diff options
Diffstat (limited to 'www-client/firefox/files')
3 files changed, 0 insertions, 98 deletions
diff --git a/www-client/firefox/files/fix_hardened_pie_detection.patch b/www-client/firefox/files/fix_hardened_pie_detection.patch deleted file mode 100644 index 7cc74cd1..00000000 --- a/www-client/firefox/files/fix_hardened_pie_detection.patch +++ /dev/null @@ -1,36 +0,0 @@ -From: Jory A. Pratt <anarchy@gentoo.org> - -CFLAGS must contain -fPIC when checking the linker - -https://bugs.gentoo.org/show_bug.cgi?id=607350 - -diff --git a/build/autoconf/compiler-opts.m4 b/build/autoconf/compiler-opts.m4 ---- a/build/autoconf/compiler-opts.m4 -+++ b/build/autoconf/compiler-opts.m4 -@@ -263,23 +263,26 @@ fi - - MOZ_ARG_ENABLE_BOOL(pie, - [ --enable-pie Enable Position Independent Executables], - MOZ_PIE=1, - MOZ_PIE= ) - - if test "$GNU_CC" -a -n "$MOZ_PIE"; then - AC_MSG_CHECKING([for PIE support]) -+ _SAVE_CFLAGS=$CFLAGS -+ CFLAGS="$CFLAGS -fPIC" - _SAVE_LDFLAGS=$LDFLAGS - LDFLAGS="$LDFLAGS -pie" - AC_TRY_LINK(,,AC_MSG_RESULT([yes]) - [MOZ_PROGRAM_LDFLAGS="$MOZ_PROGRAM_LDFLAGS -pie"], - AC_MSG_RESULT([no]) - AC_MSG_ERROR([--enable-pie requires PIE support from the linker.])) - LDFLAGS=$_SAVE_LDFLAGS -+ CFLAGS=$_SAVE_CFLAGS - fi - - AC_SUBST(MOZ_PROGRAM_LDFLAGS) - - dnl ASan assumes no symbols are being interposed, and when that happens, - dnl it's not happy with it. Unconveniently, since Firefox is exporting - dnl libffi symbols and Gtk+3 pulls system libffi via libwayland-client, - dnl system libffi interposes libffi symbols that ASan assumes are in diff --git a/www-client/firefox/files/mozilla_configure_regexp_esr.patch b/www-client/firefox/files/mozilla_configure_regexp_esr.patch deleted file mode 100644 index 9e165ff9..00000000 --- a/www-client/firefox/files/mozilla_configure_regexp_esr.patch +++ /dev/null @@ -1,32 +0,0 @@ -From: Jory A. Pratt <anarchy@gentoo.org> - -Note: the first occurrence of :space: is [:space:] (with a single pair -of []), where it should be [[:space:]] (with two pairs of []). - -This causes the sed command to fail (with the error message quoted in -my original report), driving to failure the whole configure step. - -https://bugzilla.mozilla.org/show_bug.cgi?id=1329252 - -diff --git a/build/autoconf/icu.m4 b/build/autoconf/icu.m4 ---- a/build/autoconf/icu.m4 -+++ b/build/autoconf/icu.m4 -@@ -68,17 +68,17 @@ if test -n "$USE_ICU"; then - icudir="$_topsrcdir/intl/icu/source" - if test ! -d "$icudir"; then - icudir="$_topsrcdir/../../intl/icu/source" - if test ! -d "$icudir"; then - AC_MSG_ERROR([Cannot find the ICU directory]) - fi - fi - -- version=`sed -n 's/^[[:space:]]*#[[:space:]]*define[[:space:]][[:space:]]*U_ICU_VERSION_MAJOR_NUM[[:space:]][[:space:]]*\([0-9][0-9]*\)[[:space:]]*$/\1/p' "$icudir/common/unicode/uvernum.h"` -+ version=`sed -n 's/^[[[:space:]]]*#[[:space:]]*define[[:space:]][[:space:]]*U_ICU_VERSION_MAJOR_NUM[[:space:]][[:space:]]*\([0-9][0-9]*\)[[:space:]]*$/\1/p' "$icudir/common/unicode/uvernum.h"` - if test x"$version" = x; then - AC_MSG_ERROR([cannot determine icu version number from uvernum.h header file $lineno]) - fi - MOZ_ICU_VERSION="$version" - - if test "$OS_TARGET" = WINNT; then - MOZ_SHARED_ICU=1 - fi diff --git a/www-client/firefox/files/update_h2_curve.patch b/www-client/firefox/files/update_h2_curve.patch deleted file mode 100644 index a1f0ffae..00000000 --- a/www-client/firefox/files/update_h2_curve.patch +++ /dev/null @@ -1,30 +0,0 @@ -From: Franziskus Kiefer <franziskuskiefer@gmail.com> - -Update keybits in H2 - -https://bugzilla.mozilla.org/show_bug.cgi?id=1290037 - -diff --git a/netwerk/protocol/http/Http2Session.cpp b/netwerk/protocol/http/Http2Session.cpp ---- a/netwerk/protocol/http/Http2Session.cpp -+++ b/netwerk/protocol/http/Http2Session.cpp -@@ -3516,18 +3516,18 @@ Http2Session::ConfirmTLSProfile() - RETURN_SESSION_ERROR(this, INADEQUATE_SECURITY); - } - - uint32_t keybits = ssl->GetKEAKeyBits(); - if (kea == ssl_kea_dh && keybits < 2048) { - LOG3(("Http2Session::ConfirmTLSProfile %p FAILED due to DH %d < 2048\n", - this, keybits)); - RETURN_SESSION_ERROR(this, INADEQUATE_SECURITY); -- } else if (kea == ssl_kea_ecdh && keybits < 256) { // 256 bits is "security level" of 128 -- LOG3(("Http2Session::ConfirmTLSProfile %p FAILED due to ECDH %d < 256\n", -+ } else if (kea == ssl_kea_ecdh && keybits < 224) { // see rfc7540 9.2.1. -+ LOG3(("Http2Session::ConfirmTLSProfile %p FAILED due to ECDH %d < 224\n", - this, keybits)); - RETURN_SESSION_ERROR(this, INADEQUATE_SECURITY); - } - - int16_t macAlgorithm = ssl->GetMACAlgorithmUsed(); - LOG3(("Http2Session::ConfirmTLSProfile %p MAC Algortihm (aead==6) %d\n", - this, macAlgorithm)); - if (macAlgorithm != nsISSLSocketControl::SSL_MAC_AEAD) { |