* [Buildroot] [PATCH 1/1] package/wpewebkit: security bump to version 2.48.3
@ 2025-07-08 21:50 Adrian Perez de Castro
2025-07-30 20:32 ` Thomas Petazzoni via buildroot
2025-08-07 18:23 ` Thomas Perale via buildroot
0 siblings, 2 replies; 3+ messages in thread
From: Adrian Perez de Castro @ 2025-07-08 21:50 UTC (permalink / raw)
To: buildroot; +Cc: Adrian Perez de Castro
This bumps WPE WebKit to the 2.48 stable series, skipping over 2.46.
WPE WebKit 2.48 and 2.46 highlights:
- https://wpewebkit.org/blog/2025-04-11-wpewebkit-2.48.html
- https://wpewebkit.org/blog/2024-wpewebkit-2.46.html
Release notes:
- https://wpewebkit.org/release/wpewebkit-2.48.3.html
- https://wpewebkit.org/release/wpewebkit-2.48.2.html
- https://wpewebkit.org/release/wpewebkit-2.48.1.html
- https://wpewebkit.org/release/wpewebkit-2.48.0.html
- https://wpewebkit.org/release/wpewebkit-2.46.7.html
- https://wpewebkit.org/release/wpewebkit-2.46.6.html
- https://wpewebkit.org/release/wpewebkit-2.46.5.html
- https://wpewebkit.org/release/wpewebkit-2.46.4.html
- https://wpewebkit.org/release/wpewebkit-2.46.3.html
- https://wpewebkit.org/release/wpewebkit-2.46.2.html
- https://wpewebkit.org/release/wpewebkit-2.46.1.html
- https://wpewebkit.org/release/wpewebkit-2.46.0.html
Fixes the following security issues:
- From https://wpewebkit.org/security/WSA-2025-0004.html
CVE-2025-24223, CVE-2025-31204, CVE-2025-31205, CVE-2025-31206,
CVE-2025-31215, CVE-2025-31257
- From https://wpewebkit.org/security/WSA-2025-0003.html
CVE-2024-54551, CVE-2025-24208, CVE-2025-24209, CVE-2025-24213,
CVE-2025-24216, CVE-2025-24264, CVE-2025-30427
- From https://wpewebkit.org/security/WSA-2025-0002.html
CVE-2024-44192, CVE-2024-54467, CVE-2025-24201
- From https://wpewebkit.org/security/WSA-2025-0001.html
CVE-2024-27856, CVE-2024-54543, CVE-2024-54658, CVE-2025-24143,
CVE-2025-24150, CVE-2025-24158, CVE-2025-24162
- From https://wpewebkit.org/security/WSA-2024-0008.html
CVE-2024-54479, CVE-2024-54502, CVE-2024-54505, CVE-2024-54508,
CVE-2024-54534
- From https://wpewebkit.org/security/WSA-2024-0007.html
CVE-2024-44308, CVE-2024-44309
- From https://wpewebkit.org/security/WSA-2024-0006.html
CVE-2024-44185, CVE-2024-44244, CVE-2024-44296
- From https://wpewebkit.org/security/WSA-2024-0005.html
CVE-2024-40866, CVE-2024-44187
As for build system changes, the minimum GCC requirement gets raised to
version 11 [1], the ENABLE_SPEECH_SYNTHESIS option is now enabled by
default [2] and needs handling, and Skia (bundled with the sources) is
now preferred on little-endian targets.
[1] https://github.com/WebKit/WebKit/commit/682ac4ba74c53d0cd488c7a595096224a9abb036
[2] https://github.com/WebKit/WebKit/commit/10381a8de938024f31935184af470ccbce0b22d9
Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
---
...d-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch | 44 +++++++++++++++++++
package/wpewebkit/Config.in | 11 ++---
package/wpewebkit/wpewebkit.hash | 8 ++--
package/wpewebkit/wpewebkit.mk | 27 +++++++++++-
4 files changed, 79 insertions(+), 11 deletions(-)
create mode 100644 package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
diff --git a/package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch b/package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
new file mode 100644
index 0000000000..8432543e07
--- /dev/null
+++ b/package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
@@ -0,0 +1,44 @@
+From 94acd1ce0ff2860b19f22ab2d386d7711c9699b7 Mon Sep 17 00:00:00 2001
+From: Adrian Perez de Castro <aperez@igalia.com>
+Date: Tue, 8 Jul 2025 21:46:44 +0300
+Subject: [PATCH] [WPE] Fix the build with USE_SKIA_OPENTYPE_SVG=ON and
+ USE_SYSPROF_CAPTURE=OFF
+
+Unreviewed build fix.
+
+When backporting 287859@main the #include for the needed Skia header
+slipped inside an USE(SYSPROF_CAPTURE) guard. This moves the guards
+and #include statements to their correct places.
+
+* Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp:
+
+Canonical link: https://commits.webkit.org/290945.273@webkitglib/2.48
+
+Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
+Upstream: https://github.com/WebKit/WebKit/commit/943d05f0c9b03c053a456c90c2a8817c1f679711
+---
+ Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp | 5 +++--
+ 1 file changed, 3 insertions(+), 2 deletions(-)
+
+diff --git a/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp b/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp
+index a06e33fd04f8..5fb245ce0b66 100644
+--- a/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp
++++ b/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp
+@@ -43,11 +43,12 @@
+ #include <skia/core/SkGraphics.h>
+ #endif
+
+-#if USE(SYSPROF_CAPTURE)
+-#include <wtf/SystemTracing.h>
+ #if USE(SKIA_OPENTYPE_SVG)
+ #include <skia/modules/svg/SkSVGOpenTypeSVGDecoder.h>
+ #endif
++
++#if USE(SYSPROF_CAPTURE)
++#include <wtf/SystemTracing.h>
+ #endif
+
+ namespace WebKit {
+--
+2.50.1
+
diff --git a/package/wpewebkit/Config.in b/package/wpewebkit/Config.in
index 512f7ea672..969590482c 100644
--- a/package/wpewebkit/Config.in
+++ b/package/wpewebkit/Config.in
@@ -16,12 +16,12 @@ config BR2_PACKAGE_WPEWEBKIT_ARCH_SUPPORTS
depends on BR2_TOOLCHAIN_HAS_SYNC_4
depends on BR2_PACKAGE_LIBGPG_ERROR_ARCH_SUPPORTS # libgcrypt
-comment "wpewebkit needs a toolchain w/ C++, wchar, NPTL, dynamic library, gcc >= 10, host gcc >= 4.9"
+comment "wpewebkit needs a toolchain w/ C++, wchar, NPTL, dynamic library, gcc >= 11, host gcc >= 4.9"
depends on BR2_PACKAGE_WPEWEBKIT_ARCH_SUPPORTS
depends on !BR2_BINFMT_FLAT
depends on !BR2_INSTALL_LIBSTDCPP || !BR2_USE_WCHAR \
|| !BR2_TOOLCHAIN_HAS_THREADS_NPTL || BR2_STATIC_LIBS \
- || !BR2_TOOLCHAIN_GCC_AT_LEAST_10 \
+ || !BR2_TOOLCHAIN_GCC_AT_LEAST_11 \
|| !BR2_HOST_GCC_AT_LEAST_4_9
comment "wpewebkit needs an OpenGL ES w/ EGL-capable Wayland backend"
@@ -36,13 +36,13 @@ config BR2_PACKAGE_WPEWEBKIT
depends on BR2_HOST_GCC_AT_LEAST_4_9 # icu, host-ruby
depends on BR2_INSTALL_LIBSTDCPP # harfbuzz, icu
depends on BR2_TOOLCHAIN_HAS_THREADS_NPTL
- depends on BR2_TOOLCHAIN_GCC_AT_LEAST_10
+ depends on BR2_TOOLCHAIN_GCC_AT_LEAST_11
depends on BR2_USE_WCHAR # icu, libsoup3
depends on BR2_PACKAGE_HAS_LIBGLES # libepoxy
depends on BR2_PACKAGE_HAS_LIBEGL # libepoxy
depends on BR2_PACKAGE_WPEWEBKIT_ARCH_SUPPORTS
- select BR2_PACKAGE_CAIRO
- select BR2_PACKAGE_CAIRO_PNG
+ select BR2_PACKAGE_CAIRO if BR2_ENDIAN = "BIG"
+ select BR2_PACKAGE_CAIRO_PNG if BR2_ENDIAN = "BIG"
select BR2_PACKAGE_HARFBUZZ
select BR2_PACKAGE_ICU
select BR2_PACKAGE_JPEG
@@ -56,6 +56,7 @@ config BR2_PACKAGE_WPEWEBKIT
select BR2_PACKAGE_WAYLAND_PROTOCOLS
select BR2_PACKAGE_WEBP
select BR2_PACKAGE_WEBP_DEMUX
+ select BR2_PACKAGE_WEBP_MUX
select BR2_PACKAGE_WPEBACKEND_FDO
help
WPE (Web Platform for Embedded) port of the WebKit engine,
diff --git a/package/wpewebkit/wpewebkit.hash b/package/wpewebkit/wpewebkit.hash
index 7a7cef15a5..332fd9deaa 100644
--- a/package/wpewebkit/wpewebkit.hash
+++ b/package/wpewebkit/wpewebkit.hash
@@ -1,7 +1,7 @@
-# From https://wpewebkit.org/releases/wpewebkit-2.44.4.tar.xz.sums
-md5 4d91f3ff629c9356dcff866b68a4646f wpewebkit-2.44.4.tar.xz
-sha1 ef1ea0484e9ec17a362afe9a709fe0754f05cc14 wpewebkit-2.44.4.tar.xz
-sha256 cd6042c63a6f883cc1586e5cea94e846aaaee6a864c14988e8af4ef4f362ba3b wpewebkit-2.44.4.tar.xz
+# From https://wpewebkit.org/releases/wpewebkit-2.48.3.tar.xz.sums
+md5 2d3b7fa3c62886546f918fcc289cabbe wpewebkit-2.48.3.tar.xz
+sha1 8a90b9ff8809c99c306defc1a08e50a31a09c590 wpewebkit-2.48.3.tar.xz
+sha256 807571f07e87823b8fb79564692c9b1ef81ee62edbf51345a15bd0e7e1f2e07b wpewebkit-2.48.3.tar.xz
# Hashes for license files:
sha256 0b5d3a7cc325942567373b0ecd757d07c132e0ebd7c97bfc63f7e1a76094edb4 Source/WebCore/LICENSE-APPLE
diff --git a/package/wpewebkit/wpewebkit.mk b/package/wpewebkit/wpewebkit.mk
index 6a8e9c637c..796e271ecb 100644
--- a/package/wpewebkit/wpewebkit.mk
+++ b/package/wpewebkit/wpewebkit.mk
@@ -5,7 +5,7 @@
################################################################################
# The middle number is even for stable releases, odd for development ones.
-WPEWEBKIT_VERSION = 2.44.4
+WPEWEBKIT_VERSION = 2.48.3
WPEWEBKIT_SITE = https://wpewebkit.org/releases
WPEWEBKIT_SOURCE = wpewebkit-$(WPEWEBKIT_VERSION).tar.xz
WPEWEBKIT_INSTALL_STAGING = YES
@@ -16,7 +16,7 @@ WPEWEBKIT_LICENSE_FILES = \
WPEWEBKIT_CPE_ID_VENDOR = wpewebkit
WPEWEBKIT_CPE_ID_PRODUCT = wpe_webkit
WPEWEBKIT_DEPENDENCIES = host-gperf host-python3 host-ruby host-unifdef \
- harfbuzz cairo icu jpeg libepoxy libgcrypt libgles libsoup3 libtasn1 \
+ harfbuzz icu jpeg libepoxy libgcrypt libgles libsoup3 libtasn1 \
libpng libxslt wayland-protocols webp wpebackend-fdo
WPEWEBKIT_CMAKE_BACKEND = ninja
@@ -30,6 +30,15 @@ WPEWEBKIT_CONF_OPTS = \
-DENABLE_WEB_RTC=OFF \
-DUSE_ATK=OFF
+# WPE WebKit uses a bundled copy of Skia since 2.46.0 for
+# little-endian targets, and Cairo for big-endian ones.
+ifeq ($(BR2_ENDIAN),"BIG")
+WPEWEBKIT_DEPENDENCIES += cairo
+WPEWEBKIT_CONF_OPTS += -DUSE_SKIA=OFF
+else
+WPEWEBKIT_CONF_OPTS += -DUSE_SKIA=ON
+endif
+
ifeq ($(BR2_PACKAGE_WPEWEBKIT_SANDBOX),y)
WPEWEBKIT_CONF_OPTS += \
-DENABLE_BUBBLEWRAP_SANDBOX=ON \
@@ -79,6 +88,13 @@ else
WPEWEBKIT_CONF_OPTS += -DENABLE_WEBDRIVER=OFF
endif
+ifeq ($(BR2_PACKAGE_FLITE),y)
+WPEWEBKIT_CONF_OPTS += -DENABLE_SPEECH_SYNTHESIS=ON
+WPEWEBKIT_DEPENDENCIES += flite
+else
+WPEWEBKIT_CONF_OPTS += -DENABLE_SPEECH_SYNTHESIS=OFF
+endif
+
ifeq ($(BR2_PACKAGE_LCMS2),y)
WPEWEBKIT_CONF_OPTS += -DUSE_LCMS=ON
WPEWEBKIT_DEPENDENCIES += lcms2
@@ -114,6 +130,13 @@ else
WPEWEBKIT_CONF_OPTS += -DUSE_JPEGXL=OFF
endif
+ifeq ($(BR2_PACKAGE_SYSPROF),y)
+WPEWEBKIT_CONF_OPTS += -DUSE_SYSPROF_CAPTURE=ON
+WPEWEBKIT_DEPENDENCIES += sysprof
+else
+WPEWEBKIT_CONF_OPTS += -DUSE_SYSPROF_CAPTURE=OFF
+endif
+
ifeq ($(BR2_INIT_SYSTEMD),y)
WPEWEBKIT_CONF_OPTS += -DENABLE_JOURNALD_LOG=ON
WPEWEBKIT_DEPENDENCIES += systemd
--
2.50.0
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/wpewebkit: security bump to version 2.48.3
2025-07-08 21:50 [Buildroot] [PATCH 1/1] package/wpewebkit: security bump to version 2.48.3 Adrian Perez de Castro
@ 2025-07-30 20:32 ` Thomas Petazzoni via buildroot
2025-08-07 18:23 ` Thomas Perale via buildroot
1 sibling, 0 replies; 3+ messages in thread
From: Thomas Petazzoni via buildroot @ 2025-07-30 20:32 UTC (permalink / raw)
To: Adrian Perez de Castro; +Cc: buildroot
On Wed, 9 Jul 2025 00:50:09 +0300
Adrian Perez de Castro <aperez@igalia.com> wrote:
> This bumps WPE WebKit to the 2.48 stable series, skipping over 2.46.
>
> WPE WebKit 2.48 and 2.46 highlights:
>
> - https://wpewebkit.org/blog/2025-04-11-wpewebkit-2.48.html
> - https://wpewebkit.org/blog/2024-wpewebkit-2.46.html
>
> Release notes:
>
> - https://wpewebkit.org/release/wpewebkit-2.48.3.html
> - https://wpewebkit.org/release/wpewebkit-2.48.2.html
> - https://wpewebkit.org/release/wpewebkit-2.48.1.html
> - https://wpewebkit.org/release/wpewebkit-2.48.0.html
> - https://wpewebkit.org/release/wpewebkit-2.46.7.html
> - https://wpewebkit.org/release/wpewebkit-2.46.6.html
> - https://wpewebkit.org/release/wpewebkit-2.46.5.html
> - https://wpewebkit.org/release/wpewebkit-2.46.4.html
> - https://wpewebkit.org/release/wpewebkit-2.46.3.html
> - https://wpewebkit.org/release/wpewebkit-2.46.2.html
> - https://wpewebkit.org/release/wpewebkit-2.46.1.html
> - https://wpewebkit.org/release/wpewebkit-2.46.0.html
>
> Fixes the following security issues:
>
> - From https://wpewebkit.org/security/WSA-2025-0004.html
> CVE-2025-24223, CVE-2025-31204, CVE-2025-31205, CVE-2025-31206,
> CVE-2025-31215, CVE-2025-31257
>
> - From https://wpewebkit.org/security/WSA-2025-0003.html
> CVE-2024-54551, CVE-2025-24208, CVE-2025-24209, CVE-2025-24213,
> CVE-2025-24216, CVE-2025-24264, CVE-2025-30427
>
> - From https://wpewebkit.org/security/WSA-2025-0002.html
> CVE-2024-44192, CVE-2024-54467, CVE-2025-24201
>
> - From https://wpewebkit.org/security/WSA-2025-0001.html
> CVE-2024-27856, CVE-2024-54543, CVE-2024-54658, CVE-2025-24143,
> CVE-2025-24150, CVE-2025-24158, CVE-2025-24162
>
> - From https://wpewebkit.org/security/WSA-2024-0008.html
> CVE-2024-54479, CVE-2024-54502, CVE-2024-54505, CVE-2024-54508,
> CVE-2024-54534
>
> - From https://wpewebkit.org/security/WSA-2024-0007.html
> CVE-2024-44308, CVE-2024-44309
>
> - From https://wpewebkit.org/security/WSA-2024-0006.html
> CVE-2024-44185, CVE-2024-44244, CVE-2024-44296
>
> - From https://wpewebkit.org/security/WSA-2024-0005.html
> CVE-2024-40866, CVE-2024-44187
>
> As for build system changes, the minimum GCC requirement gets raised to
> version 11 [1], the ENABLE_SPEECH_SYNTHESIS option is now enabled by
> default [2] and needs handling, and Skia (bundled with the sources) is
> now preferred on little-endian targets.
>
> [1] https://github.com/WebKit/WebKit/commit/682ac4ba74c53d0cd488c7a595096224a9abb036
> [2] https://github.com/WebKit/WebKit/commit/10381a8de938024f31935184af470ccbce0b22d9
>
> Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
> ---
> ...d-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch | 44 +++++++++++++++++++
> package/wpewebkit/Config.in | 11 ++---
> package/wpewebkit/wpewebkit.hash | 8 ++--
> package/wpewebkit/wpewebkit.mk | 27 +++++++++++-
> 4 files changed, 79 insertions(+), 11 deletions(-)
> create mode 100644 package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
Applied to master, thanks.
Thomas
--
Thomas Petazzoni, CTO, Bootlin
Embedded Linux and Kernel engineering
https://bootlin.com
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [Buildroot] [PATCH 1/1] package/wpewebkit: security bump to version 2.48.3
2025-07-08 21:50 [Buildroot] [PATCH 1/1] package/wpewebkit: security bump to version 2.48.3 Adrian Perez de Castro
2025-07-30 20:32 ` Thomas Petazzoni via buildroot
@ 2025-08-07 18:23 ` Thomas Perale via buildroot
1 sibling, 0 replies; 3+ messages in thread
From: Thomas Perale via buildroot @ 2025-08-07 18:23 UTC (permalink / raw)
To: Adrian Perez de Castro; +Cc: Thomas Perale, buildroot
In reply of:
> This bumps WPE WebKit to the 2.48 stable series, skipping over 2.46.
>
> WPE WebKit 2.48 and 2.46 highlights:
>
> - https://wpewebkit.org/blog/2025-04-11-wpewebkit-2.48.html
> - https://wpewebkit.org/blog/2024-wpewebkit-2.46.html
>
> Release notes:
>
> - https://wpewebkit.org/release/wpewebkit-2.48.3.html
> - https://wpewebkit.org/release/wpewebkit-2.48.2.html
> - https://wpewebkit.org/release/wpewebkit-2.48.1.html
> - https://wpewebkit.org/release/wpewebkit-2.48.0.html
> - https://wpewebkit.org/release/wpewebkit-2.46.7.html
> - https://wpewebkit.org/release/wpewebkit-2.46.6.html
> - https://wpewebkit.org/release/wpewebkit-2.46.5.html
> - https://wpewebkit.org/release/wpewebkit-2.46.4.html
> - https://wpewebkit.org/release/wpewebkit-2.46.3.html
> - https://wpewebkit.org/release/wpewebkit-2.46.2.html
> - https://wpewebkit.org/release/wpewebkit-2.46.1.html
> - https://wpewebkit.org/release/wpewebkit-2.46.0.html
>
> Fixes the following security issues:
>
> - From https://wpewebkit.org/security/WSA-2025-0004.html
> CVE-2025-24223, CVE-2025-31204, CVE-2025-31205, CVE-2025-31206,
> CVE-2025-31215, CVE-2025-31257
>
> - From https://wpewebkit.org/security/WSA-2025-0003.html
> CVE-2024-54551, CVE-2025-24208, CVE-2025-24209, CVE-2025-24213,
> CVE-2025-24216, CVE-2025-24264, CVE-2025-30427
>
> - From https://wpewebkit.org/security/WSA-2025-0002.html
> CVE-2024-44192, CVE-2024-54467, CVE-2025-24201
>
> - From https://wpewebkit.org/security/WSA-2025-0001.html
> CVE-2024-27856, CVE-2024-54543, CVE-2024-54658, CVE-2025-24143,
> CVE-2025-24150, CVE-2025-24158, CVE-2025-24162
>
> - From https://wpewebkit.org/security/WSA-2024-0008.html
> CVE-2024-54479, CVE-2024-54502, CVE-2024-54505, CVE-2024-54508,
> CVE-2024-54534
>
> - From https://wpewebkit.org/security/WSA-2024-0007.html
> CVE-2024-44308, CVE-2024-44309
>
> - From https://wpewebkit.org/security/WSA-2024-0006.html
> CVE-2024-44185, CVE-2024-44244, CVE-2024-44296
>
> - From https://wpewebkit.org/security/WSA-2024-0005.html
> CVE-2024-40866, CVE-2024-44187
>
> As for build system changes, the minimum GCC requirement gets raised to
> version 11 [1], the ENABLE_SPEECH_SYNTHESIS option is now enabled by
> default [2] and needs handling, and Skia (bundled with the sources) is
> now preferred on little-endian targets.
>
> [1] https://github.com/WebKit/WebKit/commit/682ac4ba74c53d0cd488c7a595096224a9abb036
> [2] https://github.com/WebKit/WebKit/commit/10381a8de938024f31935184af470ccbce0b22d9
>
> Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
Applied to 2025.02.x & 2025.05.x. Thanks
> ---
> ...d-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch | 44 +++++++++++++++++++
> package/wpewebkit/Config.in | 11 ++---
> package/wpewebkit/wpewebkit.hash | 8 ++--
> package/wpewebkit/wpewebkit.mk | 27 +++++++++++-
> 4 files changed, 79 insertions(+), 11 deletions(-)
> create mode 100644 package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
>
> diff --git a/package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch b/package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
> new file mode 100644
> index 0000000000..8432543e07
> --- /dev/null
> +++ b/package/wpewebkit/0001-WPE-Fix-the-build-with-USE_SKIA_OPENTYPE_SVG-ON-and-.patch
> @@ -0,0 +1,44 @@
> +From 94acd1ce0ff2860b19f22ab2d386d7711c9699b7 Mon Sep 17 00:00:00 2001
> +From: Adrian Perez de Castro <aperez@igalia.com>
> +Date: Tue, 8 Jul 2025 21:46:44 +0300
> +Subject: [PATCH] [WPE] Fix the build with USE_SKIA_OPENTYPE_SVG=ON and
> + USE_SYSPROF_CAPTURE=OFF
> +
> +Unreviewed build fix.
> +
> +When backporting 287859@main the #include for the needed Skia header
> +slipped inside an USE(SYSPROF_CAPTURE) guard. This moves the guards
> +and #include statements to their correct places.
> +
> +* Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp:
> +
> +Canonical link: https://commits.webkit.org/290945.273@webkitglib/2.48
> +
> +Signed-off-by: Adrian Perez de Castro <aperez@igalia.com>
> +Upstream: https://github.com/WebKit/WebKit/commit/943d05f0c9b03c053a456c90c2a8817c1f679711
> +---
> + Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp | 5 +++--
> + 1 file changed, 3 insertions(+), 2 deletions(-)
> +
> +diff --git a/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp b/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp
> +index a06e33fd04f8..5fb245ce0b66 100644
> +--- a/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp
> ++++ b/Source/WebKit/WebProcess/wpe/WebProcessMainWPE.cpp
> +@@ -43,11 +43,12 @@
> + #include <skia/core/SkGraphics.h>
> + #endif
> +
> +-#if USE(SYSPROF_CAPTURE)
> +-#include <wtf/SystemTracing.h>
> + #if USE(SKIA_OPENTYPE_SVG)
> + #include <skia/modules/svg/SkSVGOpenTypeSVGDecoder.h>
> + #endif
> ++
> ++#if USE(SYSPROF_CAPTURE)
> ++#include <wtf/SystemTracing.h>
> + #endif
> +
> + namespace WebKit {
> +--
> +2.50.1
> +
> diff --git a/package/wpewebkit/Config.in b/package/wpewebkit/Config.in
> index 512f7ea672..969590482c 100644
> --- a/package/wpewebkit/Config.in
> +++ b/package/wpewebkit/Config.in
> @@ -16,12 +16,12 @@ config BR2_PACKAGE_WPEWEBKIT_ARCH_SUPPORTS
> depends on BR2_TOOLCHAIN_HAS_SYNC_4
> depends on BR2_PACKAGE_LIBGPG_ERROR_ARCH_SUPPORTS # libgcrypt
>
> -comment "wpewebkit needs a toolchain w/ C++, wchar, NPTL, dynamic library, gcc >= 10, host gcc >= 4.9"
> +comment "wpewebkit needs a toolchain w/ C++, wchar, NPTL, dynamic library, gcc >= 11, host gcc >= 4.9"
> depends on BR2_PACKAGE_WPEWEBKIT_ARCH_SUPPORTS
> depends on !BR2_BINFMT_FLAT
> depends on !BR2_INSTALL_LIBSTDCPP || !BR2_USE_WCHAR \
> || !BR2_TOOLCHAIN_HAS_THREADS_NPTL || BR2_STATIC_LIBS \
> - || !BR2_TOOLCHAIN_GCC_AT_LEAST_10 \
> + || !BR2_TOOLCHAIN_GCC_AT_LEAST_11 \
> || !BR2_HOST_GCC_AT_LEAST_4_9
>
> comment "wpewebkit needs an OpenGL ES w/ EGL-capable Wayland backend"
> @@ -36,13 +36,13 @@ config BR2_PACKAGE_WPEWEBKIT
> depends on BR2_HOST_GCC_AT_LEAST_4_9 # icu, host-ruby
> depends on BR2_INSTALL_LIBSTDCPP # harfbuzz, icu
> depends on BR2_TOOLCHAIN_HAS_THREADS_NPTL
> - depends on BR2_TOOLCHAIN_GCC_AT_LEAST_10
> + depends on BR2_TOOLCHAIN_GCC_AT_LEAST_11
> depends on BR2_USE_WCHAR # icu, libsoup3
> depends on BR2_PACKAGE_HAS_LIBGLES # libepoxy
> depends on BR2_PACKAGE_HAS_LIBEGL # libepoxy
> depends on BR2_PACKAGE_WPEWEBKIT_ARCH_SUPPORTS
> - select BR2_PACKAGE_CAIRO
> - select BR2_PACKAGE_CAIRO_PNG
> + select BR2_PACKAGE_CAIRO if BR2_ENDIAN = "BIG"
> + select BR2_PACKAGE_CAIRO_PNG if BR2_ENDIAN = "BIG"
> select BR2_PACKAGE_HARFBUZZ
> select BR2_PACKAGE_ICU
> select BR2_PACKAGE_JPEG
> @@ -56,6 +56,7 @@ config BR2_PACKAGE_WPEWEBKIT
> select BR2_PACKAGE_WAYLAND_PROTOCOLS
> select BR2_PACKAGE_WEBP
> select BR2_PACKAGE_WEBP_DEMUX
> + select BR2_PACKAGE_WEBP_MUX
> select BR2_PACKAGE_WPEBACKEND_FDO
> help
> WPE (Web Platform for Embedded) port of the WebKit engine,
> diff --git a/package/wpewebkit/wpewebkit.hash b/package/wpewebkit/wpewebkit.hash
> index 7a7cef15a5..332fd9deaa 100644
> --- a/package/wpewebkit/wpewebkit.hash
> +++ b/package/wpewebkit/wpewebkit.hash
> @@ -1,7 +1,7 @@
> -# From https://wpewebkit.org/releases/wpewebkit-2.44.4.tar.xz.sums
> -md5 4d91f3ff629c9356dcff866b68a4646f wpewebkit-2.44.4.tar.xz
> -sha1 ef1ea0484e9ec17a362afe9a709fe0754f05cc14 wpewebkit-2.44.4.tar.xz
> -sha256 cd6042c63a6f883cc1586e5cea94e846aaaee6a864c14988e8af4ef4f362ba3b wpewebkit-2.44.4.tar.xz
> +# From https://wpewebkit.org/releases/wpewebkit-2.48.3.tar.xz.sums
> +md5 2d3b7fa3c62886546f918fcc289cabbe wpewebkit-2.48.3.tar.xz
> +sha1 8a90b9ff8809c99c306defc1a08e50a31a09c590 wpewebkit-2.48.3.tar.xz
> +sha256 807571f07e87823b8fb79564692c9b1ef81ee62edbf51345a15bd0e7e1f2e07b wpewebkit-2.48.3.tar.xz
>
> # Hashes for license files:
> sha256 0b5d3a7cc325942567373b0ecd757d07c132e0ebd7c97bfc63f7e1a76094edb4 Source/WebCore/LICENSE-APPLE
> diff --git a/package/wpewebkit/wpewebkit.mk b/package/wpewebkit/wpewebkit.mk
> index 6a8e9c637c..796e271ecb 100644
> --- a/package/wpewebkit/wpewebkit.mk
> +++ b/package/wpewebkit/wpewebkit.mk
> @@ -5,7 +5,7 @@
> ################################################################################
>
> # The middle number is even for stable releases, odd for development ones.
> -WPEWEBKIT_VERSION = 2.44.4
> +WPEWEBKIT_VERSION = 2.48.3
> WPEWEBKIT_SITE = https://wpewebkit.org/releases
> WPEWEBKIT_SOURCE = wpewebkit-$(WPEWEBKIT_VERSION).tar.xz
> WPEWEBKIT_INSTALL_STAGING = YES
> @@ -16,7 +16,7 @@ WPEWEBKIT_LICENSE_FILES = \
> WPEWEBKIT_CPE_ID_VENDOR = wpewebkit
> WPEWEBKIT_CPE_ID_PRODUCT = wpe_webkit
> WPEWEBKIT_DEPENDENCIES = host-gperf host-python3 host-ruby host-unifdef \
> - harfbuzz cairo icu jpeg libepoxy libgcrypt libgles libsoup3 libtasn1 \
> + harfbuzz icu jpeg libepoxy libgcrypt libgles libsoup3 libtasn1 \
> libpng libxslt wayland-protocols webp wpebackend-fdo
>
> WPEWEBKIT_CMAKE_BACKEND = ninja
> @@ -30,6 +30,15 @@ WPEWEBKIT_CONF_OPTS = \
> -DENABLE_WEB_RTC=OFF \
> -DUSE_ATK=OFF
>
> +# WPE WebKit uses a bundled copy of Skia since 2.46.0 for
> +# little-endian targets, and Cairo for big-endian ones.
> +ifeq ($(BR2_ENDIAN),"BIG")
> +WPEWEBKIT_DEPENDENCIES += cairo
> +WPEWEBKIT_CONF_OPTS += -DUSE_SKIA=OFF
> +else
> +WPEWEBKIT_CONF_OPTS += -DUSE_SKIA=ON
> +endif
> +
> ifeq ($(BR2_PACKAGE_WPEWEBKIT_SANDBOX),y)
> WPEWEBKIT_CONF_OPTS += \
> -DENABLE_BUBBLEWRAP_SANDBOX=ON \
> @@ -79,6 +88,13 @@ else
> WPEWEBKIT_CONF_OPTS += -DENABLE_WEBDRIVER=OFF
> endif
>
> +ifeq ($(BR2_PACKAGE_FLITE),y)
> +WPEWEBKIT_CONF_OPTS += -DENABLE_SPEECH_SYNTHESIS=ON
> +WPEWEBKIT_DEPENDENCIES += flite
> +else
> +WPEWEBKIT_CONF_OPTS += -DENABLE_SPEECH_SYNTHESIS=OFF
> +endif
> +
> ifeq ($(BR2_PACKAGE_LCMS2),y)
> WPEWEBKIT_CONF_OPTS += -DUSE_LCMS=ON
> WPEWEBKIT_DEPENDENCIES += lcms2
> @@ -114,6 +130,13 @@ else
> WPEWEBKIT_CONF_OPTS += -DUSE_JPEGXL=OFF
> endif
>
> +ifeq ($(BR2_PACKAGE_SYSPROF),y)
> +WPEWEBKIT_CONF_OPTS += -DUSE_SYSPROF_CAPTURE=ON
> +WPEWEBKIT_DEPENDENCIES += sysprof
> +else
> +WPEWEBKIT_CONF_OPTS += -DUSE_SYSPROF_CAPTURE=OFF
> +endif
> +
> ifeq ($(BR2_INIT_SYSTEMD),y)
> WPEWEBKIT_CONF_OPTS += -DENABLE_JOURNALD_LOG=ON
> WPEWEBKIT_DEPENDENCIES += systemd
> --
> 2.50.0
>
> _______________________________________________
> buildroot mailing list
> buildroot@buildroot.org
> https://lists.buildroot.org/mailman/listinfo/buildroot
_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2025-08-07 18:24 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2025-07-08 21:50 [Buildroot] [PATCH 1/1] package/wpewebkit: security bump to version 2.48.3 Adrian Perez de Castro
2025-07-30 20:32 ` Thomas Petazzoni via buildroot
2025-08-07 18:23 ` Thomas Perale via buildroot
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox