| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
|
| |
Change-Id: Ib5f32dff2db201bc85f714b50937bad9093a92c6
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in remaining security patches from 77 and one from 78 under
active attack.
Changes:
4fb070d2eb3 [Backport] Fix for CVE-2019-13720
9f720e99462 [Backport] CVE-2019-13664
96cdfdfc635 [Backport] CVE-2019-13665
8a7e8fca86d [Backport] Security issue 946351
bf49c9261e8 [Backport] Security issue 964938
af3f9345ac4 [Backport] Security issue 990234
24a674a2ce8 [Backport] CVE-2019-13674
50dda9e6fda [Backport] CVE-2019-13675
e8fcf3a6a28 [Backport] Security issue 960354
db783cf5684 [Backport] Security issue 979373
89644ad92fe [Backport] Security issue 981459
Task-number: QTBUG-79193
Change-Id: I6ad20783c27cc3c4464923d6b0b7a629ebe51840
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changes:
c0ad7bb1842 [Backport] CVE-2019-13691
3dbf3a4c21f [Backport] CVE-2019-13692
3d89c990655 [Backport] CVE-2019-13693
cda3a507f68 [Backport] CVE-2019-13694
a6fbcf5a98d [Backport] CVE-2019-13695
635b163527b [Backport] CVE-2019-13697
fcb382834f9 [Backport] Security issue 986727 [1/2]
593acfce0ca [Backport] Security issue 986727 [2/2]
Change-Id: I275b9d3031bfbea8796507dd1669e772be446fe2
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Changes:
4055f1498d Fix building with pulseaudio 13
b0fb9f38d9f [Backport] Fix security issue 957160
70036bae331 [Backport] Fix CVE-2019-5869
e6902ac08d4 Add missing semicolon to fix build with icu 65.1
55e2f9a305c [Backport] CVE-2019-5870
a0d7bfaee7d [Backport] CVE-2019-13659
4e154694fbc [Backport] CVE-2019-13660
cdee285b9b2 [Backport] CVE-2019-5875
bf4fb03c7c4 Fix building with VS2019
5ab4355f5e9 [Backport] CVE-2019-5876
5f1b74a907d [Backport] CVE-2019-13687
d4780d1a68b [Backport] CVE-2019-13688
Change-Id: I418e5b0ddb3a0e482330ac5560a2383d5d389b6d
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Closing a popup (eg. HTML select element) might cause WebEngineView to
flash on macOS. This seems to be related to the window's NSPanel
destruction and seems to appear only if the Qt::ToolTip window flag is
set.
Fixes: QTBUG-77072
Fixes: QTBUG-78084
Change-Id: I72af67ee97304278870b312482f8f9058ecd1233
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
(cherry picked from commit 2f72083601fb6a4fcc66b6440222291fc334cb3f)
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following change:
111349f18a4 Rename Chromium bootstrap name to prevent collisions
Change-Id: I7003c35c5bad96f32b69900d507e637252a4950d
Fixes: QTBUG-77938
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|\ |
|
|/|
| |
| |
| | |
Change-Id: I4bff23ec94b76de300328a5235a35bd3e2f5da2c
|
| |
| |
| |
| |
| | |
Change-Id: I68aae7202d853802bd67bd11c41a037de93554b9
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| | |
On certificate validation error page load is just halted
meaning that no progress or load result are reported and
no default error page for certificate errors is shown.
Even though documentation states that 'By default,
an invalid certificate will be automatically rejected' and
that aligns with default implementation of certificateError
method within Page and non-deferred errors in quick View,
page or view silently stays in an intermediate state
for non-overridable errors. Fix this inconsistent behavior
by automatically rejecting certificate for every invalid case
(non-overridable error, not deferred or not implemented
overridable method).
Change-Id: Id1cee2ee5cc45bdcb5f262a6c99c84274e6ca374
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
| |
| |
| |
| |
| |
| |
| |
| |
| | |
Also remove confusion inside CertificateErrorController constructor
and overridable method by matching documentation for
AllowCertificateError method of ContentBrowserClient api.
Change-Id: I7e10ef71a4429dcf5acc4b714a8a45f67a2ec684
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
|/
|
|
|
|
| |
Change-Id: I6415ccd9486433d6c449ea0d18b65f354e4bcd42
Reviewed-by: Leena Miettinen <riitta-leena.miettinen@qt.io>
Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
This pulls in the following changes:
a90e18d2d30 [Backport] Security bug 983938
0699308555b [Backport] Security bug 976050
852040586ec [Backport] Security bug 983850
a9f2f201ec6 [Backport] Security bug 973893
4bc95ce8486 [Backport] Security bug 958717
456aa9409ea [Backport] CVE-2019-5856
8ad3193acea [Backport] CVE-2019-5852
c1a19035306 [Backport] CVE-2019-5854
de78692c035 [Backport] CVE-2019-5855
ac7d5d7df5a [Backport] CVE-2019-5851
81417ff67b7 [Backport] Critical security issue 977057
ffbd836a7c8 [Backport] CVE-2019-5857
6693cf14341 [Backport] CVE-2019-5860
134a78ac91b [Backport] Security bug 981602
e981e2326a8 [Backport] CVE-2019-5865
b814b7b7d71 [Backport] CVE-2019-5862 1/4
dbb531a8212 [Backport] CVE-2019-5862 2/4
8502a1f7be2 [Backport] CVE-2019-5862 3/4
b71efe4a834 [Backport] CVE-2019-5862 4/4
d377f182ec3 [Backport] CVE-2019-5861 1/2
e13a9847f21 [Backport] CVE-2019-5861 2/2
4d84676d74a [Backport] Security bug 974627
d0d509db8c7 [Backport] Security bug 961674
691d632f7af [Backport] Security bug 960785
bdb7acb5afd [Backport] Security bug 964002
6e2562dd1ef Fix build with recent linux kernel.
7a779d01607 Fix skcms build with avx
Fixes: QTBUG-77402
Change-Id: Ib9fe63c806149c299714bb1f76e4adf2877389d5
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* f7765bc8 [Backport] Security bug 959518
* 3b775d71 [Backport] CVE-2019-5842
* 05e857bc [Backport] Security bug 934161
* a57309fa [Backport] Security bug 950005
* b0859392 [Backport] Security bug 948172
Task-number: QTBUG-76207
Change-Id: I54fb67a97564b24f34c58b93b048b347f01dc306
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* 7a9ec163 [Backport] Security bug 962083
* 7242b69e [Backport] Security bug 948944
* a0218a0c [Backport] Security bug 952849
* 3d7891fd [Backport] Security bug 956625
* 7b993cc6 [Backport] Security bug 958457
Task-number: QTBUG-76207
Change-Id: I5753e64d396098a481da8d06a47560e4ba46bfb1
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* c5c158eb [Backport] Security bug 958689
* a33c416a [Backport] Security bug 959193 1/2
* e339bd3a [Backport] Security bug 959193 2/2
* 44d5ec60 [Backport] Security bug 961597
* 33647d6f [Backport] Security bug 939644
* dd0c0a92 [Backport] Security bug 948228
Task-number: QTBUG-76207
Change-Id: I4ba94d0ee4fac31ea36688dcfa5d12905c9ec5f2
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
| |
Also set the hiding delay to a reasonable time.
Fixes: QTBUG-76122
Change-Id: Id971edbd9fb87cc96df53f73f2e7c61bde5855ef
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
| |
Create one HostResolver per profile to avoid use-after-free in
NetworkHintsMessageFilter (5.12) or NetworkContext (5.13).
Fixes: QTBUG-75884
Change-Id: Ic1a2973b4fb0aed6bd0fa1bb9a1d7c3012c30fe0
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
Pulls in following changes:
* 0a0221c [Backport] CVE-2019-5839
* 3c46be6 [Backport] CVE-2019-5837 4/4
* c23cb87 [Backport] CVE-2019-5837 3/4
* f123d13 [Backport] CVE-2019-5837 2/4
* 10d98e6 [Backport] CVE-2019-5837 1/4
* 8ffc041 [Backport] CVE-2019-5832
* a97fa0a [Backport] CVE-2019-5831
* ec89d97 [Backport] CVE-2019-5829
* 2323dc9 Fix segfaults with arm 32bit on metrics
* 6f3c15d Bump V8 patch level
* e8eec84 Fix changing should_override_user_agent_in_new_tabs_
Task-number: QTBUG-76207
Change-Id: Ifc6b76ae4b253a7ea385398bfdc1bc0fcf699de7
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
| |
Task-number: QTBUG-76489
Change-Id: If489ebed802d273b0015bc6cfc190d948c4896e3
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
|
|
|
|
|
|
|
|
|
| |
Pass WebContentsAdapter pointer to lambda via QWeakPointer in case the adapter
has been deleted already.
Fixes: QTBUG-76958
Change-Id: I1962ba3dd1794a27e7013a2ad1b729fe7a08c079
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
|
| |
Not updating lastReceivedFindReply caused next findText call after
StopFinding to trigger redundant callback call on checking stale query.
Fixes: QTBUG-77029
Change-Id: Iad4b71364ecb3ec3db3096b739e77620d12731f9
Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Load of real website is not really needed, simple html is enough to
verify that on load no findText callback is executed from previous
query. Ensure callback is not called with timeout and additional check
inside it to verify that it's not called twise.
Task-number: QTBUG-75541
Change-Id: Iebf207e40d8f4d4f680b46bb0f32480edd72f36d
Reviewed-by: Jüri Valdmann <juri.valdmann@qt.io>
Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
|
|
|
|
|
| |
Change-Id: Ic8eb671409794799bcdad4760dc58e84de3b109f
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
| |
Work is done asynchronously by chromium SpellChecker object. Therefore
there is no guarantee that on ShowContextMenu event for WebContents there
will be a result with misspelled word.
Change-Id: I2978ed99e4c14f0a7d9086853c5218f82ea1ab60
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
| |
QRC files can be optimized with CONFIG+=qtquickcompiler
and removed, in that case 'size' of
resource is zero.
Do not process 'empty' resources. Throw warning.
Fixes: QTBUG-76403
Change-Id: If21ff698e7985f82e6456500d4d24cb366cff012
Reviewed-by: Kai Koehne <kai.koehne@qt.io>
|
|
|
|
|
|
|
|
| |
Avoids asking customers to edit source files or add CONFIG to qmake on
the command line to enable full debug information.
Change-Id: Id58388565df88442e74e02687eb3189136e998f3
Reviewed-by: Alexandru Croitor <alexandru.croitor@qt.io>
|
|
|
|
|
|
|
|
|
| |
This will set the cc_wrapper to ccache when running GN, which in turn
will prefix all compiler calls with ccache. This allows a nice way of
using ccache and icecream on macOS.
Change-Id: I19ca1261aa8ebc4aaf7f8c34b3cb363baa29de01
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
| |
Visual Studio 2017 version 15.8 or later is now required.
Task-number: QTBUG-76606
Change-Id: Ib115336acc341d799c7ff0f08e89abc56bc6c6d9
Reviewed-by: Kai Koehne <kai.koehne@qt.io>
|
|
|
|
|
|
| |
Fixes: QTBUG-77011
Change-Id: I0136b360c74970b912124f6f308f598c80eceba3
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
|
| |
Fixes flaky m_view->hasSelection() assertion.
Change-Id: Idba17916c38ac76b8002e30bab08d7f9e1064b2a
Reviewed-by: Kirill Burtsev <kirill.burtsev@qt.io>
Reviewed-by: Peter Varga <pvarga@inf.u-szeged.hu>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Not fully preserving properties causes event to not be considered
synthesized by system and be forwarded into chromium. Receiving one
single press event and no release event confuses input event_handler
and triggers infinite loop and renderer process crash for pages with
multiple nested iframes.
Fixes: QTBUG-62106
Change-Id: Iabb8bff78fc3475923b4aa3209b720453a5b6ce5
Reviewed-by: Alexandru Croitor <alexandru.croitor@qt.io>
|
|
|
|
|
|
|
|
| |
Remove from the blacklist some tests which, according to Grafana, have had no
failures in the last 90 days on 5.12 branch.
Change-Id: I3f174c82b5644d74b70fffa3856ae79f8c9893f8
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
|
| |
Flaky on Windows 10.
Change-Id: Idaf73ccaf29831010e84397ae722dbe54a2de9bb
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
|
|
| |
Fixes: QTBUG-76828
Change-Id: I43eae3c04a23abe118f51c69742772ddb38646f0
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|
|
|
| |
Change-Id: I1911b4094df4622a67eaeb9c638efc20cbf1a8b3
|
|
|
|
|
|
|
|
|
|
|
|
| |
Chromium forgets to set ShouldOverrideUserAgentInNewTabs(), so we need
to manually set the override.
Fixes: QTBUG-76249
Change-Id: Id240ee525dacec3cd8389aca058a61d3af62b00a
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
|
|
|
| |
We forward the real events earlier, anything coming in at QQuickItem
level is synthetic.
Fixes: QTBUG-76268
Change-Id: I067f8f94cc5e07bb0cd500b5ae9b9d6bbe66310b
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
| |
If we let tablet events pass through without handling it, it will come
back to haunt us as a mouse event.
Fixes: QTBUG-76347
Change-Id: I93297f543620350db0329fe993d18a04e33c7d18
Reviewed-by: Michal Klocek <michal.klocek@qt.io>
|
|
|
|
|
|
|
|
|
| |
Add all Chromium linker flags by default and explicitly
blacklist some of them.
Change-Id: Icb461838f71c8511fe5730d4601eb20bc2aa135c
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
|\ |
|
| |\
| | |
| | |
| | | |
Change-Id: I243662eee18709478038e918ff6b16aabd1f0662
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Task-number: QTBUG-75497
Change-Id: Iedc69eacd67766b14474d053d68251ab93af3472
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* bd792030 [Backport] Fix for security issue 951322
* b82fa580 [Backport] Fix for CVE-2019-5827
* 77de851f [Backport] Fix for CVE-2019-5825
* 3b283bc5 [Backport] Fix for CVE-2019-5826
* 546e8a27 [Backport] Fix for CVE-2019-5824
* 1660b7b1 [Backport] Fix for security issue 894933
* 048b1aee [Backport] Fix for security issue 937663
* bf0e274c [Backport] Fix for security issue 908669
* b8f953da [Backport] Fix for security issue 931949 (2/2)
* 422411de [Backport] Fix for security issue 931949 (1/2)
* f659a4d7 [Backport] Fix for security issue 939316
* f3378a1c [Backport] Fix for security issue 940205
* af9444ec [Backport] Fix for security issue 949015
* 8f58d94e [Backport] Fix for CVE-2019-5823
Task-number: QTBUG-75497
Change-Id: Id4330b3d08a444dcd95d072905dac6da212fd93b
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
* 41a5b412 [Backport] Fix for CVE-2019-5822
* 233802ed [Backport] Fix for CVE-2019-5821
* c9ade8f0 [Backport] Fix for CVE-2019-5820
* c2dbb31a [Backport] Fix for CVE-2019-5819
* 7a8ae930 [Backport] Fix for CVE-2019-5818
* b5436c7a [Backport] Fix for CVE-2019-5815
* d3584684 [Backport] Fix for CVE-2019-5814
* 891c0a91 [Backport] Fix for CVE-2019-5808
* 23e798e8 [Backport] Fix for CVE-2019-5806
* 4d6500c2 [Backport] Fix for CVE-2019-5805
* 7b6a459e Try different versions when creating a CoreProfile context on macOS
Task-number: QTBUG-75497
Task-number: QTBUG-73799
Change-Id: Ica812747467fc02a142f83d8638ec995589f1e5a
Reviewed-by: Michael Brüning <michael.bruning@qt.io>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
The Chromium sources contain assembly code that causes the library to
default to executable stack (the linker requires that *all* .o files
have a .note.GNU-stack section in order to default to
non-executable). So add the -z noexecstack linker flag to change the
setting.
The other libraries are not affected.
Change-Id: I0bf9ebeb5aa34d19be30fffd15a3d3063dea2005
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
| | |
| | |
| | |
| | |
| | | |
Change-Id: Ie79515e5bcae490acf316278aabaeadefc6bd707
Reviewed-by: Leena Miettinen <riitta-leena.miettinen@qt.io>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
Support --auth-server-whitelist
Read it and pass it to an HttpAuthPreference.
Change-Id: I37c23f4d777ff11b2c0480fa9c28ea6fbe029737
Task-number: QTBUG-75539
Task-number: QTBUG-57729
Reviewed-by: Kai Koehne <kai.koehne@qt.io>
(cherry picked from commit b81d7095825cdd4f486e83894c801e596f248936)
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | |
| | | |
This pulls in the following changes:
11c5d00ab75 Use MessagePumpMac for desktop capture thread on macOS
Fixes: QTBUG-76045
Change-Id: I9fe920afeb39b34b837d9a5603c79e128942922d
Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>
|