From owner-svn-ports-head@freebsd.org  Mon Jan 27 22:28:45 2020
Return-Path: <owner-svn-ports-head@freebsd.org>
Delivered-To: svn-ports-head@mailman.nyi.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1])
 by mailman.nyi.freebsd.org (Postfix) with ESMTP id 99F37230ED3;
 Mon, 27 Jan 2020 22:28:45 +0000 (UTC)
 (envelope-from jbeich@freebsd.org)
Received: from freefall.freebsd.org (freefall.freebsd.org
 [IPv6:2610:1c1:1:6074::16:84])
 (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
 server-signature RSA-PSS (4096 bits)
 client-signature RSA-PSS (4096 bits) client-digest SHA256)
 (Client CN "freefall.freebsd.org",
 Issuer "Let's Encrypt Authority X3" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 4864Cd3ZTXz4HQv;
 Mon, 27 Jan 2020 22:28:45 +0000 (UTC)
 (envelope-from jbeich@freebsd.org)
Received: by freefall.freebsd.org (Postfix, from userid 1354)
 id 6BA9A8EAC; Mon, 27 Jan 2020 22:28:45 +0000 (UTC)
From: Jan Beich <jbeich@FreeBSD.org>
To: Matthias Andree <matthias.andree@tu-dortmund.de>
Cc: Renato Botelho <garga@FreeBSD.org>,
 ports-committers@freebsd.org, svn-ports-all@freebsd.org,
 svn-ports-head@freebsd.org, Glen Barber <gjb@FreeBSD.org>
Subject: Re: svn commit: r524147 - in head/security: ca_root_nss nss
References: <202001260020.00Q0K1cG087750@repo.freebsd.org>
 <35c29ce8-67ab-61ea-b895-f70d2b6044fa@FreeBSD.org>
 <a768-bvhm-wny@FreeBSD.org>
 <ebed3539-1691-db15-553a-be0e107cd5fc@tu-dortmund.de>
Date: Mon, 27 Jan 2020 23:28:42 +0100
Message-ID: <1rrk-jzz9-wny@FreeBSD.org>
MIME-Version: 1.0
Content-Type: text/plain
X-BeenThere: svn-ports-head@freebsd.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SVN commit messages for the ports tree for head
 <svn-ports-head.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/svn-ports-head>, 
 <mailto:svn-ports-head-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-ports-head/>
List-Post: <mailto:svn-ports-head@freebsd.org>
List-Help: <mailto:svn-ports-head-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/svn-ports-head>,
 <mailto:svn-ports-head-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 27 Jan 2020 22:28:45 -0000

Matthias Andree <matthias.andree@tu-dortmund.de> writes:

> Am 27.01.20 um 19:32 schrieb Jan Beich:
>
>> Renato Botelho <garga@FreeBSD.org> writes:
>> 
>>> On 25/01/20 21:20, Jan Beich wrote:
>>>
>>>> Author: jbeich
>>>> Date: Sun Jan 26 00:20:01 2020
>>>> New Revision: 524147
>>>> URL: https://svnweb.freebsd.org/changeset/ports/524147
>>>> Log:
>>>>    security/nss: update to 3.49.2
>>>>       Changes:
>>>> https://developer.mozilla.org/docs/Mozilla/Projects/NSS/NSS_3.49.2_release_notes
>>>>    Changes:	https://hg.mozilla.org/projects/nss/shortlog/NSS_3_49_2_RTM
>>>>    ABI:		https://abi-laboratory.pro/tracker/timeline/nss/
>>>>    Reported by:	Repology
>>>
>>> After this change it started failing to build on 11.3-STABLE armv6
>>> with the following error:
>> [...]
>>> In file included from gcm-arm32-neon.c:16:
>>> /nxb-bin/usr/lib/clang/8.0.1/include/arm_neon.h:28:2: error: "NEON
>>> support not enabled"
>>> #error "NEON support not enabled"
>>>  ^
>>> 1 error generated.
>> 
>> Needs to be reported upstream. Only Tier1 architectures are critical
>> enough to delay or block updates.
>> 
>
> Jan, the upgrade isn't marked security, why the rush?

Agree but only after checking upstream commits. Mozilla often delays
advisories for bundled libraries under the veil of "responsible disclosure"
to align with Firefox releases.

Note, Firefox 73 which should have RC1 on 2020-02-04 (1 week from now)
will require NSS 3.49.2.