aboutsummaryrefslogtreecommitdiff
path: root/lang/node/patches
Commit message (Collapse)AuthorAge
* node: bump to v20.11.0Hirokazu MORIKAWA2024-01-13
| | | | | | | | | | | | | | | | | | | | | Notable Changes * crypto: update root certificates to NSS 3.95 (Node.js GitHub Bot) * doc: add MrJithil to collaborators (Jithil P Ponnan) * doc: add Ethan-Arrowood as a collaborator (Ethan Arrowood) * (SEMVER-MINOR) esm: add import.meta.dirname and import.meta.filename (James Sumners) * fs: add c++ fast path for writeFileSync utf8 (CanadaHonk) * (SEMVER-MINOR) module: remove useCustomLoadersIfPresent flag (Chengzhong Wu) * (SEMVER-MINOR) module: bootstrap module loaders in shadow realm (Chengzhong Wu) * (SEMVER-MINOR) src: add --disable-warning option (Ethan Arrowood) * [SEMVER-MINOR) src: create per isolate proxy env template (Chengzhong Wu) * (SEMVER-MINOR) src: make process binding data weak (Chengzhong Wu) * stream: use Array for Readable buffer (Robert Nagy) * stream: optimize creation (Robert Nagy) * (SEMVER-MINOR) test_runner: adds built in lcov reporter (Phil Nash) * (SEMVER-MINOR) test_runner: add Date to the supported mock APIs (Lucas Santos) * (SEMVER-MINOR) test_runner, cli: add --test-timeout flag (Shubham Pandey) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: upgrade to v20.10.0Hirokazu MORIKAWA2023-11-30
| | | | | | | | | | | Notable Changes * --experimental-default-type flag to flip module defaults * Detect ESM syntax in ambiguous JavaScript * New flush option in file system functions * Experimental WebSocket client * vm: fix V8 compilation cache support for vm.Script Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: upgrade to v20.9.0Hirokazu MORIKAWA2023-11-02
| | | | | | | | | node.js version 20.x is now active LTS. mipsel (pistachio) is no longer supported. Due to build difficulties, libuv shared libraries are not used. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v18.18.0Hirokazu MORIKAWA2023-09-21
| | | | | | Update to v18.18.0 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v18.17.0Hirokazu MORIKAWA2023-07-23
| | | | | | | | | | | Notable Changes: *Ada 2.0 Node.js v18.17.0 comes with the latest version of the URL parser, Ada. This update brings significant performance improvements to URL parsing, including enhancements to the url.domainToASCII and url.domainToUnicode functions in node:url. *Web Crypto API Web Crypto API functions' arguments are now coerced and validated as per their WebIDL definitions like in other Web Crypto API implementations. This further improves interoperability with other implementations of Web Crypto API. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: June 20 2023 Security ReleasesHirokazu MORIKAWA2023-06-21
| | | | | | | | | | | | | | | | | | | | | | Update to v18.16.1 The following CVEs are fixed in this release: * CVE-2023-30581: mainModule.__proto__ Bypass Experimental Policy Mechanism (High) * CVE-2023-30585: Privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process (Medium) * CVE-2023-30588: Process interuption due to invalid Public Key information in x509 certificates (Medium) * CVE-2023-30589: HTTP Request Smuggling via Empty headers separated by CR (Medium) * CVE-2023-30590: DiffieHellman does not generate keys after setting a private key (Medium) * OpenSSL Security Releases (Depends on shared library provided by OpenWrt) * OpenSSL security advisory 28th March. * OpenSSL security advisory 20th April. * OpenSSL security advisory 30th May * c-ares vulnerabilities: (Depends on shared library provided by OpenWrt) * GHSA-9g78-jv2r-p7vc * GHSA-8r8p-23f3-64c2 * GHSA-54xr-f67r-4pc4 * GHSA-x6mf-cxr9-8q6v Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v18.16.0Hirokazu MORIKAWA2023-04-14
| | | | | | | | | | | | Description: Update to v18.16.0 Fixed a bug when selecting arm-fpu for vfpv3-d16. Notable changes Add initial support for single executable applications Replace url parser with Ada Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v18.15.0Hirokazu MORIKAWA2023-03-21
| | | | | | | Update to v18.15.0 Fixed bug using system-icu Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v18.14.2Hirokazu MORIKAWA2023-02-27
| | | | | | | Update to v18.14.2 Support for OpenSSL v3.0.x Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v16.19.1Hirokazu MORIKAWA2023-02-17
| | | | | | | | | | | | | | | Thursday February 16 2023 Security Releases Notable Changes The following CVEs are fixed in this release: * CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High) * CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library (Medium) * CVE-2023-23936: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium) * CVE-2023-24807: Regular Expression Denial of Service in Headers in Node.js fetch API (Low) * CVE-2023-23920: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low) More detailed information on each of the vulnerabilities can be found in February 2023 Security Releases blog post. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v16.19.0Hirokazu MORIKAWA2022-12-22
| | | | | | | | | Notable Changes *OpenSSL 1.1.1s *Root certificates updated to NSS 3.85 *Time zone update to 2022f Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v16.18.0Hirokazu MORIKAWA2022-10-23
| | | | | | Update to v16.18.0 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v16.17.0Hirokazu MORIKAWA2022-08-23
| | | | | | | | | | | | | | | | Notable Changes: Experimental command-line argument parser API Experimental ESM Loader Hooks API Experimental test runner Improved interoperability of the Web Crypto API Dependency updates: Updated Corepack to 0.12.1 Updated ICU to 71.1 Updated npm to 8.15.0 Updated Undici to 5.8.0 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v16.15.1Hirokazu MORIKAWA2022-06-09
| | | | | | | Upgrade npm to 8.11.0 Suppressed unnecessary builds. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v16.15.0Hirokazu MORIKAWA2022-05-31
| | | | | | | | Description: Update from v16.15.0 Changed handling of host's npm problems due to npm updates. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: Major update from v14 to v16Hirokazu MORIKAWA2022-04-16
| | | | | | | | This update also changes npm from v6 to v8. This change also requires node module packages to be modified. Each package will be updated later. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to 14.18.2Hirokazu MORIKAWA2021-12-10
| | | | | | | Update to v14.18.2 Remove unneeded c-ares patches Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to 14.18.1 / October 12th 2021 Security ReleasesHirokazu MORIKAWA2021-10-14
| | | | | | | | October 12th 2021 Security Releases: HTTP Request Smuggling due to spaced in headers (Medium)(CVE-2021-22959) HTTP Request Smuggling when parsing the body (Medium)(CVE-2021-22960) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to 14.17.4Hirokazu MORIKAWA2021-07-31
| | | | | | | | | | July 2021 Security Releases: Use after free on close http2 on stream canceling (High) (CVE-2021-22930) Node.js is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior. You can read more about it in https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22930 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to 14.17.1Hirokazu MORIKAWA2021-06-18
| | | | | | | | Notable Changes: deps: update ICU to 69.1 (Michaƫl Zasso) errors: align source-map stacks with spec (Benjamin Coe) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to v14.17.0Hirokazu MORIKAWA2021-05-13
| | | | | | | | | Notable Changes: Diagnostics channel (experimental module) UUID support in the crypto module Experimental support for AbortController and AbortSignal Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: Resolve ICU conflictHirokazu MORIKAWA2021-04-21
| | | | | | | | Resolve conflicts between OpenWrt's ICU package and the ICU shipped with node.js. https://github.com/openwrt/packages/issues/15437 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v14.15.3Hirokazu MORIKAWA2020-12-24
| | | | | | | | | | | Maintainer: me @ianchi Compile tested: head r15324-920b692, aarch64, x86_64 Run tested: (qemu 5.2.0) aarch64, x86_64 Description: Update to v14.15.3 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v14.15.1Hirokazu MORIKAWA2020-12-10
| | | | | | Update to v14.15.1 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v12.20.0Hirokazu MORIKAWA2020-11-27
| | | | | | | Update to v12.20.0 Take over maintainership from John Crispin Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v12.19.0Hirokazu MORIKAWA2020-11-08
| | | | | | | Update to v12.19.0 Fixes for the removal of MIPS FPU emulator support. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v12.18.4Hirokazu MORIKAWA2020-09-16
| | | | | | | | | | Vulnerabilities fixed: * CVE-2020-8201: HTTP Request Smuggling due to CR-to-Hyphen conversion (High). * CVE-2020-8252: fs.realpath.native on may cause buffer overflow (Medium). Imported patches from the debian package. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v12.18.3Hirokazu MORIKAWA2020-07-30
| | | | | | | | | | | | upgrade npm to 6.14.6 update openssl to 1.1.1g Vulnerabilities fixed: * CVE-2020-8172: TLS session reuse can lead to host certificate verification bypass (High). * CVE-2020-11080: HTTP/2 Large Settings Frame DoS (Low). * CVE-2020-8174: napi_get_value_string_*() allows various kinds of memory corruption (High). Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: Change icu version specificationHirokazu MORIKAWA2020-03-24
| | | | | | modify host icu library path Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v12.16.1Hirokazu MORIKAWA2020-02-21
| | | | | | | | Add some new APIs V8 was updated to 7.8.279.23. This includes performance improvements to object destructuring, RegExp match failures and WebAssembly startup time. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to v12.15.0Hirokazu MORIKAWA2020-02-06
| | | | | | | | Update to v12.15.0 Support Python3 : https://github.com/openwrt/packages/issues/8893 Preparing to deprecate nosnapshot builds. Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: fix host build error on macOSHirokazu MORIKAWA2019-08-01
| | | | | | | | | | fix host build error on macOS reference: https://github.com/openwrt/packages/issues/9616 Related: https://github.com/openwrt/packages/issues/7171 (This correspondence is necessary to build with macOS.) Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: add mips64 supportHirokazu MORIKAWA2019-05-10
| | | | | | | | see: https://github.com/openwrt/packages/pull/8796 And remove uclibc depends Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: update to 8.16.0Hirokazu MORIKAWA2019-04-19
| | | | | | Update to v8.16.0 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: support ppc32 muslHirokazu MORIKAWA2019-04-15
| | | | | | | support powerpc32 musl https://downloads.openwrt.org/snapshots/faillogs/powerpc_464fp/packages/node/compile.txt Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: Update to 8.14.1Rosen Penev2018-12-24
| | | | | | | | Mainly CVE fixes. Added a patch to fix compilation without deprecated OpenSSL APIs. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* node: Update to 8.12.0Rosen Penev2018-11-14
| | | | | | | | Fixes several CVEs. Added PKG_CPE_ID for proper CVE tracking. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* node: bump to 8.11.3Hirokazu MORIKAWA2018-07-03
| | | | | | | Update to v8.11.3 Several security fixes: CVE-2018-7167, CVE-2018-7161, CVE-2018-1000168,CVE-2018-7158, CVE-2018-7159, CVE-2018-7160 Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: fix host build failHirokazu MORIKAWA2018-05-16
| | | | | | | | | | modify patch. https://github.com/nodejs/node/pull/19196 made not to use libressl headers fix to include path not to use "host/include" Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: bump to 8.10.0Marko Ratkaj2018-03-10
| | | | | | | | | | | | | | Changes: Version bump to 8.10.0 Refreshed patches Added npx install Added 004-node_crypto-remove-std.patch Additional patch fixes node_cypto compile failure: ./src/node_crypto.cc:5626:32: error: expected unqualified-id before '(' Signed-off-by: Arturo Rinaldi <arty.net2@gmail.com> Signed-off-by: Marko Ratkaj <marko.ratkaj@sartura.hr>
* node: delete unnecessary TAB characters at the end of a lineHirokazu MORIKAWA2017-09-11
| | | | Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* node: fix path patchAdrian Panella2017-08-17
| | | | Signed-off-by: Adrian Panella <ianchi74@outlook.com>
* node,node-*: node update to v4.4.5 and Enhance CPU-arch variant.Hirokazu MORIKAWA2016-05-27
|
* node: fix undefined behaviour leading to broken code with GCC 6Matthias Schiffer2016-05-09
| | | | | | | | Fixes segfaults occuring in the node host build when GCC 6 is used. Backport of upstream commit 96198d5bc710a4e3ca49eeeb3b3fa7b8cb61547d. Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
* node: update to v4.4.4Matthias Schiffer2016-05-09
| | | | | | While we're at it, also enable parallel builds. Signed-off-by: Matthias Schiffer <mschiffer@universe-factory.net>
* nodejs: add 0.12 version of nodeJohn Crispin2015-10-19
add node-js 0.12 and a few gyp bindings Signed-off-by: John Crispin <blogic@openwrt.org>
Powered by cgit, Themed by Ted Yin.