCC 10. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Tue Feb 18 21:31:17 UTC 2020 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-ppc-build-fix.patch: fix ppc64le build failure on SLE 15. ------------------------------------------------------------------- Fri Feb 14 11:10:04 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.27.90: + Add support for same-site cookies. + Add flatpak sandbox support. + Enable WebAudio and WebGL by default in WebKitSettings. + Add a setting to disallow top level navigation to a data URI. + Add support for the -webkit-font-smoothing CSS property. + Always use a light theme for rendering form controls. + Stop making the Web Inspector windows transient. + Ensure mouse cursor is hidden during fullscreen video playback. + Add support for inspecting service workers to the remote inspector. + Fix several crashes and rendering issues. - Changes from version 2.27.4: + Add API for input methods. + Add API to serialize/deserialize a JSCValue to/from a JSON string. + Add support for strict secure cookies. + Add support for saving data from remote inspector. + Make ondemand hardware acceleration policy never leave accelerated compositing mode. + Fix rendering of conic gradients in high resolution displays. + Fix special combination characters not respecting the keystroke order when high CPU load. + Honor the IndexedDB directory set in WebsiteDataManager. + Fix rendering of text when there’s an initial advance in the text run. + Fix web process crash when displaying a KaTeX formula. + Fix network process crash with PSON enabled. + Fix several crashes and rendering issues. - Changes from version 2.27.3: + Add support for Pointer Lock API. + Improve performance when falling back to system fonts. + Stop using DBus for the remote inspector implementation to improve the performance of both WebDriver and remote inspector. + Implement support for new ARIA roles: code, strong, emphasis, generic. + Fix handling of content type with new custom protocols implementation. + Make image decoders fully thread safe. + Add support for get page source command in WebDriver. + Add support for network proxy capabilities in WebDriver. + Add support for new window command in WebDriver. + Fix several crashes and rendering issues. + Updated translations. - Changes from version 2.27.2: + Add user messages API for the communication with the web extension. + Enable service workers by default. + Add support for saving data in Web Inspector. + More navigation gesture improvement. + Fix the build with WebDriver disabled. + Show also client EGL extensions in about:gpu. + Disable accelerated compositing when we fail to initialize the EGL dispaly under Wayland. + Fix several crashes and rendering issues. - Changes from version 2.27.1: + Enable async scrolling when accelerating compositing policy is ‘always’. + Add about:gpu to show information about the graphics stack. + Add API to enable Process Swap on (Cross-site) Navigation, that is now disabled by default. + Add WebKitWebView:page-id property. + Improve swipe navigation gesture style. + Fix several crashes and rendering issues. - Rebase webkit2gtk3-fdo-soname.patch. ------------------------------------------------------------------- Fri Feb 14 11:10:03 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.26.4 (boo#1163809): + Always use a light theme for rendering form controls. + Fix the build with WPE renderer disabled. + Fix the build with OpenGL disabled. + Fix the build with GCC 10. + Fix several crashes and rendering issues. + Security fixes: CVE-2020-3862, CVE-2020-3864, CVE-2020-3865, CVE-2020-3867, CVE-2020-3868. ------------------------------------------------------------------- Sat Jan 25 14:21:01 UTC 2020 - Dominique Leuenberger <dimstar@opensuse.org> - No longer recommend -lang: supplements are in use ------------------------------------------------------------------- Wed Jan 22 11:44:30 UTC 2020 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.26.3 (boo#1161719): + Fix issues while trying to play a video on NextCloud. + Make sure the GL video sink uses a valid WebKit shared GL context. + Fix vertical alignment of text containing arabic diacritics. + Fix build with icu 65.1. + Fix page loading errors with websites using HSTS. + Fix web process crash when displaying a KaTeX formula. + Fix several crashes and rendering issues. + Security fixes: CVE-2019-8835, CVE-2019-8844, CVE-2019-8846. - Drop webkit2gtk3-icu-build-fix.patch: Fixed upstream. ------------------------------------------------------------------- Thu Dec 19 21:50:10 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Start using webkitgtk default gigacage malloc via passing USE_SYSTEM_MALLOC=OFF to cmake. ------------------------------------------------------------------- Thu Dec 19 15:36:37 UTC 2019 - Michael Gorse <mgorse@suse.com> - Add webkit-process.patch: use single web process for evolution and geary on 15.0 (boo#1159329 glgo#GNOME/evolution#587). ------------------------------------------------------------------- Mon Nov 11 22:31:54 UTC 2019 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-icu-build-fix.patch: fix build with icu 65.1. ------------------------------------------------------------------- Thu Nov 7 16:38:56 UTC 2019 - Michael Gorse <mgorse@suse.com> - Only use wpe and xdg-dbus-proxy/bubblewrap for TW and SLE-15-SP2 / leap 15.2. - Don't pass -DENABLE_BUBBLEWRAP_SANDBOX=ON; it is on by default. - Remove conditionals for EOL versions of openSUSE. - Always build with python3; remove the conditional. ------------------------------------------------------------------- Wed Nov 6 16:26:43 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.26.2 (boo#1156318): + Improve performance of querying system fallback fonts. + Don't use prgname in dbus-proxy socket path. + Fix thread-safety issues in image decoders. + Fix the build with WebDriver disabled. + Disable accelerated compositing when we fail to initialize the EGL dispaly under Wayland. + Fill the objects category in emoji picker. + Fix several crashes and rendering issues. + Security fixes: CVE-2019-8812, CVE-2019-8814. ------------------------------------------------------------------- Thu Sep 26 10:03:59 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Enable sandbox again (pass -DENABLE_BUBBLEWRAP_SANDBOX=ON to cmake). - Move bubblewrap and xdg-dbus-proxy Requires from main package to main library package libwebkit2gtk-4_0-37, they are needed at runtime, and there is no webkit2gtk3 package that we can install. ------------------------------------------------------------------- Mon Sep 23 15:24:34 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.26.1: + Fix MSE media player with GStreamer 1.14. + Fix HTML alternate loads never finishing. + Fix web view initialization delay on fisrt load. + Validate user agent string set via API. + Fix a crash when a web view is destroyed with accelerated compositing mode enabled. + Fix EGL initialization with newer versions of Mesa. + Do not enable the sandbox inside docker. + Fix several crashes and rendering issues. + Security fixes: CVE-2019-8783, CVE-2019-8811, CVE-2019-8813, CVE-2019-8816, CVE-2019-8819, CVE-2019-8820, CVE-2019-8823. ------------------------------------------------------------------- Thu Sep 19 16:44:45 UTC 2019 - Michael Gorse <mgorse@suse.com> - Add webkit2gtk3-fdo-soname.patch: don't try to open WPE backend with an unversioned soname. ------------------------------------------------------------------- Tue Sep 17 14:42:14 UTC 2019 - Michael Gorse <mgorse@suse.com> - Enable pkgconfig(wpe-1.0) and pkgconfig(wpebackend-fdo-1.0) BuildRequires and stop passing DUSE_WPE_RENDERER=OFF to cmake. ------------------------------------------------------------------- Thu Sep 12 21:09:23 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Test disable sandbox, does this fix epiphany? (pass -DENABLE_BUBBLEWRAP_SANDBOX=OFF to cmake). ------------------------------------------------------------------- Mon Sep 9 09:59:58 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.26.0 (boo#1155321): + Add support for subprocess sandboxing. + Add support for HSTS (HTTP Strict Transport Security). + Use libwpe with fdo backend to implement accelerated compositing under wayland. + Remove support for GTK2 NPAPI plugins. + Add support for datalist element in text input fields. + Show the emoji chooser popover for editable content. + Improve rendering of form controls when GTK theme is dark. + Fix rendering artifacts in youtube volume button and github comment box. + Single process model has been deprecated for security reasons. + Security fixes: CVE-2019-8625, CVE-2019-8720, CVE-2019-8769, CVE-2019-8771, CVE-2019-8710, CVE-2019-8743, CVE-2019-8764, CVE-2019-8766, CVE-2019-8782, CVE-2019-8808, CVE-2019-8815, CVE-2021-30666, CVE-2021-30761. ------------------------------------------------------------------- Tue Sep 3 12:11:49 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.25.92: + Add WEBKIT_USE_SINGLE_WEB_PROCESS environment variable to force single process model in all WebKitWebContext. This is a temporary solution for applications still depending on the single process mode behavior. It will be only available in 2.26 series. + Add new API to remove a filter from an user content manager given its identifier. + Add support for HSTS. + Several improvements and bug fixes in MSE media player. + Fix building without unified sources. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Fri Aug 30 11:25:04 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Disable pkgconfig(wpe-1.0) and pkgconfig(wpebackend-fdo-1.0) BuildRequires and pass DUSE_WPE_RENDERER=OFF to cmake. Needs more work upstream. ------------------------------------------------------------------- Fri Aug 30 02:25:04 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.25.4: + Switch to use libsoup WebSockets API. + Add support for permessage-deflate WebSocket extension. + Add support for datalist element in text input fields. + Fix a crash with empty video source. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Fri Aug 30 02:25:03 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.25.3: + Remove support for GTK2 NPAPI plugins. + Fix web view updates after swapping web process if accelerated compositing mode is forced. + Make kinetic scrolling work again. + Fix position of emoji chooser when page is scrolled. + Fix web process deadlock when scrolling twitter timeline which contains HLS videos. + Make navigation gesture use dark fallback background color color on dark themes. + Make Previous/Next gesture work in RTL mode. + Support cancelling touchscreen back/forward gesture. + Add user agent quirk to make github work in FreeBSD. + Fix content disappearing when using CSS transforms. + Fix some radio streams that could not be played. + Fix video pause that sometimes caused to skip to finish. + Fix volume level changes when playing a video. + Fix several crashes and rendering issues. - Changes from version 2.25.2: + Enable process switch on cross site navigation. + Use libwpe with fdo backend to implement accelerated compositing under wayland. + Fix rendering artifacts in youtube volume button. + Fix trapezoid artifact in github comment box. + Ensure web extensions directory is readable when sandbox is enabled. + Fix the executable name of WebDriver process, renamed by mistake in 2.25.1. + Enable hyperlink auditing setting by default. + Remove the option to build without using the redirected XComposite window. + Fix HLS streams being slow to start. + Make accessibility work when sandbox is enabled. + Fix several crashes and rendering issues. - Changes from version 2.25.1: + Add support for subprocess sandboxing. + Add API to get the web process unique identifier of a WebKitFrame. + Add WebKitWebPage::did-associate-form-controls-for-frame signal and deprecate did-associate-form-controls. + Implement AtkComponentIface scroll_to methods. + Improve rendering of form controls when GTK theme is dark and enable prefers-color-scheme media query. + Show the emoji chooser popover for editable content. + Fix touch capabilities detection for websites checking touch events properties present in window or pointer media queries. + Fix several crashes and rendering issues. - Drop webkit2gtk3-bwo197558-hang.patch: Fixed upstream. - Add pkgconfig(wpe-1.0) and pkgconfig(wpebackend-fdo-1.0) BuildRequires: New dependencies. - Enable bubblewrap, xdg-dbus-proxy and pkgconfig(libseccomp) BuildRequires as well as bubblewrap and xdg-dbus-proxy Requires: Sandbox feature is enabled again. - Drop conditional pkgconfig(gtk+-2.0) BuildRequires and webkit2gtk3-plugin-process-gtk2 sub-package, support for gtk2 plugins are now dropped upstream. Add Obsoletes in libwebkit2gtk. ------------------------------------------------------------------- Wed Aug 28 12:40:21 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.24.4 (boo#1148931): + Updated the user agent string to make happy certain websites which would claim that the browser being used was unsupported. + Improve loading of multimedia streams to avoid memory exhaustion due to excessive caching. + Fix display of documents with MIME type application/xml in the Web Inspector, when loaded using XmlHttpRequest. + Fix a hang while scrolling certain websites which include HLS video content (Twitter, for example). + Fix rounding artifacts in volume levels for media playback. + Fix several crashes and rendering issues. + Fix the build with video track support disabled. + Fix the build with OpenGL support disabled. + Fix build issue which would cause media controls to disappear when Python 3.x was used during the build process. + Security fixes: CVE-2019-8644, CVE-2019-8649, CVE-2019-8658, CVE-2019-8669, CVE-2019-8678, CVE-2019-8680, CVE-2019-8683, CVE-2019-8684, CVE-2019-8688, CVE-2019-8674, CVE-2019-8707, CVE-2019-8719, CVE-2019-8733, CVE-2019-8763, CVE-2019-8765, CVE-2019-8821, CVE-2019-8822. - Drop webkit2gtk3-bwo197558-hang.patch: Fixed upstream. ------------------------------------------------------------------- Sun Jul 14 14:21:58 UTC 2019 - Rich Coe <rcoe@wi.rr.com> - Add webkit2gtk3-bwo197558-hang.patch for hang (bwo#197558) ------------------------------------------------------------------- Mon Jul 8 16:50:58 UTC 2019 - mgorse@suse.com - Drop webkit2gtk3-boo1088932-a11y-state-set.patch: fixed upstream. ------------------------------------------------------------------- Tue Jul 2 11:17:11 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.24.3: + Deprecate WebSQL APIs. + Make Previous/Next gesture work in RTL mode. + Fix content disappearing when using CSS transforms. + Fix rendering artifacts in youtube volume button. + Fix trapezoid artifact in github comment box. + Fix video pause that sometimes caused to skip to finish. + Fix volume level changes when playing a video. + Fix HLS streams being slow to start. + Fix some radio streams that could not be played. + Fix the build with older versions of GStreamer. + Fix the build with video and audio disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2019-8666, CVE-2019-8673, CVE-2019-8676, CVE-2019-8681, CVE-2019-8687, CVE-2019-8689, CVE-2019-8690, CVE-2019-8726. + Updated translations. - Drop upstream fixed patches: + webkit2gtk3-bug196440-build-fix.patch. + webkit2gtk3-bug198080-build-fix.patch. ------------------------------------------------------------------- Sat Jun 22 18:34:57 UTC 2019 - mgorse@suse.com - Add webkit2gtk3-bug196440-build-fix.patch and webkit2gtk3-bug198080-build-fix.patch: fix build failures on SLE/Leap 15 and SLE 12. ------------------------------------------------------------------- Fri May 24 08:00:33 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.24.2 (boo#1135715): + Fix rendering of emojis copy-pasted from GTK emoji chooser. + Fix space characters not being rendered with some CJK fonts. + Fix adaptive streaming playback with older GStreamer versions. + Set a maximum zoom level for pinch zooming gesture. + Fix navigation gesture to not interfere with scrolling. + Fix SSE2 detection at compile time, ensuring the right flags are passed to the compiler. + Fix several crashes and rendering issues. + Security fixes: CVE-2019-8595, CVE-2019-8607, CVE-2019-8615, CVE-2019-8671, CVE-2019-8672, CVE-2019-8677, CVE-2019-8679, CVE-2019-8686, CVE-2019-8735. + Updated translations. - Drop webkit2gtk3-fix-i586-build.patch: Fixed upstream. ------------------------------------------------------------------- Wed Apr 24 17:45:53 UTC 2019 - Martin Liška <mliska@suse.cz> - Disable LTO (boo#1133291). ------------------------------------------------------------------- Mon Apr 15 11:06:10 UTC 2019 - Dominique Leuenberger <dimstar@opensuse.org> - Add webkit2gtk3-fix-i586-build.patch: Fix build on i586. ------------------------------------------------------------------- Wed Apr 10 21:50:50 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.24.1 (boo#1132256): + Do not allow changes in active URI before provisional load starts for non-API requests. + Stop the threaded compositor when the page is not visible or layer tree state is frozen. + Use WebKit HTTP source element again for adaptive streaming fragments downloading. + Properly handle empty resources in webkit_web_resource_get_data(). + Add quirk to ensure outlook.live.com uses the modern UI. + Fix methods returing GObject or boxed types in JavaScriptCore GLib API. + Ensure callback data is passed to functions and constructors with no parameters in JavaScriptCore GLib API. + Fix rendering of complex text when the font uses x,y origins. + Fix sound loop with Google Hangouts and WhatsApp notifications. + Fix the build with GStreamer 1.12.5 and GST GL enabled. + Detect SSE2 at compile time. + Fix several crashes and rendering issues. + Security fixes: CVE-2019-6251, CVE-2019-11070. - Drop webkitgtk-gstreamer-gl-build-fix.patch: Fixed upstream. ------------------------------------------------------------------- Tue Mar 26 22:39:18 UTC 2019 - mgorse@suse.com - Add webkitgtk-gstreamer-gl-build-fix.patch: fix build on SLE/Leap 15 (webkit#196178). ------------------------------------------------------------------- Tue Mar 19 19:52:23 UTC 2019 - mgorse@suse.com - Disable openjpeg on SLE 12. Our version isn't new enough. ------------------------------------------------------------------- Wed Mar 13 13:40:11 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.24.0: + Added support fot content filtering. + Variation fonts support. + Fully emoji rendering support. + Added navigation and pinch zoom gestures for touchpads. + Support for JPEG2000 images. + Script dialogs are now modal to the current web view only. + New API to convert URI to format for display. + Security fixes: CVE-2019-8375 (boo#1126768), CVE-2019-8506, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536, CVE-2019-8544, CVE-2019-8551, CVE-2019-8558, CVE-2019-8559, CVE-2019-8563, CVE-2019-8768. ------------------------------------------------------------------- Wed Mar 6 16:25:48 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.23.92: + Fix constructors returning a GObject in JSC GLib API. + Do not scan NPAPI plugins when plugins are disabled in settings. + Add WebKitUserContentFilterStore to the API docs. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Sun Mar 3 18:37:51 UTC 2019 - bjorn.lie@gmail.com - Update to version 2.23.91: + Add new API to handle user content filters. + Fix a UI process crash while filling selection data during drag and drop. + Fix deadlock on Linux/x64 between SamplingProfiler and VMTraps. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Sun Mar 3 16:05:51 UTC 2019 - bjorn.lie@gmail.com - Update to version 2.23.90: + Add a new setting to disable JavaScript elments from documents during parsing. + Add new API to expose JavaScriptCore options. + Add support for JPEG2000 images. + Add support for back/forward touchpad gesture. + Add support for pinch zoom on touchpad. + Use a scrolled window in alert dialogs to handle long contents. + Sleep disabler now inhibits idle when a "System" sleep disabler is requested. + Remove experimental sandboxing support, it's not yet ready for stable release. + Fix a web process deadlock when starting the remote inspector. + Fix a crash when browsing inspector:// URI without port set. + Fix several crashes and rendering issues. - Add openjpeg2 and openjpeg2-devel BuildRequires: New dependencies. - Drop webkit2gtk3-python3.patch: Not needed anymore. - Disable bubblewrap, xdg-dbus-proxy and pkgconfig(libseccomp) BuildRequires and bubblewrap, xdg-dbus-proxy Requires: Sandbox support was disabled by upstream again. - Stop passing -DENABLE_ACCELERATED_2D_CANVAS=ON to cmake, follow upstream default. ------------------------------------------------------------------- Sun Mar 3 16:05:50 UTC 2019 - bjorn.lie@gmail.com - Update to version 2.23.3: + Fix rendering of emoji sequences containing zero with joiner. + Fallback to a colored font when rendering emojis. + Fix rendering artifacts on Youtube while scrolling under X11. + Remove DConf permissions from sandbox. + Fix build from release tarball with gtkdoc enabled. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Sun Mar 3 16:05:49 UTC 2019 - bjorn.lie@gmail.com - Update to version 2.23.2: + Fix rendering artifacts in some websites with accelerated compositing enabled. + Add initial support for variation fonts. + Add new API to convert a URI to a format for display. + Make scrollbars follow gtk-primary-button-warps-slider setting. + Fix crashes when closing the WebDriver session. + Fix the build with OpenGL disabled. + Fix several crashes and rendering issues. - Changes from version 2.23.1: + Add initial support for subprocess sandboxing in Linux. + Add new permission request type for media device information. + Make scrollbars follow gtk-primary-button-warps-slider setting. + Script dialogs are now modal to the current web view only. + Fix several crashes and rendering issues. - Add bubblewrap, xdg-dbus-proxy and pkgconfig(libseccomp) BuildRequires: New dependencies for subprocess sandboxing. - Add bubblewrap and xdg-dbus-proxy Requires: They are needed at runtime. - Disable webkit2gtk3-python3.patch: Needs rebase or possibly outright dropping as fixed, as some parts of them are checked in upstream. ------------------------------------------------------------------- Sat Mar 2 16:34:27 UTC 2019 - Bjørn Lie <bjorn.lie@gmail.com> - Update to version 2.22.7: + Fix rendering of glyphs in Hebrew (and possibly other languages) when Unicode NFC normalization is used. + Fix several crashes and race conditions. + Security fixes: CVE-2019-8518, CVE-2019-8523. ------------------------------------------------------------------- Wed Feb 13 17:16:52 UTC 2019 - mgorse@suse.com - Replace webkit2gtk3-boo1088932-a11y-state-set.patch with a patch proposed for webkit#188599. The original patch didn't always prevent crashes. ------------------------------------------------------------------- Sat Feb 9 15:44:38 UTC 2019 - bjorn.lie@gmail.com - Update to version 2.22.6 (boo#1124937): + Make kinetic scrolling slow down smoothly when reaching the ends of pages, instead of abruptly, to better match the GTK+ behaviour. + Fix Web inspector magnifier under Wayland. + Fix garbled rendering of some websites (e.g. YouTube) while scrolling under X11. + Fix several crashes, race conditions, and rendering issues. - CVE identifiers fixed: CVE-2019-6212, CVE-2019-6215, CVE-2019-6216, CVE-2019-6217, CVE-2019-6226, CVE-2019-6227, CVE-2019-6229, CVE-2019-6233, CVE-2019-6234, CVE-2019-6201, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8515. ------------------------------------------------------------------- Wed Dec 26 19:21:01 UTC 2018 - bjorn.lie@gmail.com - Pass DENABLE_ACCELERATED_2D_CANVAS=ON to cmake, build accelerated 2d canvas support, we already build the needed support in cairo. - Switch to Ninja build, add ninja BuildRequires and pass GNinja to cmake and use ninja_build and ninja_make macros. ------------------------------------------------------------------- Wed Dec 26 16:54:29 UTC 2018 - schwab@suse.de - Don't use gold on ppc. ------------------------------------------------------------------- Mon Dec 17 10:12:07 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.22.5: + Improved the logic to determine for which architectures to enable the JIT compiler support and USE_SYSTEM_MALLOC at build time. + Fix the build with ENABLE_VIDEO=OFF and ENABLE_OPENGL=OFF. + Fix several crashes. + Security fixes: CVE-2018-4437 (boo#1119553), CVE-2018-4438 (boo#1119554), CVE-2018-4441 (boo#1119555), CVE-2018-4442 (boo#1119556), CVE-2018-4443 (boo#1119557), CVE-2018-4464 (boo#1119558). ------------------------------------------------------------------- Fri Dec 7 22:34:19 UTC 2018 - mgorse@suse.com - Disable media source extension on SLE/Leap 15 and earlier, since it requires gstreamer 1.14.0. ------------------------------------------------------------------- Wed Nov 28 10:47:03 UTC 2018 - schwab@suse.de - Reduce memory constraints for riscv64 ------------------------------------------------------------------- Thu Nov 22 12:02:43 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.22.4 (boo#1116998): + Expose ENABLE_MEDIA_SOURCE as a public build option. + Fix a crash when using Cairo versions between 1.15 and 1.16.0 + Fix the build with -DLOG_DISABLED=0. + Fix the build with ENABLE_VIDEO=OFF and ENABLE_WEB_AUDIO=OFF. + Fix debug builds of JavaScriptCore. + Fix several crashes and rendering issues. + Security fixes: CVE-2018-4372. ------------------------------------------------------------------- Mon Nov 12 10:32:01 UTC 2018 - Guillaume GARDET <guillaume.gardet@opensuse.org> - Update _constraints to latest values to avoid OOM erros ------------------------------------------------------------------- Mon Oct 29 11:04:26 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.22.3: + Many improvements and fixes for video playback with media source extensions (MSE), which improve the user experience across the board, and in particular for playback of WebM videos. + Fix a memory leak during media playback when using playbin3. + Fix portions of Web views not being rendered after resizing. + Fix Resource Timing reporting for <iframe> elements. + Fix the build with the remote Web Inspector disabled. + Fix the build on ARMv7 with NEON extensions. + Fix several crashes and rendering issues. + Security fixes: CVE-2018-4345, CVE-2018-4386. ------------------------------------------------------------------- Thu Oct 11 14:20:21 UTC 2018 - mgorse@suse.com - Re-enable building with python 3 for SLE/Leap 15 and Tumbleweed - Update webkit2gtk3-python3.patch. ------------------------------------------------------------------- Thu Oct 4 21:04:10 UTC 2018 - mgorse@suse.com - Integrate changes needed for SLE 12 / leap 42.3: + depend on gcc7-c++, and pass appropriate executables to cmake. + Disable web crypto API: libgcrypt is too old. + Define USE_GSTREAMER_GL=FALSE: needs gstreamer 1.10.0 or newer. - disable libwoff2 for SLE 15/12 and Leap 15/42.3, since it is not available there. ------------------------------------------------------------------- Wed Sep 26 15:19:42 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.22.2: + Several fixes for video playback with media source extensions (MSE). This allows using WebM support for YouTube, which no longer works through regular video source. Note that MSE is still disabled by default and webkit_settings_set_enable_mediasource() has to be used to enable the feature. + Fix the build when only Wayland support is enabled and X11 headers are not available. - Changes from version 2.22.1: + Fix printing in landscape. + Fix the build in several platforms: s390x, ppc64le, armv7hl. + Fix the build with a11y disabled. + Fix the build with video disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2018-4375, CVE-2018-4376, CVE-2018-4378, CVE-2018-4382, CVE-2018-4392, CVE-2018-4416. - Add new upstream maintainer's GPG key to the keyring. ------------------------------------------------------------------- Tue Sep 4 10:18:37 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.22.0 (boo#1110279): + New JavaScriptCore GLib API. + Switched to use complex text code path unconditionally. + Added playbin3 support to GStreamer media backend. + Support for WebDriver advance user insteraction commands. + Default option menu implementation now uses a GtkTreeView. + Security fixes: CVE-2018-4191, CVE-2018-4197, CVE-2018-4299, CVE-2018-4306, CVE-2018-4309, CVE-2018-4312, CVE-2018-4314, CVE-2018-4315, CVE-2018-4316, CVE-2018-4317, CVE-2018-4318, CVE-2018-4319, CVE-2018-4323, CVE-2018-4328, CVE-2018-4358, CVE-2018-4359, CVE-2018-4361, CVE-2018-4373. ------------------------------------------------------------------- Fri Aug 24 11:28:26 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.21.92: + Add new API to inject/register user content in isolated worlds. + Add more API to JSCException to handle column number, convert exception to string, get the exception backtrace, create exceptions with a custom error name and report exception message with full details. + Fix excessive CPU usage when getting the process memory footprint. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Thu Aug 16 12:44:22 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.21.91: + Add enable-media-capabilities setting. + Stop pushing buffers when seeking status changes in media player. + Fix rendering of theme styled buttons. + Fix several crashes and rendering issues. + Updated translations. - Add explict pkgconfig(gstreamer-app-1.0), pkgconfig(gstreamer-audio-1.0), pkgconfig(gstreamer-codecparsers-1.0), pkgconfig(gstreamer-fft-1.0), pkgconfig(gstreamer-mpegts-1.0), pkgconfig(gstreamer-pbutils-1.0), pkgconfig(gstreamer-tag-1.0) and pkgconfig(gstreamer-video-1.0) BuildRequires: align with what configure checks for. - Disable webkit2gtk3-python3.patch via bcond_with: Patch currently breaks the build. ------------------------------------------------------------------- Mon Aug 13 07:59:48 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.20.5: + Fix rendering artifacts in some web sites due to a bug introduced in 2.20.4. ------------------------------------------------------------------- Wed Aug 8 02:21:05 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.21.5: + Add API to evaluate code in a new object to JavaScriptCore GLib API. + Add API to check for syntax errors in given code to JavaScriptCore GLib API. + Update jsc_context_evaluate_with_source_uri() to receive also a starting line number. + Add API to allow creating variadic functions to JavaScriptCore GLib API. + Add –host option to WebDriver process. + Handle acceptInsecureCertificates capability in WebDriver. + Fix video freezes when GStreamerGL is not installed. + Fix several crashes and rendering issues. + Updated translations. - Refresh webkit2gtk3-boo1088932-a11y-state-set.patch and webkit2gtk3-python3.patch with quilt. ------------------------------------------------------------------- Wed Aug 8 02:21:04 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.21.4: + Switch to use a popup window with a tree view instead of a menu for option menu default implementation. + Add API to run javascript from a WebKitWebView in an isolated world. + Fix UI process crash in WebKitFaviconDatabase when pageURL is unset. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Wed Aug 8 02:21:03 UTC 2018 - luc14n0@linuxmail.org - Update to version 2.21.3: + Ensure memory monitor properly notifies all child processes. + Add maximize, minimize and fullscreen window commands to WebDriver. + Fix a network process crash when trying to get cookies of about:blank page. + Fix UI process crash when closing the window under Wayland. + Disable Gigacage if mmap fails to allocate in Linux. + Fix several crashes and rendering issues. - Changes from version 2.21.2: + Remove resource load statistics API, it's not ready yet. + Add initial implementation of WebDriver advance user insteraction commands. + Add introspectable alternatives for functions using vargars to JavaScriptCore GLib API. + Implement MouseEvent.buttons. + Fix downloads started by context menu failing in some websites due to missing user agent HTTP header. - Rebase webkit2gtk3-python3.patch generate-bytecode-files chunks. ------------------------------------------------------------------- Wed Aug 8 02:21:01 UTC 2018 - luc14n0@linuxmail.org - Update to version 2.21.1: + Add initial JavaScriptCore GLib API. + Use JavaScriptCore GLib API in WebKit layer and deprecate most of the DOM bindings API as well as + methods using the JavaScriptCore C API. + Switch to use complex text code path unconditionally. + Properly close the connection to the Wayland nested compositor in the WebProcess. + Add playbin3 support to GStreamer media backend. + Fix a deadlock when destroying the media player in non accelerated compositing mode. - Drop webkitgtk-typelib-sharelib-link.patch: there is no JavaScriptCore.gir.in file to be patched anymore. ------------------------------------------------------------------- Tue Aug 7 08:59:06 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.20.4: + Fix a crash when leaving accelerated compositing mode. + Fix non-deterministic build failure due to missing JavaScriptCore/JSContextRef.h. + Security fixes: CVE-2018-4261, CVE-2018-4262, CVE-2018-4263, CVE-2018-4264, CVE-2018-4265, CVE-2018-4266, CVE-2018-4267, CVE-2018-4270, CVE-2018-4272, CVE-2018-4273, CVE-2018-4278, CVE-2018-4284. - Drop webkit2gtk3-boo1101999-off-by-one.patch: Fixed upstream. ------------------------------------------------------------------- Fri Jul 20 15:15:12 UTC 2018 - mgorse@suse.com - Add webkit2gtk3-boo1101999-off-by-one.patch: fix off-by-one in xdg_mime_get_simple_globs (boo#1101999 CVE-2018-12911). ------------------------------------------------------------------- Mon Jun 11 13:22:44 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.20.3: + Fix installation directory of API documentation. + Disable Gigacage if mmap fails to allocate in Linux. + Add user agent quirk for paypal website. + Properly detect compiler flags, needed libs, and fallbacks for usage of 64-bit atomic operations. + Fix a network process crash when trying to get cookies of about:blank page. + Fix UI process crash when closing the window under Wayland. + Fix several crashes and rendering issues. + Security fixes: CVE-2018-4190, CVE-2018-4199, CVE-2018-4218, CVE-2018-4222, CVE-2018-4232, CVE-2018-4233, CVE-2018-4246, CVE-2018-11646. - Drop webkit2gtk3-boo1095611-null-page-url.patch: Fixed upstream. ------------------------------------------------------------------- Fri Jun 8 20:49:13 UTC 2018 - mgorse@suse.com - Add webkit2gtk3-boo1095611-null-page-url.patch: don't crash if the page URL is null (CVE-2018-11646). ------------------------------------------------------------------- Mon May 14 20:59:33 UTC 2018 - bjorn.lie@gmail.com - Split out the MiniBrowser in own sub-package, there might be users who just want to test it without having to pull all of the builddependencies. ------------------------------------------------------------------- Tue May 8 15:48:15 UTC 2018 - schwab@suse.de - Disable JIT on riscv64 ------------------------------------------------------------------- Mon May 7 16:00:47 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.20.2: + Do TLS error checking on GTlsConnection::accept-certificate to finish the load earlier in case of errors. + Properly close the connection to the nested wayland compositor in the Web Process. + Avoid painting backing stores for zero-opacity layers. + Fix downloads started by context menu failing in some websites due to missing user agent HTTP header. + Fix video unpause when GStreamerGL is disabled. + Fix several GObject introspection annotations. + Update user agent quiks to fix Outlook.com and Chase.com. + Fix several crashes and rendering issues. + Security fixes: CVE-2018-4200 (boo#1092280), CVE-2018-11712 (boo#1096061). ------------------------------------------------------------------- Tue May 1 17:00:12 UTC 2018 - bjorn.lie@gmail.com - Enable pkgconfig(libbrotlidec), and add pkgconfig(libwoff2dec) BuildRequires and no longer pass -DUSE_WOFF2=false to cmake. Woff2 is now available in openSUSE. - Pass -DENABLE_MINIBROWSER=ON to cmake, build the MiniBrowser and package it in devel subpackage. Usefull for developers. ------------------------------------------------------------------- Wed Apr 11 15:53:22 UTC 2018 - mgorse@suse.com - Add webkit2gtk3-boo1088932-a11y-state-set.patch: fix crash when atk_object_ref_state_set is called on an AtkObject that's being destroyed (boo#1088932 webkit#184366). ------------------------------------------------------------------- Tue Apr 10 10:23:30 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.20.1: + Improve error message when Gigacage cannot allocate virtual memory. + Add missing WebKitWebProcessEnumTypes.h to webkit-web-extension.h. + Improve web process memory monitor thresholds. + Fix a web process crash when the web view is created and destroyed quickly. + Fix a network process crash when load is cancelled while searching for stored HTTP auth credentials. + Fix the build when ENABLE_VIDEO, ENABLE_WEB_AUDIO and ENABLE_XSLT are disabled. + Fix several crashes and rendering issues. + Security fixes: CVE-2018-4204. + Updated translations. ------------------------------------------------------------------- Mon Mar 12 16:18:01 UTC 2018 - dimstar@opensuse.org - Update to version 2.20.0 (boo#1088182): + New API to retrieve and delete cookies with WebKitCookieManager. + New web process API to detect when form is submitted via JavaScript. + Several improvements and fixes in the touch/gestures support. + Support for the “system” CSS font family. + Complex text rendering improvements and fixes. + Added a low power mode. + More complete and spec compliant WebDriver implementation. + Security fixes: CVE-2018-4101, CVE-2018-4113, CVE-2018-4114, CVE-2018-4117, CVE-2018-4118, CVE-2018-4119, CVE-2018-4120, CVE-2018-4122, CVE-2018-4125, CVE-2018-4127, CVE-2018-4128, CVE-2018-4129, CVE-2018-4133, CVE-2018-4146, CVE-2018-4161, CVE-2018-4162, CVE-2018-4163, CVE-2018-4165, CVE-2018-11713, CVE-2018-4207, CVE-2018-4208, CVE-2018-4209, CVE-2018-4210, CVE-2018-4212, CVE-2018-4213. ------------------------------------------------------------------- Tue Mar 6 21:49:48 UTC 2018 - mgorse@suse.com - Add webkit2gtk3-python3.patch: port to python 3 (bsc#1079812, webkit#156674). - Add conditional to optionally require python3, rather than python2 + python-xml, and adjust %build to use python3. ------------------------------------------------------------------- Tue Mar 6 10:36:32 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.19.92: + Ensure DNS prefetching cannot be re-enabled if disabled by settings. + Fix seek sometimes not working. + Fix rendering of emojis that were using the wrong scale factor in some cases. + Fix rendering of combining enclosed keycap. + Fix rendering scale of some layers in HiDPI. + Fix a crash in Wayland when closing the web view. + Fix crashes upower crashes when running inside a chroot or on systems with broken dbus/upower. + Fix memory leaks in GStreamer media backend when using GStreamer 1.14. + Fix the build with Enchant 2.x. + Fix several crashes and rendering issues. + Updated translations. - Replace pkgconfig(enchant) with enchant-devel BuildRequires: Allow webkit2gtk3 to build with whatever enchant is available in target distro. ------------------------------------------------------------------- Mon Mar 5 16:40:57 UTC 2018 - dimstar@opensuse.org - Modernize spec-file by calling spec-cleaner ------------------------------------------------------------------- Mon Mar 5 02:19:51 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.19.91: + Add ENABLE_ADDRESS_SANITIZER to make it easier to build with asan support. + Fix a crash a under Wayland when using mesa software rasterization. + Make fullscreen video work again. + Fix handling of missing GStreamer elements. + Fix rendering when webm video is played twice. + Fix kinetic scrolling sometimes jumping around. + Fix build with ICU configured without collation support. + Fix several crashes and rendering issues. + Updated translations. - Do a minor spec cleanup. ------------------------------------------------------------------- Mon Mar 5 02:19:50 UTC 2018 - dimstar@opensuse.org - Update to version 2.19.90: + WebSockets use system proxy settings now (requires libsoup 2.61.90). + Show the context menu on long-press gesture. + Add support for Shift + mouse scroll to scroll horizontally. + Fix zoom gesture to actually zoom instead of changing the page scale. + Implement support for Graphics ARIA roles. + Make sleep inhibitors work under Flatpak. + Add get element CSS value command to WebDriver. + Fix a crash aftter a swipe gesture. + Fix several crashes and rendering issues. - Drop webkit2gtk3-fix-wayland-crash.patch: fixed upstream. ------------------------------------------------------------------- Mon Mar 5 02:19:06 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.19.6: + Fix crashes due to duplicated symbols in libjavascriptcoregtk and libwebkit2gtk. + Fix parsing of timeout values in WebDriver. + Implement get timeouts command in WebDriver. + Fix deadlock in GStreamer video sink during shutdown when accelerated compositing is disabled. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Mon Mar 5 02:19:05 UTC 2018 - zaitor@opensuse.org - Update to version 2.19.5: + This is a follow up release to export webkit_dom_dom_window_webkit_message_handlers_post_message() symbol that was hidden in 2.19.4 by mistake. - Changes from version 2.19.4: + Add web process API to detect when form is submitted via JavaScript. + Add new API to replace webkit_form_submission_request_get_text_fields() that is now deprecated. + Add WebKitWebView::web-process-terminated signal and deprecate web-process-crashed. + Fix rendering issues when editing text areas. + Use FastMalloc based GstAllocator for GStreamer. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Mon Mar 5 02:19:04 UTC 2018 - dimstar@opensuse.org - Apply -DUSE_SYSTEM_MALLOC=ON unconditionally in all builds (bmalloc seems to be exhausting memory on run time). ------------------------------------------------------------------- Mon Mar 5 02:19:03 UTC 2018 - dimstar@opensuse.org - Update to version 2.19.3: + Fix web process crash at startup in bmalloc. + Fix several memory leaks in GStreamer media backend. + WebKitWebDriver process no longer links to libjavascriptcoregtk. - Fix several crashes and rendering issues. - Changes from version 2.19.2: + Add new API to add, retrieve and delete cookies via WebKitCookieManager. + Add functions to WebSettings to convert font sizes between points and pixels. + Ensure cookie operations take effect when they happen before a web process has been spawned. + Automatically adjust font size when GtkSettings:gtk-xft-dpi changes. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Mon Mar 5 02:19:02 UTC 2018 - dimstar@opensuse.org - Allow OBS service to verify the tarball signature: + Add webkit2gtk3.keyring: Carlos Garcia Campos' public key. ------------------------------------------------------------------- Mon Mar 5 02:19:01 UTC 2018 - dimstar@opensuse.org - Update to version 2.19.1: + Add initial resource load statistics support. + Add API to expose availability of certain editing commands in WebKitEditorState. + Add API to query whether a WebKitNavigationAction is a redirect or not. + Improve complex text rendering. + Add support for the "system" CSS font family. + Implement low power mode. + Fix several crashes and rendering issues. - Drop webkit2gtk3-no-return-in-nonvoid.patch: fixed upstream. - Add pkgconfig(libbrotlidec) and pkgconfig(upower-glib) BuildRequires: new dependencies. ------------------------------------------------------------------- Fri Mar 2 16:38:52 UTC 2018 - fcrozat@suse.com - Add webkit2gtk3-fix-wayland-crash.patch: fix crash when using Wayland with QXL/virtio (bsc#1079512, webkit#182490). ------------------------------------------------------------------- Thu Mar 1 14:32:34 UTC 2018 - dimstar@opensuse.org - Add missing dependencies from the -devel package to the build typelib-1_0-*: just like libraries, a consumer of the devel package can assume the typelibs to be present: + typelib-1_0-WebKit2-%{_sonameverpkg}. + typelib-1_0-WebKit2WebExtension-%{_sonameverpkg}. ------------------------------------------------------------------- Tue Jan 30 17:12:00 CET 2018 - ro@suse.de - even on recent codestreams there is no binutils gold on s390 only on s390x. ------------------------------------------------------------------- Wed Jan 24 15:46:03 UTC 2018 - bjorn.lie@gmail.com - Update to version 2.18.6: + Fix deadlock in GStreamer video sink during shutdown when accelerated compositing is disabled. + Several fixes and improvements in WebDriver. + Security fixes: CVE-2018-4088, CVE-2017-13885, CVE-2017-7165, CVE-2017-13884, CVE-2017-7160, CVE-2017-7153, CVE-2017-7153, CVE-2017-7161, CVE-2018-4096. ------------------------------------------------------------------- Wed Jan 10 12:45:30 UTC 2018 - zaitor@opensuse.org - Update to version 2.18.5: + Disable SharedArrayBuffers from Web API. + Reduce the precision of “high” resolution time to 1ms. + Fix API documentation generation with newer gtk-doc. + bsc#1075419 - Security fixes: includes improvements to mitigate the effects of Spectre (CVE-2017-5753 and CVE-2017-5715). ------------------------------------------------------------------- Wed Dec 27 14:04:51 UTC 2017 - jengelh@inai.de - Update package descriptions. ------------------------------------------------------------------- Tue Dec 19 13:43:41 UTC 2017 - zaitor@opensuse.org - Update to version 2.18.4: + Make WebDriver implementation more spec compliant. + Fix a bug when trying to remove cookies before a web process is spawned. + WebKitWebDriver process no longer links to libjavascriptcoregtk. + Fix several memory leaks in GStreamer media backend. + bsc#1073654 - Security fixes: CVE-2017-13866, CVE-2017-13870, CVE-2017-7156, CVE-2017-13856. ------------------------------------------------------------------- Tue Dec 5 13:10:53 UTC 2017 - dimstar@opensuse.org - Explicitly buildrequire python2-xml: the build system is (for now) hard locked on python2 and relies on the presence of python2-xml (used to be pulled in by glib2-devel in the past). ------------------------------------------------------------------- Fri Nov 10 17:43:56 UTC 2017 - luc14n0@linuxmail.org - Update to version 2.18.3: + Improve calculation of font metrics to prevent scrollbars from being shown unnecessarily in some cases. + Fix handling of null capabilities in WebDriver implementation. + bsc#1069925 - Security fixes: CVE-2017-13798, CVE-2017-13788, CVE-2017-13803. ------------------------------------------------------------------- Fri Oct 27 13:53:37 UTC 2017 - idonmez@suse.com - Update to version 2.18.2: + Fix rendering of arabic text. + Fix a crash in the web process when decoding GIF images. + Fix rendering of wind in Windy.com. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Fri Oct 27 08:26:09 UTC 2017 - idonmez@suse.com - Update to version 2.18.1: + Improve performance of GIF animations. + Fix garbled display in GMail. + Fix rendering of several material design icons when using the web font. + Fix flickering when resizing the window in Wayland. + Prevent default kerberos authentication credentials from being used in ephemeral sessions. + Fix a crash when webkit_web_resource_get_data() is cancelled. + Correctly handle touchmove and touchend events in WebKitWebView. + Fix the build with enchant 2.1.1. + Fix the build in HPPA and Alpha. + Fix several crashes and rendering issues. + bsc#1066892 - Security fixes: CVE-2017-7081, CVE-2017-7087, CVE-2017-7089, CVE-2017-7090, CVE-2017-7091, CVE-2017-7092, CVE-2017-7093, CVE-2017-7094, CVE-2017-7095, CVE-2017-7096, CVE-2017-7098, CVE-2017-7099, CVE-2017-7100, CVE-2017-7102, CVE-2017-7104, CVE-2017-7107, CVE-2017-7109, CVE-2017-7111, CVE-2017-7117, CVE-2017-7120, CVE-2017-7142. + bsc#1073654 - Security fixes: CVE-2017-7157. ------------------------------------------------------------------- Tue Oct 24 14:29:11 UTC 2017 - fcrozat@suse.com - Enable gold linker on s390/s390x on SLE15/Tumbleweed. ------------------------------------------------------------------- Thu Sep 14 14:57:43 UTC 2017 - fezhang@suse.com - Drop gcc6-c++ build conditionals for SLE12 / Leap42. ------------------------------------------------------------------- Mon Sep 11 08:07:29 UTC 2017 - zaitor@opensuse.org - Update to version 2.18.0: + Initial WebDriver support. + New remote inspector infrastructure. + WebCrypto API support is now enabled by default. + GStreamerGL is enabled by default when building with GStreamer >= 1.10. + Kinetic scrolling support. + New API to create a WebKitContextMenuItem from a GAction. + New API to allow overriding the popup menu of select elements. ------------------------------------------------------------------- Thu Sep 7 10:17:51 UTC 2017 - dimstar@opensuse.org - Add webkit2gtk3-no-return-in-nonvoid.patch: Fix brp error based on "warning: control reaches end of non-void function". ------------------------------------------------------------------- Mon Sep 4 15:25:11 UTC 2017 - zaitor@opensuse.org - Update to version 2.17.92: + Improve CPU usage when rendering under Wayland in accelerated compositing mode. + Improve the memory consumption of the UI process under Wayland. + Fix rendering issues in some web sites with accelerated compositing enabled. + Fix a web process crash when closing the WebView. + Initialize libgcrypt in the network process too. + Show controls if a video element isn’t allowed to play inline. + Add support for cookies and screenshots commands in WebDriver. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Sun Aug 20 20:50:58 UTC 2017 - zaitor@opensuse.org - Update to version 2.17.91: + Fix proxy HTTP authentication for HTTPS requests. + Stop kinetic scrolling when a zero movement is reached. + Fix UI process crash when selecting text. + Fix UI process crash when loading a favicon. + Properly handle WebDriver click command on option elements. + Fix web process crash when resizing the window with accelerated compositing enabled. + Fix crashes in 32 bit systems due to incorrect use of GVariant. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Wed Aug 9 11:34:55 UTC 2017 - zaitor@opensuse.org - Update to version 2.17.90: + WebCrypto API support is now enabled by default. + Add API to provide browser information required by automation. + Fix the expiration date of manually added cookies. + Add support for alerts in WebDriver. + WebKitDatabaseProcess binary has been renamed to WebKitStorageProcess. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Wed Jul 26 11:36:10 UTC 2017 - zaitor@opensuse.org - Update to version 2.17.5: + Add initial implementation of WebDriver. + Enable GStreamerGL by default when building with GStreamer >= 1.10. + Fix position of context menu in Wayland. + Properly close cookies database at network process exit. + Fix several crashes and rendering issues. + Updated translations. - Drop webkit2gtk3-gcc7.patch and webkit2gtk3-machine-context.patch: Fixed upstream. - Add pkgconfig(gstreamer-gl-1.0) BuildRequires: New dependency. - Add explicit Mesa-libEGL-devel, Mesa-libGL-devel, Mesa-libGLESv1_CM-devel, Mesa-libGLESv2-devel and Mesa-libGLESv3-devel BuildRequires. ------------------------------------------------------------------- Mon Jul 24 15:34:04 UTC 2017 - zaitor@opensuse.org - Update to version 2.17.4: + Add API to allow overriding popup menus. + Add kinetic scrolling support. + Improve theme rendering performance when using GTK+ >= 3.20. + Improve error message when webkit_web_view_run_javascript() fails due to a JavaScript exception. + Fix artifacts when rendering large images. + Fix blob downloads. + Fix web process deadlock when seeking youtube videos. + Fix alpha premultiplying when using cairo to draw the video frames. + Fix web process deadlock when closing the remote inspector frontend. + Update several web inspector icons. + Fix several crashes and rendering issues. + Updated translations. - Changes from version 2.17.3: + Add new API to create a WebKitContextMenuItem from a GAction. + Fix graphics repaint hungs in accelerated compositing mode after a resize. + Fix rendering glitches in HiDPI in long GitHub Gist pages when focusing the comments textarea. + Remove Firefox user agent quirk for Google domains. + Remove LATEST_RECORD_VERSION from GnuTLS priority string. + Improve colors of inspector SVG icons. + Fix several crashes and rendering issues. + Updated translations. - Changes from version 2.17.2: + Update user agent quirks to make Youtube and new Google login page work. + Fix URL shown in the title of beforeunload dialogs. + Focus first input field of HTTP authentication dialog. + Fix rendering of PNG images when decoded in more than one chunk. + Update several web inspector icons. + Fix the build with OpenGL disabled. + Fix several crashes and rendering issues. - Changes from version 2.17.1: + Switch to use new remote inspector infraestructure instead of legacy Web Sockets based one. + Add API to enable and handle Web Automation. + Load large images asynchronously off the main theead. + Use GtkFileChooserNative for open/save dialogs when available. + Make file chooser run as modal by default if possible. + Fix position of dropdown menus in Wayland. + Keep URI fragments after a server redirection. + Implement support for aria-haspopup and aria-autocomplete. + Implement aria-value support for focusable separators. + Fix playing of some live streams. - Add webkit2gtk3-gcc7.patch: Fix build with gcc7 (webkit#173544). - Add webkit2gtk3-machine-context.patch: Fix build for ppc64le (webkit#173590). ------------------------------------------------------------------- Mon Jul 24 15:33:55 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.6: + Fix rendering of spin buttons with GTK+ >= 3.20 when the entry width is too short. + Fix the build when Wayland target is enabled and X11 disabled. + Fix several crashes and rendering issues. + bsc#1050469 - Security fixes: CVE-2017-7039, CVE-2017-7018, CVE-2017-7030, CVE-2017-7037, CVE-2017-7034, CVE-2017-7055, CVE-2017-7056, CVE-2017-7064, CVE-2017-7061, CVE-2017-7048, CVE-2017-7046. ------------------------------------------------------------------- Tue Jun 27 20:19:02 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.5: + Fix a web process crash when page finishes loading in several web sites. + Fix the menu of select elements not showing in some cases under Wayland. ------------------------------------------------------------------- Wed Jun 21 18:28:01 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.4 (CVE-2017-2538): + Fix web process deadlock when seeking youtube videos. + Fix blob downloads. + Improve theme rendering performance when using GTK+ >= 3.20. + Fix positioning of popup menus in Wayland. + Fix several crashes and rendering issues. + Security fixes: CVE-2017-2538. + bsc#1050469 - Security fixes: CVE-2017-7052. ------------------------------------------------------------------- Mon May 29 16:31:21 UTC 2017 - zaitor@opensuse.org - Add conditional gcc6-c++ BuildRequires and #!BuildIgnore: libgcc_s1 and also and pass -DCMAKE_C_COMPILER=gcc-6 and -DCMAKE_CXX_COMPILER=g++-6 to cmake for SLE/Leap, so we can fully build Webkit2gtk3 without disabling features. - Drop webkitgtk-disable-gcc-version-checks.patch, no longer needed following above changes. - Remove the compilation flag to disable FTL JIT, no longer needed following above changes. ------------------------------------------------------------------- Thu May 25 09:33:35 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.3: + Fix URL shown in the title of beforeunload dialogs. + Focus first input field of HTTP authentication dialog. + Fix rendering glitches in HiDPI in long GitHub Gist pages when focusing the comments textarea. + Remove Firefox user agent quirk for Google domains. + Remove LATEST_RECORD_VERSION from GnuTLS priority string. + Fix several crashes and rendering issues. + bsc#1050469 - Security fixes: CVE-2017-2496, CVE-2017-2539, CVE-2017-2510, CVE-2017-7011, CVE-2017-7040, CVE-2017-7059, CVE-2017-1000121, CVE-2017-1000122. ------------------------------------------------------------------- Tue May 23 07:19:42 UTC 2017 - dimstar@opensuse.org - Drop ncurses-devel BuildRequires: this is no longer required. ------------------------------------------------------------------- Tue May 9 23:32:25 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.2: + Update user agent quirks to make Youtube and new Google login page work. + Fix rendering of animated PNGs. + Fix playing of some live streams. + Update several web inspector icons. + Fix the build with NPAPI plugins enabled but X11 disabled. + Fix the build with OpenGL disabled. + Fix several crashes and rendering issues. + bsc#1050469 - Security fixes: CVE-2017-7006, CVE-2017-7012, CVE-2017-7019, CVE-2017-7038, CVE-2017-7041, CVE-2017-7042, CVE-2017-7043, CVE-2017-7049. ------------------------------------------------------------------- Wed Apr 5 12:34:01 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.1: + Fix no-third-party cookies policy in case of redirections. + Keep URL fragments after server redirections. + Honor GTK+ font settings. + Ensure depth and stencil renderbuffers are created on GLESv2. + Prevent new navigations from onbeforeunload handler and document unload. + Disallow beforeunload alerts from web pages users have never interacted with. + Fix several crashes and rendering issues. + bsc#1050469 - Security fixes: CVE-2017-7020. ------------------------------------------------------------------- Mon Mar 20 12:36:09 UTC 2017 - zaitor@opensuse.org - Update to version 2.16.0: + Add missing types to WebKitAutocleanups. + Updated translations. ------------------------------------------------------------------- Tue Mar 14 11:34:12 UTC 2017 - zaitor@opensuse.org - Update to version 2.15.92: + Show the context menu when triggered by the keyboard. + Fix web process deadlocks when destroying the media player. + Fix web process crashes when loading animated GIFs. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Wed Mar 1 10:33:33 UTC 2017 - zaitor@opensuse.org - Update to version 2.15.91: + Fix rendering artifacts when resizing the window in accelerated compositing mode. + Remove flickering when leaving accelerated compositing mode. + Fix a web process crash when loading duck duck go. + Properly handle copy drag and drop operations. + Fix a hang when sending an IPC messages fails because socket read buffers are full. + Ensure we never try to load GTK2 plugins in Wayland. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Mon Feb 20 21:17:11 UTC 2017 - dimstar@opensuse.org - Update to version 2.15.90: + Add an API to add a custom tab into the print dialog. + Update cookie manager API to properly work with ephemeral sessions. + Fix rendering issues in long documents with transparent background. + Handle extended colors in cairo and texture mapper backends. + Release unused UpdateAtlas and reduce the tile coverage on memory pressure. + The media backend now stores preloaded media in /var/tmp instead of user cache dir. + Fix a deadlock when the media player is destroyed. + Fast replay on video hide/unhide on platforms with limited video buffer pools. + Fix network process crashes when loading custom URI schemes. + Fix video rendering when switching to accelerated compositing mode. + Fix several crashes and rendering issues. + Updated translations. - Drop upstream fixed patches: - webkit2gtk3-167785.patch - webkit2gtk3-167876.patch - webkit2gtk3-167890.patch - webkit2gtk3-167929.patch ------------------------------------------------------------------- Fri Feb 17 19:56:21 UTC 2017 - dimstar@opensuse.org - Add webkit2gtk3-167785.patch: Fix build with disabled JIT (such as on ppc564le). ------------------------------------------------------------------- Thu Feb 16 10:45:36 UTC 2017 - dimstar@opensuse.org - Add webkit2gtk3-167876.patch, webkit2gtk3-167890.patch and webkit2gtk3-167929.patch: fix webkit stalling on loading resources over the network. ------------------------------------------------------------------- Wed Feb 15 14:15:04 UTC 2017 - zaitor@opensuse.org - Update to version 2.15.4: + Make accelerating compositing mode on-demand again. By default it will only be used for websites that require it, saving a lot of memory on websites that don’t need it. + Add API to manage hardware acceleration policy. + Enable CSS Grid Layout by default. + Add API to create ephemeral WebViews to replace the legacy private browsing setting that is now deprecated. + Handle HTTP authentication for downloads having a WebView associated. + Add API to WebKitWebsiteDataManager to handle websites data. + Fix BadDamage X errors happening when resizing the WebView. + Fix several crashes and rendering issues. - Changes from version 2.15.3: + Add API to set network proxy settings. + Add API to set initial notification permissions. + Add WebKitSecurityOrigin to the API. + Add tag property to WebKitNotification. + Create GLX OpenGL contexts using version 3.2 (core profile) when available to reduce the memory consumption on Mesa based drivers. + Improve memory pressure handler to reduce the CPU usage on memory pressure situations. + Add support for key and code properties on keyboard events. + More user agent string improvements to improve compatibility with several websites. + Fix network process crashes when loading custom URI schemes. + Fix web process crash when closing the web view in X11. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Wed Feb 15 14:14:02 UTC 2017 - dimstar@opensuse.org - Update to version 2.15.2: + Add new API to notify about dynamically added forms to Web Extensions. + Implement selection interface and states for elements supporting aria-selected and for menu roles. + Expose STATE_SINGLE_LINE and STATE_MULTI_LINE for ARIA searchbox role. + Enable WebMemorySampler. + Downloads started by context menu actions now have a web view associated. + Fix a network process crash when main resource load is converted into a download. + Fix several crashes and rendering issues. - Changes from version 2.15.1: + GObject DOM bindings API marked as unstable has been removed. + Switch to use GMenu internally in the context menu implementation. + The network backend now always sniff contents for Downloads. ------------------------------------------------------------------- Wed Feb 15 09:48:00 UTC 2017 - zaitor@opensuse.org - Update to version 2.14.5: + Fix rendering of non-accelerated contents with HiDPI. + Revert the fix for rendering issues in long documents with transparent background because it caused issues in HiDPI. ------------------------------------------------------------------- Fri Feb 10 13:38:56 UTC 2017 - zaitor@opensuse.org - Update to version 2.14.4: + Make accelerating compositing mode on-demand again. By default it will only be used for websites that require it, saving a lot of memory on websites that don’t need it. + Fix rendering issues in long documents with transparent background. + Release unused UpdateAtlas and reduce the tile coverage on memory pressure. + The media backend now stores preloaded media in /var/tmp instead of user cache dir. + Make inspector work again when accelerated compositing support is disabled. + Fix a deadlock when the media player is destroyed. + Fix network process crashes when loading custom URI schemes. + Fix overlay scrollbars that are over a subframe. + Fix a crash in GraphicsContext3D::drawArrays when using OpenGL 3.2 core profile. + Fix BadDamage X errors happening when resizing the WebView. + Fix several crashes and rendering issues. + bsc#1024749 - Security fixes: CVE-2017-2365, CVE-2017-2366, CVE-2017-2373, CVE-2017-2363, CVE-2017-2362, CVE-2017-2350, CVE-2017-2350, CVE-2017-2354, CVE-2017-2355, CVE-2017-2356, CVE-2017-2371, CVE-2017-2364, CVE-2017-2369. ------------------------------------------------------------------- Tue Jan 17 19:27:36 UTC 2017 - zaitor@opensuse.org - Update to version 2.14.3: + Create GLX OpenGL contexts using version 3.2 (core profile) when available to reduce the memory consumption on Mesa based drivers. + Improve memory pressure handler to reduce the CPU usage on memory pressure situations. + Fix a regression in WebKitWebView title notify signal emission that caused the signal to be emitted multiple times. + Fix high CPU usage in the web process loading hyphenation dictionaries. + More user agent string improvements to improve compatibility with several websites. + Fix web process crash when closing the web view in X11. + Fix the build with OpenGL ES2 enabled. + Fix several crashes and rendering issues. + bsc#1020950 - Security fixes: CVE-2016-7656, CVE-2016-7635, CVE-2016-7654, CVE-2016-7639, CVE-2016-7645, CVE-2016-7652, CVE-2016-7641, CVE-2016-7632, CVE-2016-7599, CVE-2016-7592, CVE-2016-7589, CVE-2016-7623, CVE-2016-7586. + Updated translations. ------------------------------------------------------------------- Tue Nov 8 11:11:15 UTC 2016 - dimstar@opensuse.org - Do not recommend the -lang package with a version: it has close to no effect anyway, as the solver could simply ignore it to find a solution. ------------------------------------------------------------------- Thu Nov 3 19:12:04 UTC 2016 - zaitor@opensuse.org - Update to version 2.14.2: + Expose WebKitDOMHTMLInputElement APIs for form autofill in unstable DOM API. + Properly update WebKitWebView and WebKitWebPage URI properties when request is modified by WebKitWebPage:send-request signal. + Restore user agent quirk for Yahoo. + Dot not leak the default WebKitWebsiteDataManager in WebKitWebContext. + Use eglGetPlatformDisplay when available instead of eglGetDisplay. + Avoid strstr() when checking (E)GL extensions. + Fix several crashes and rendering issues. + Fix the build with ENABLE_OPENGL=OFF and allow to build on Wayland without OpenGL again. + Updated translations. ------------------------------------------------------------------- Mon Oct 17 07:37:46 UTC 2016 - schwab@suse.de - Disable JIT on armv6 (webkit#141288). ------------------------------------------------------------------- Wed Oct 12 23:20:40 UTC 2016 - zaitor@opensuse.org - Update to version 2.14.1: + MiniBrowser and jsc binaries are now installed in pkglibexecdir instead of bindir. + Improve performance when resizing a window with multiple web views in X11. + Check whether GDK can use GL before using gdk_cairo_draw_from_gl() in Wayland. + Updated default UserAgent string for better compatibility. + Fix a crash on github.com in IntlDateTimeFormat::resolvedOptions when using the C locale. + Fix BadDamage X errors when closing the web view in X11. + Fix UIProcess crash when using Japanese input method. + Fix build with clang due to missing header includes. + Fix the build with USE_REDIRECTED_XCOMPOSITE_WINDOW disabled. + Fix several crashes and rendering issues. + Updated translations. + bsc#1020950 - Security fixes: CVE-2016-4692, CVE-2016-7610. ------------------------------------------------------------------- Tue Sep 20 15:16:41 UTC 2016 - dimstar@opensuse.org - Update to version 2.14.0: + Use gdk_cairo_draw_from_gl() when possible in Wayland to render directly using the GPU in the UI process. + Ensure we don't send an empty referrer header after session restore. + Fix a web process crash in pages using filter animations. + Fix main frame scrolling jumps when scrolling acclerated subframes. + Fix the size of the cairo surface created in the UI process on Wayland. + Fix memory leak in JavaScriptCore. + Fix the build when '.' is not in @INC by default in perl. + Updated translations. + bsc#1020950 - Security fixes: CVE-2016-4743, CVE-2016-7587, CVE-2016-7598. - Rebase webkitgtk-disable-gcc-version-checks.patch. ------------------------------------------------------------------- Fri Sep 16 17:41:45 UTC 2016 - junrrein@gmail.com - Reintroduce support for Gtk2 plugins like Flash. + Add pkgconfig(gtk+-2.0) BuildRequires. + No longer pass -DENABLE_PLUGIN_PROCESS_GTK2=OFF to configure. + Split the built plugin to it's own sub-package, webkit2gtk3-plugin-process-gtk2, and make sure it's excluded from the main package. + Only apply these changes to openSUSE via conditional. ------------------------------------------------------------------- Thu Sep 15 15:37:41 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.92: + Add clipboard support in Wayland. + Improve rendering of scrollbars with themes setting a minimum width for the scrollbar CSS gadget. + Fix another WebProcess crash when the last WebView is destroyed. + Fix the build with GCC 6. - Drop webkitgtk-fix-clipboard.patch: Fixed upstream. ------------------------------------------------------------------- Sat Sep 10 07:35:15 UTC 2016 - zaitor@opensuse.org - Add webkitgtk-fix-clipboard.patch: Fix clipboard support in wayland (webkit#146574). ------------------------------------------------------------------- Fri Sep 9 23:46:56 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.91: + Improve the performance when resizing the WebView with the threaded compositor. + Do not try to use GL_PACK_ROW_LENGTH when compiling with GLES2, since it's not available. + Use a different plugins cache file in Wayland and X11. + Fix UI process crash visiting sites protected with HTTP auth when using GTK+ < 3.14. + Fix a WebProcess crash when the last WebView is destroyed. + Fix build configure without Wayland support. + Fix the build when compiling with Clang. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Tue Sep 6 17:05:37 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.90: + Add initial implementation of accelerating compositing support under Wayland. + Fix performance with the modesetting intel driver and DRI3 enabled. + Improved performance when resizing the web view on X11. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Tue Sep 6 17:04:00 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.4: + Switched to use the threaded compositor. Accelerated compositing mode is now always enabled by default and happens in a separate thread in the web process. + Make web view background colors work in accelerated compositing mode. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Tue Sep 6 17:03:59 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.3: + Fix Web Process deadlocks when loading HLS videos. + Make videos work when painted into a canvas when accelerated compositing is enabled. + Fix flickering with animated GIFs. + Fix a Web Process crash when video repaint is requested with GStreamer GL enabled. + Reduce the amount of file descriptors that the Web Process keeps open. + Make memory pressure handler work when cgroups are not available. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Tue Sep 6 17:02:58 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.2: + Properly redraw the web view when reparented in force compositing mode. + Flip the volume control layout in media controls on RTL. + Add support for video orientation to the GStreamer media backend. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Tue Sep 6 17:01:57 UTC 2016 - zaitor@opensuse.org - Update to version 2.13.1: + CSS Grid Layout has been unprefixed and can be enabled as an experimental feature at runtime. + The HTTP disk cache implements speculative resources revalidation. + Add a new WebKitSetting to allow universal access from file URLs. + Fix several crashes and rendering issues. - Rebase webkitgtk-typelib-sharelib-link.patch. - Add pkgconfig(gnutls) BuildRequires: New dependency. ------------------------------------------------------------------- Tue Sep 6 09:41:19 UTC 2016 - fezhang@suse.com - Rebase webkitgtk-disable-gcc-version-checks.patch for 2.12.5 ------------------------------------------------------------------- Mon Sep 5 17:00:29 UTC 2016 - zaitor@opensuse.org - Update to version 2.12.5: + Fix a regression introduced in 2.12.4 that caused a hang in the network process after a load failure. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Thu Aug 25 23:14:56 UTC 2016 - sreeves@suse.com - Rebase webkitgtk-disable-gcc-version-checks.patch for 2.12.4 ------------------------------------------------------------------- Thu Aug 25 07:13:38 UTC 2016 - zaitor@opensuse.org - Update to version 2.12.4: + Security fixes: CVE-2016-4622, CVE-2016-4624, CVE-2016-4591, CVE-2016-4590. + Fix performance in accelerated compositing mode with the modesetting intel driver and DRI3 enabled. + Reduce the amount of file descriptors that the Web Process keeps open. + Fix Web Process deadlocks when loading HLS videos. + Make CSS and SVG animations run at 60fps. + Make meter elements accessible. + Improve accessibility name and description of elements to make it more compatible with W3C specs and fix several bugs in which the accessible name of objects was missing or broken. + Fix a crash when running windowed plugins under Wayland. + Fix a crash at process exit under Wayland. + Fix several crashes and rendering issues. + Updated translations. - Update _constraints memory requirements. ------------------------------------------------------------------- Mon Jun 20 13:46:09 UTC 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest version. ------------------------------------------------------------------- Fri Jun 17 08:38:10 UTC 2016 - zaitor@opensuse.org - Update to version 2.12.3: + Security fixes: CVE-2016-1857, CVE-2016-1856. + Improved the detection of supported MIME types supported by the media player. + Fix web process crash when playing adaptive streaming media. + Change the volume while thumb slider is dragged, not only when released. + Fix leaked thread in network process. + Fix several crashes and rendering issues. + Updated translations. ------------------------------------------------------------------- Tue Jun 7 09:12:46 UTC 2016 - dimstar@opensuse.org - Also apply webkitgtk-disable-gcc-version-checks.patch on Leap and use GCC 4.8. - Change condition to pass -DENABLE_DATABASE_PROCESS=OFF, -DENABLE_INDEXED_DATABASE=OFF and -DENABLE_FTL_JIT=OFF to cmake: newly on all SLE12 based systems (incl. Leap). ------------------------------------------------------------------- Fri May 27 11:59:29 UTC 2016 - idonmez@suse.com - Update to GNOME 3.20.2 FATE#318572 ------------------------------------------------------------------- Thu May 5 23:34:03 CEST 2016 - ro@suse.de - add -DUSE_SYSTEM_MALLOC=ON as in factory on ppc/s390 ------------------------------------------------------------------- Wed May 4 15:07:26 CEST 2016 - ro@suse.de - handle s390 like s390x to fix build ------------------------------------------------------------------- Mon May 2 14:05:38 CEST 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest version. ------------------------------------------------------------------- Thu Apr 28 08:30:17 UTC 2016 - zaitor@opensuse.org - Update to version 2.12.2: + Fix rendering of scrollbars with GTK themes using stepper buttons. + Fix compatibility issue with 2.12.1 regarding local storage access from file URLs. + Make menu list buttons use the text color from the theme. + Do not show resize grip in non-resizable text fields. + Fix accessibility events causing Orca to echo key presses instead of speaking the inserted characters in password fields. + Fix an off by one error in hyphenation. + Fix several crashes and rendering issues. + Fix the build with libjpeg v9. + Updated translations. ------------------------------------------------------------------- Mon Apr 25 14:28:33 UTC 2016 - zaitor@opensuse.org - Drop pkgconfig(gtk+-2.0) BuildRequires and pass -DENABLE_PLUGIN_PROCESS_GTK2=OFF to configure. We do no longer ship the flash-plugin in openSUSE, and it were the last consumer of this functionality. This also have the added bonus of freeing zenity and dependant packages of gtk2 dependencies. ------------------------------------------------------------------- Fri Apr 15 12:50:28 UTC 2016 - zaitor@opensuse.org - Update to version 2.12.1: + Fix spotify player. + Improve themed control elements rendering to better match GTK+ widgets. + Make remote web inspector work again. + Fix several crashes and rendering issues. + Fix several memory leaks. + Fix the build in Linux / PowerPC. + Fix detection of S390X and PPC64 architectures. + Fix the build in glibc-based BSD systems. + Updated translations. - Add -DUSE_SYSTEM_MALLOC=ON to configure for ppc ppc64 ppc64le and s390x, needed now for build to complete. ------------------------------------------------------------------- Wed Mar 23 08:15:21 UTC 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest version. ------------------------------------------------------------------- Tue Mar 22 14:26:59 UTC 2016 - zaitor@opensuse.org - Update to version 2.12.0: + Enable GSS-Negotiate support when available in libsoup. + Fix overlay scrollbar indicator position. + Fix smooth scrolling behavior that was not fixed in all cases in 2.11.92. + Fix the build with newer versions of GCC and clang. ------------------------------------------------------------------- Thu Mar 17 13:25:21 UTC 2016 - fcrozat@suse.com - Update webkitgtk-disable-gcc-version-checks.patch (partially merged). ------------------------------------------------------------------- Wed Mar 16 16:14:19 UTC 2016 - zaitor@opensuse.org - Update to version 2.11.92: + Revert the patch to limit the number of tiles according to the visible area introduced in 2.11.90, because it caused rendering issues in several popular websites. + Fix scrollbars rendering again with GTK+ >= 3.19.11. + Fix rendering of slider input elements. + Fix rendering artifacts when using a web view background color. + Make webkit_web_context_clear_cache() work again. + Fix smooth scrolling behavior that was changed by mistake. + Don’t force ENABLE_INTROSPECTION=OFF on Mac. + Install WebProcess and NetworkProcess on OSX when not building the Mac port. ------------------------------------------------------------------- Wed Mar 2 16:51:29 UTC 2016 - fcrozat@suse.com - Update webkitgtk-disable-gcc-version-checks.patch to properly disable terminateDatabaseProcess method when it is disabled at compilation time. ------------------------------------------------------------------- Wed Mar 2 14:00:04 UTC 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest webkitgtk. ------------------------------------------------------------------- Tue Mar 1 14:30:40 UTC 2016 - zaitor@opensuse.org - Update to version 2.11.91: + Do not show stale contents after session restore. + Fix flickering and rendering artifacts when entering accelerated compositing mode before the web view is realized. + Fix several rendering issues and crashes. + Fix build with FTL enabled in FreeBSD. + Updated translations. ------------------------------------------------------------------- Tue Feb 23 11:34:42 CET 2016 - fcrozat@suse.com - Update webkitgtk-disable-gcc-version-checks.patch to fix building with gcc 4.8 (fix from Mike Gorse). ------------------------------------------------------------------- Fri Feb 19 15:19:20 UTC 2016 - dimstar@opensuse.org - Update to version 2.11.90: + Switch to use overlay scrollbars like all other GTK+ widgets and ensure the behavior is consistent with GTK+ too. + Limit the number of tiles according to the visible area. This was causing a huge memory consumption with some websites. + Fix toggle buttons rendering with GTK+ 3.19. + Fix HTTP authentication dialog rendering when accelerated compositing mode is enabled. + Use G_TYPE_ERROR instead of G_TYPE_POINTER for GError parameters of signals. + Fix several memory leaks. - Rebase webkitgtk-disable-gcc-version-checks.patch. ------------------------------------------------------------------- Tue Feb 16 14:42:11 UTC 2016 - fcrozat@suse.com - Do not use binutils-gold on s390x and try to minimize memory used there at linking time. - Ensure JIT is also disabled on s390x. ------------------------------------------------------------------- Mon Feb 15 10:16:42 UTC 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest webkitgtk. ------------------------------------------------------------------- Fri Feb 12 22:59:02 UTC 2016 - zaitor@opensuse.org - Update to version 2.11.5: + Switch FTL to use B3 backend instead of LLVM. + Add support for windowless NPAPI plugins with no UI in non X11 platforms. + Fix a deadlock in the Web Process when JavaScript garbage collector was running for a web worker thread that made google maps to hang. + Fix a Web Process crash when quickly attempting many DnD operations. + Fix scrollbars rendering with older versions of GTK+. + Fix a crash when creating a WebKitWebView without providing a WebKitWebContext. - Drop llvm-devel BuildRequires as upstream now supports B3 instead of LLVM. ------------------------------------------------------------------- Thu Feb 11 09:43:20 UTC 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest webkitgtk. ------------------------------------------------------------------- Thu Feb 4 22:23:58 UTC 2016 - zaitor@opensuse.org - Update to version 2.11.4: + Prefer to link to LLVM shared libraries when building with FTL enabled. + Fix runtime errors when serializing/deserializing session state. + Fix critical warnings when loading a URL after a session restore. + Fix the build with GTK+ < 3.14. + Fix the build with video support disabled. - Drop webkitgtk-llvm-shared-libs.patch: Fixed upstream. ------------------------------------------------------------------- Wed Feb 3 19:08:39 UTC 2016 - fcrozat@suse.com - Refresh webkitgtk-disable-gcc-version-checks.patch for latest webkitgtk. ------------------------------------------------------------------- Wed Feb 3 19:07:39 UTC 2016 - mcatanzaro@igalia.com - Update to version 2.11.3: - NetworkProcess is now used unconditionally. The shared secondary process model is now the same as using the multiple process model and setting a process limit of 1. - Disable DNS prefetch when a proxy is configured. - Reduce the maximum simultaneous network connections to match other browsers. - Extend notifications API to notify WebKit when a notification is clicked by the user. - Add new API to save and restore a WebView session. - Add Web Extensions API to be notified about console messages. - Add WebKitURIRequest API to get the HTTP method. - Add API to handle beforeunload events. - Make WebKitWebView always propagate motion-notify-event signal. - Add a way to force accelerating compositing mode at runtime using an environment variable. - Fix input elements and scrollbars rendering with GTK+ 3.19. - Fix a crash in the UI process when the WebView is destroyed while the screensaver DBus proxy is being created. - Fix a WebProcess crash when loading large contents with custom URI schemes API. - Fix UI process crashes related to not having a main resource response when the load is committed for pages restored from the history cache. - Reenable JIT on SLE, except for the fourth tier (FTL) which requires LLVM 3.7. - Add webkitgtk-llvm-shared-libs.patch to replace llvm-config wrapper script. ------------------------------------------------------------------- Wed Feb 3 19:06:39 UTC 2016 - fcrozat@suse.com - Disable database support on SLE, which is requiring gcc >= 4.9: Add patch webkitgtk-disable-gcc-version-checks.patch to allow building with gcc 4.8, change BuildRequires to gcc-c++ / libedit-devel on SLE, instead of gcc-c++ >= 4.9 and llvm-devel, disable database and indexed database on SLE and disable JIT support on all platforms on SLE, which requires llvm >= 3.7. ------------------------------------------------------------------- Wed Feb 3 19:05:39 UTC 2016 - mcatanzaro@igalia.com - Miscellaneous cleanups. - Stop setting ENABLE_YARR_JIT=OFF on secondary arches. Nowadays ENABLE_YARR_JIT is a private option, and setting ENABLE_JIT=OFF is sufficient to do the right thing. ------------------------------------------------------------------- Wed Feb 3 19:04:39 UTC 2016 - dimstar@opensuse.org - Fix build: + Add llvm-devel and ncurses-devel BuildRequires. + Inject a llvm-config wrapper script into ~/bin, which replaces the original's output of static libs with dynamic shared objects. This is supposedly going to be corrected with LLVM 3.8. ------------------------------------------------------------------- Wed Feb 3 19:03:39 UTC 2016 - zaitor@opensuse.org - Update to version 2.11.2: + Enable FTL by default in JavaScriptCore for x86_64. + Improved media backend performance by better handling glib main loop sources. + Fix rendering of lines when using solid colors. + Fix web process crashes due to BadDrawable X errors in accelerated compositing mode. + Updated translations. ------------------------------------------------------------------- Wed Feb 3 19:02:39 UTC 2016 - zaitor@opensuse.org - Update to version 2.10.7: + Fix the build with GTK+ < 3.16. ------------------------------------------------------------------- Thu Jan 28 10:20:35 UTC 2016 - zaitor@opensuse.org - Update to version 2.10.6: + Fix a deadlock in the Web Process when JavaScript garbage collector was running for a web worker thread that made google maps to hang. + Fix media controls displaying without controls attribute. + Fix a Web Process crash when quickly attempting many DnD operations. ------------------------------------------------------------------- Mon Nov 23 20:40:17 UTC 2015 - zaitor@opensuse.org - Add binutils-gold BuildRequires: Use the gold linker for build and remove --reduce-memory-overheads from RPMOPT flags since gold-linker does not know it. ------------------------------------------------------------------- Wed Nov 11 18:31:42 UTC 2015 - zaitor@opensuse.org - Update to version 2.11.1: + Improved general performance by better handling glib main loop sources. + Add autocleanups support to GObjects exposed in public API. + Upload the accelerated canvas as a texture by copying via GPU directly. + Popup menus no longer use a nested main loop. ------------------------------------------------------------------- Wed Nov 11 10:36:11 UTC 2015 - zaitor@opensuse.org - Update to version 2.10.4: + Fixed dashed and dotted border painting. + Properly cancel navigation policy checks. + Several crashes fixed when running editor commands. + Fix several crashes due to assertions in Debug builds. + Fix the build on Mac OSX and bring back the Quartz target. + Fix the build on glibc-based BSD systems. ------------------------------------------------------------------- Mon Oct 26 21:18:03 UTC 2015 - zaitor@opensuse.org - Update to version 2.10.3: + Fix graphics artifacts when entering/leaving Accelerated Compositing mode. + Honour 'forwards' fill-mode in Multiple-keyframe and delayed instantaneous animations. + Fix runtime warning when the inspector is closed. + Fix the build with GTK+2 plugin process disabled. + Gracefully handle errors when sending/receiving IPC messages data on connection close. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Thu Oct 15 14:57:24 UTC 2015 - zaitor@opensuse.org - Update to version 2.10.2: + Fix a regression introduced in 2.10.1 that disabled accelerated compositing. + Fix build with cmake 3.4. ------------------------------------------------------------------- Wed Oct 14 11:59:58 UTC 2015 - zaitor@opensuse.org - Update to version 2.10.1: + Fix rendering of accelerated content in HiDPI screens. + Fix several media controls rendering issues. + Fix rendering of progress element with recent versions of GTK+. + Add and update some web inspector icons. + Correctly handle websites sending an invalid auth header. + Fix a crash when creating the UI process backing store in Wayland. + Fix the build with spellchecker disabled. + Fix the build with touch events disabled. + Fix the build with OpenGL disabled. + Several build fixes on Mac OSX. + Fix several crashes and rendering issues. ------------------------------------------------------------------- Mon Sep 21 19:08:27 UTC 2015 - zaitor@opensuse.org - Update to version 2.10.0: + New HTTP disk cache for the Network Process. + IndexedDB support. + New Web Inspector UI. + Automatic ScreenServer inhibition when playing fullscreen videos. + Improved font matching algorithm. + Initial Editor API. + Performance improvements. ------------------------------------------------------------------- Wed Sep 16 21:16:49 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.92: + Data URLs are now decoded in the Web Process instead of the Network Process. + Fix Web Process crash recovery. + Fix a crash when sqlite3_initialize() is called from multiple threads. + Fix the volume bar in media controls. + Fix JavaScriptCore build with GCC 5. + Fix the build when accelerated 2D canvas is enabled but cairo was built without GLX. + Fix everal memory leaks. + Updated translations. - Drop webkitgtk-gcc5-buildfix.patch: Fixed upstream. ------------------------------------------------------------------- Wed Aug 26 20:04:03 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.91: + Fix performance regression introduced in previous release when scaling images. + Fix runtime critical warning when there are missing media plugins. + Fix the build on systems with GTK+ compiled with an old version of wayland. ------------------------------------------------------------------- Sun Aug 16 11:39:42 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.90: + Add API to request permission before showing PackageKit codec installation notifications. + Fix a crash closing a page when a context menu is open. + Fix DNS prefetch when using the network process. + Improve image quality when using newer versions of cairo/pixman. + Fix a crash when the web view is destroyed while the screensaver DBus proxy is being created. ------------------------------------------------------------------- Tue Aug 11 09:26:42 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.5: + Add API to set the maximum number of web processes per WebKitWebContext. + Add API to allow executing editing commands that require an argument. + Prevent clipboard contents from being lost when web process finishes. + Always allow font matching for strong aliases. + Move GStreamer missing plugins installer to the UI process. + Fix empty space in popup menus when first item is selected. + Fix a crash when SoupSession is destroyed in exit handler. + Disable NPAPI plugins when running on Wayland. + Updated translations. ------------------------------------------------------------------- Thu Aug 6 18:40:27 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.4: + Fix the window size reported when the web view isn't realized yet. This fixes the layout of some websites when opening new tabs in the browser and anchor links when opened in new tabs too. + Add API to be notified about editor state changes. + Add selection-changed signal to the Web Extensions API. + Add initial WebKitWebsiteDataManager API for process configuration options. + Make WebSQL work by using a default quota instead of always failing in openDatabase with DOM Exception 18. + Correctly restore accelerated compositing after a WebProcess crash. + Only enable the input methods filter when there's an editable element focused. + Fix a crash on memory allocation using bmalloc on 32bit systems. + Allow to build with X11 and Wayland targets at the same time. + Fix a crash when spell checker returns no guesses. + Update and optimize some of the web inspector icons. + Updated translations. ------------------------------------------------------------------- Thu Aug 6 18:39:27 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.3: + Inhibit screen saver when playing full screen video. + Fix DOCUMENT_VIEWER cache model to actually disable the memory cache. + Fix a regression that prevented the WebKitWebView::context-menu signal from being emitted. + Update web inspector icon so Rendering Frames timeline distinguish between layout and painting. + Ensure fragment identifier part of URI is not removed for custom URI scheme requests. + Improve performance of keyboard events handling. + Expose element tag name as an object attribute to accessibility. + Fix the build with Wayland target enabled. ------------------------------------------------------------------- Thu Aug 6 18:38:27 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.2: + Add IndexedDB support using a dedicated database process. + Add construct property to WebKitWebContext to set the IndexedDB database directory. + Add allow-file-access-from-file-urls to WebKitSettings. + Improve network process disk cache performance by mapping cached resources in the web process instead of sending the resources data via IPC. + Prevent WorkQueue objects from being leaked and ensure its worker thread always exits. + webkit_dom_html_element_get_children() has been deprecated in favor of webkit_dom_element_get_children() to match the DOM spec. + ARIA menu items no longer have anonymous block children. + Map pre element to ATK_ROLE_SECTION instead of ATK_ROLE_PANEL. + Always include rows in the tree of accessible tables. + Fix the build with Netscape plugins disabled. + Fix XPixmaps leaked by GLContext when using EGL on X11. + Updated translations. ------------------------------------------------------------------- Thu Aug 6 18:37:27 UTC 2015 - zaitor@opensuse.org - Update to version 2.9.1: + New disk cache implementation when using the network process. + Web inspector UI has been redesigned. + Add support for automatic hyphenation using libhyphen when it's available. + Fix network redirection to a non HTTP destination. - Add hyphen-devel BuildRequires: New dependency. ------------------------------------------------------------------- Thu Aug 6 18:36:27 UTC 2015 - zaitor@opensuse.org - Update to version 2.8.5: + Fix the window size reported when the web view isn't realized yet. This fixes the layout of some websites when opening new tabs in the browser and anchor links when opened in new tabs too. + Prevent clipboard contents from being lost when web process finishes. + Always allow font matching for strong aliases. + Move GStreamer missing plugins installer to the UI process. + Fix a crash when spell checker returns no guesses. + Fix a crash when SoupSession is destroyed in exit handler. + Fix a crash closing a page when default context menu is open. + Several crashes and rendering issues fixed. + Updated translations. ------------------------------------------------------------------- Tue Aug 4 20:44:29 UTC 2015 - zaitor@opensuse.org - Modify _constraints file for armv6l/armv7l arches to sizes so low that in practice it's disabled. ------------------------------------------------------------------- Thu Jul 9 11:00:34 UTC 2015 - zaitor@opensuse.org - Update to version 2.8.4: + Make WebSQL work by using a default quota instead of always failing in openDatabase with DOM Exception 18. + Improve detection and usage of GL/GLES/EGL libraries. + Fix a crash on memory allocation using bmalloc on 32bit systems. + Fix DOCUMENT_VIEWER cache model to actually disable the memory cache. + Fix a WebProcess crash after too many redirect error when there's an active NPAPI plugin. + Fix a WebProcess crash when gtk-font-name setting is empty. + Ensure Math.abs() doesn't return negative. + Correctly restore accelerated compositing after a WebProcess crash. + Respect X-Frame-Options headers when loading from application cache. + Several crashes and rendering issues fixed. + Fix the MIPS N64 detection. + Fix several memory leaks. + Updated translations. ------------------------------------------------------------------- Thu May 21 20:32:34 UTC 2015 - zaitor@opensuse.org - Update to version 2.8.3: + Fixed a regression introduced in 2.8.2 that broke downloads when using the network process. + Fix the build with Netscape plugins disabled. + Fix XPixamps leaked by GLContext when using EGL on X11. - Changes from version 2.8.2: + Fix network redirection to a non HTTP destination. - Use a webkit subdirectory for the disk cache to avoid conflicts with other files in the cache directory when the disk cache is cleaned up. - Do not preserve the Origin header on on cross-origin redirects. - Prevent WorkQueue objects from being leaked and ensure its worker thread always exits. ------------------------------------------------------------------- Tue Apr 14 17:03:41 UTC 2015 - zaitor@opensuse.org - Update to version 2.8.1: + Handle keep-alive connections in GStreamer HTTP source element. + Fix a crash in DOMObjectCache when a wrapped object owned by. the cache is unreffed by the user. + Fix rendering of drag and drop icon. + Fix the build with REDIRECTED_XCOMPOSITE_WINDOW disabled in X11 platform. + Fix the build with Wayland target enabled. + Fix the build for HPPA. - Add webkitgtk-gcc5-buildfix.patch: Fix build with gcc5. ------------------------------------------------------------------- Thu Apr 9 01:09:44 UTC 2015 - mcatanzaro@igalia.com - Add BuildRequires pkgconfig(libnotify) to build with support for HTML5 notifications (bnc#926482). ------------------------------------------------------------------- Thu Mar 26 12:44:51 UTC 2015 - dimstar@opensuse.org - Change webkit2gtk-4_0-injected-bundles Recommends to Requires: apps fail to load webkit if the bunldes are not available. ------------------------------------------------------------------- Mon Mar 23 13:06:25 UTC 2015 - dimstar@opensuse.org - Update to version 2.8.0: + Initial gestures support. + HTML5 notifications. + User script messages. + HTML5 color input. + APNG support. + Performance improvements. + Playing audio notification signal. + Web view background colors. ------------------------------------------------------------------- Wed Mar 18 08:55:52 UTC 2015 - dimstar@opensuse.org - Update to version 2.7.92: + Add APNG support. + Disable RC4 support in networking backend. + Add a configure option to build with OpenGL ES 2. + Add an option to enable MiniBrowser for non developer builds and always install it. + Check TLS errors as soon as they are set in the SoupMessage to prevent any data from being sent to the server in case of invalid certificate. + Make WebKitWebView always hold a reference on WebKitWebContext now that it’s possible to create new web contexts. + Fix a crash when entering accelerated compositing mode before the WebView is realized. + Fix some transfer annotations used in GObject DOM bindings. + Fix GObject DOM objects leaked when the web view contents are updated. + Fix a crash viewing http://www.last.fm/. + Fix an infinite loop in ARM Linux when parallel GC is enabled it again. + Fix the build with older versions of GStreamer. + Fix the build when NEON_INTRINSICS is enabled. + Fix the build with video enabled but WebAudio disabled. - Changes from version 2.7.91: + Enable concurrent JIT. + Add support for ARIA 1.1 ‘switch’ and ‘searchbox’ roles. + Fix synchronous loads when maximum connection limits are reached. + Fix web timing calculations when loading resources from the disk cache. + Fix a crash when loading a local file with webkit_web_view_load_alternate_html. + Fix a WebProcess crash when entering accelerating compositing mode before the WebView is realized. + Improve the appearance of fonts loaded via @font-face. + Fix undefined symbol issue when loading web extensions. + Build bmalloc as a static library. + Fix the build with CMake 3.2. + Fix the C-Loop LLInt build. + Updated translations. - Drop webkitgtk-bmalloc-as-static.patch: fixed upstream. ------------------------------------------------------------------- Thu Feb 26 21:27:36 UTC 2015 - dimstar@opensuse.org - Add webkitgtk-bmalloc-as-static.patch: Build libbmalloc as static library. Only webkitgtk depends on it. ------------------------------------------------------------------- Thu Feb 19 18:31:19 UTC 2015 - dimstar@opensuse.org - Update to version 2.7.90: + Use the new memory allocator bmalloc instead of TCMalloc which drastically improves the overall performance. + Remove WebKitWebView::close-notification signal and add WebKitNotification::closed instead. + Implement support for new AtkRole types for MathML. + Add support for input color type. + Add API to allow overriding the default color chooser implementation. + Resize the accelerating compositing window to a minimum size again after leaving accelerated compositing mode to save memory. + Ensure WebKitFrame objects are released when the frame is destroyed. + Clear the GObject DOM bindings internal cache when frames are destroyed. + Implement page overlays to bring back the inspector element highlighting. + Fix startup runtime critical warnings when using the network process. + Fix the build with recent versions of GLib that have GMutexLocker. + Fix the gtk-doc generation to appear in DevHelp. ------------------------------------------------------------------- Fri Jan 23 22:20:29 UTC 2015 - zaitor@opensuse.org - Update to version 2.7.4: + Add API to change the WebKitWebView background color. + Add an option to create WebKitWebView snapshots with transparent background. + Add API to make the WebKitWebView editable. + Add is-playing-audio property to WebKitWebView. + Do not resize the accelerating compositing window to the web size until accelerated compositing mode is activated. ------------------------------------------------------------------- Fri Jan 23 22:20:28 UTC 2015 - zaitor@opensuse.org - Update to version 2.7.3: + Add API to support HTML5 notifications. + Add UserMedia Permission Request API. + GObject DOM bindings API now correctly returns NULL intead of empty strings to be able to differentiate between not present and present but empty. + Add support for text-decoration-skip. + Improve the HTTP authentication dialog. + Expose the ID attribute of Meter and Option elements to accessibility. + Use latin1 instead of UTF-8 for HTTP header values. + Update NavigationItemProbes inspector icon. + Add video/mp2t as alternative mimetype for MPEG TS. + Add application/x-mpegurl and video/flv to the list of supported mimetypes. + Add SCHEDULING query support to HTTP media source element. + Fix deadlock when shutting down AudioDestination. + Updated translations. - Changes from version 2.7.2: + Fix SSL connection issues with some websites after the POODLE vulnerability fix. + Add API to handle user script messages. + Add context menu API to Web Process Extensions. + Add API to create a WebKitWebContext. + Add API to override the default local storage directory. + Add WebKitWebResource::failed-with-tls-errors signal to notify about load failures due to TLS errors also in sub-resources. + Fix several crashes in accessibility implementation. + Fix XMLHttpRequest with a timeout when using the network process. + Fix XMLHttpRequest with cookies disabled when using the network process. + Fix a crash in the network process when a synchronous load redirects to a new url in a different security origin. + Fix a crash in TextureMapper when video resolution changes. + Correctly report the memory used by the media player to the garbage collector to make sure it’s freed when the video element is removed from the DOM. + Fix documentation of webkit_print_operation_get_page_setup(). ------------------------------------------------------------------- Fri Jan 23 19:16:29 UTC 2015 - zaitor@opensuse.org - Update to version 2.6.5: + Fix issue that caused some text to be inserted when trying to delete a word from the Twitter message box. + GObject DOM bindings API now correctly returns NULL intead of empty strings to be able to differentiate between not present and present but empty. + Do not resize the accelerating compositing window to the web size until accelerated compositing mode is activated. + Use latin1 instead of UTF-8 for HTTP header values. + Add SCHEDULING query support to HTTP media source element. + Add application/x-mpegurl and video/flv to the list of supported mimetypes. + Update NavigationItemProbes inspector icon. + Fix the build with recent GStreamer. + Fix the build on FreeBSD. + Fix build on OS X. + Fix the build on powerpc 32 bits. + Fixed several crashes in WebCore and JavaScriptCore. + Updated translations. - Drop webkitgtk-libatomic.patch: Fixed upstream. ------------------------------------------------------------------- Tue Jan 13 15:27:07 UTC 2015 - schwab@suse.de - Add webkitgtk-libatomic.patch: Check if libatomic is needed in order to use std::atomic; fixes build on ppc. ------------------------------------------------------------------- Wed Dec 17 21:56:51 UTC 2014 - zaitor@opensuse.org - Update to version 2.6.4: + Fix SSL connection issues with some websites after the POODLE vulnerability fix. + Fix several crashes in accessibility implementation. + Fix XMLHttpRequest with a timeout when using the network process. + Fix XMLHttpRequest with cookies disabled when using the network process. + Fix a crash in the network process when a synchronous load redirects to a new url in a different security origin. + Fix documentation of webkit_print_operation_get_page_setup(). + Allow to build with GObject introspection disabled. + Fix the remote inspector when settings don't change after page initialization. ------------------------------------------------------------------- Wed Nov 12 16:21:20 UTC 2014 - zaitor@opensuse.org - Update to version 2.6.3: + Fix a crash when loading flash plugins. + Correctly report the memory used by the media player to the garbage collector to make sure it's freed when the video element is removed from the DOM. + Fix a crash in TextureMapper when video resolution changes. + Ensure that CSS-generated text content is exposed to assistive technologies. + Enable CSS_IMAGE_SET on production builds to fix some icons that are not rendered in the web inspector. + Fix the build on FreeBSD and GNU Hurd. + Fix the build with video disabled. ------------------------------------------------------------------- Sat Oct 25 11:51:21 UTC 2014 - dimstar@opensuse.org - Update to version 2.6.2: + SSLv3 is now disabled to protect us against POODLE vulnerability. + TLS errors are no longer ignored by default. + Fix the remote web inspector. + Fix rendering of buttons, selections and lists with recent GTK+ versions. + Improve performance of timers scheduled after a delay in microseconds. + Fix WebKitSettings:enable-smooth-scrolling to actually enable smooth scrolling. + Fix the build with drag and drop support disabled. ------------------------------------------------------------------- Tue Oct 14 09:34:12 UTC 2014 - dimstar@opensuse.org - Update to version 2.6.1: + Ensure WebKitWebView:is-loading is TRUE right after a new load starts. + Fix a crash in the plugin process with some windowed flash plugins. + Allow to dock the inspector again once undocked when building with GTK+ >= 3.10. + TLS errors now take precedence over the HTTP authentication dialog. + Do not shrink on-disk cache to its default size on startup. + Improve the proportion and visibility of some web inspector icons. + Fix GTK+2 plugins not working after being updated. + Don’t include full path names in WebKitEnumTypes.h to ensure the generated headers are always identical. + Updated transations. ------------------------------------------------------------------- Mon Oct 13 14:59:24 UTC 2014 - dvaleev@suse.com - Disable JIT on Power architectures (-DEANBLE_JIT=OFF -DENABLE_YARR_JIT=0) ------------------------------------------------------------------- Thu Sep 25 08:13:58 UTC 2014 - dimstar@opensuse.org - Update to version 2.6.0: + Make vimeo videos work again with the GStreamer media backend. + Add more free icons for the web inspector. + Fix a WebSocket crash when a connection is closed from server side. + Fixed a memory leak in JavaScriptCore. + Fix the build with video support disabled. + Fix CLoop on the 32-bit Big-Endians. + Updated translations. ------------------------------------------------------------------- Sun Sep 21 13:18:34 UTC 2014 - dimstar@opensuse.org - Update to version 2.5.90: + Use free icons for the web inspector. + Change WebKitWebView::load-failed-with-tls-errors signal to pass the failing URI as signal argument instead of the host. + Add new API to allow overwrite existing files when downloading a file. + Add webkit_uri_response_get_http_headers() API. + Improve the UI of the HTTP authentication dialog. + Fix a crash when navigating away from a web page containing an ogg video. + Fix race condition when downloading a file due to the intermediate temporary file. + Fix toggle buttons rendering with recent GTK+ versions. + Fix selection rendering when unfocused with recent GTK+ versions. + Mak e the GStreamer media backend not send the transferMode HTTP header. - Setup environment to prefer GOLD linker (softlink /usr/bin/ld.gold to ~/bin/ld). ------------------------------------------------------------------- Mon Sep 8 16:54:04 UTC 2014 - dimstar@opensuse.org - Pass -DCMAKE_{EXE,MODULE,SHARED}_LINKER_FLAGS="-Wl,--as-needed -Wl,-z,now" to cmake call: cmake changed the default to not accept libraries to have undefined symbols (-Wl,--no-undefined). In this case though, it is understood and expected, so we remove --no-undefined from the FLAGS. ------------------------------------------------------------------- Wed Aug 13 16:47:40 UTC 2014 - dimstar@opensuse.org - Initial package, version 2.5.3; based on webkitgtk3.spec.
Locations
Projects
Search
Status Monitor
Help
OpenBuildService.org
Documentation
API Documentation
Code of Conduct
Contact
Support
@OBShq
Terms
openSUSE Build Service is sponsored by
The Open Build Service is an
openSUSE project
.
Sign Up
Log In
Places
Places
All Projects
Status Monitor