[Pkg-chromium-maint] Bug#769836: closed by Michael Gilbert <mgilbert at debian.org> (Bug#769836: fixed in chromium-browser 39.0.2171.71-1)

roucaries bastien roucaries.bastien+debian at gmail.com
Mon Dec 1 16:03:19 UTC 2014 

control: reopen -1


On Mon, Dec 1, 2014 at 10:42 AM, Debian Bug Tracking System
<owner at bugs.debian.org> wrote:
> This is an automatic notification regarding your Bug report
> which was filed against the chromium-browser package:

Hi,

I am sorry but it work on sse but not on i387 is the sign of huge
problem in the floating point computation.

Please see with vincent lefevre what it means.

Your computation are totally screwed, and depend on the phase of the
moon of the rounding engine.

Compiling only under sse does not fix this kind of problem it paper only over.

I am see that upstream do previously. It is doing manually that
-ffloat-store do.

Note that i586 is the supported architecture for jessie.

Bastien


>
> #769836: [chromium-browser] Please use -fexcess-precision=standard or -ffloat-store instead of enabling sse2
>
> It has been closed by Michael Gilbert <mgilbert at debian.org>.
>
> Their explanation is attached below along with your original report.
> If this explanation is unsatisfactory and you have not received a
> better one in a separate message then please contact Michael Gilbert <mgilbert at debian.org> by
> replying to this email.
>
>
> --
> 769836: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=769836
> Debian Bug Tracking System
> Contact owner at bugs.debian.org with problems
>
>
> ---------- Forwarded message ----------
> From: Michael Gilbert <mgilbert at debian.org>
> To: 769836-close at bugs.debian.org
> Cc:
> Date: Mon, 01 Dec 2014 09:39:20 +0000
> Subject: Bug#769836: fixed in chromium-browser 39.0.2171.71-1
> Source: chromium-browser
> Source-Version: 39.0.2171.71-1
>
> We believe that the bug you reported is fixed in the latest version of
> chromium-browser, which is due to be installed in the Debian FTP archive.
>
> A summary of the changes between this version and the previous one is
> attached.
>
> Thank you for reporting the bug, which will now be closed.  If you
> have further comments please address them to 769836 at bugs.debian.org,
> and the maintainer will reopen the bug report if appropriate.
>
> Debian distribution maintenance software
> pp.
> Michael Gilbert <mgilbert at debian.org> (supplier of updated chromium-browser package)
>
> (This message was generated automatically at their request; if you
> believe that there is a problem with it please contact the archive
> administrators by mailing ftpmaster at ftp-master.debian.org)
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA512
>
> Format: 1.8
> Date: Mon, 01 Dec 2014 01:13:44 +0000
> Source: chromium-browser
> Binary: chromium chromium-dbg chromium-l10n chromium-inspector chromedriver
> Architecture: source i386 all
> Version: 39.0.2171.71-1
> Distribution: unstable
> Urgency: medium
> Maintainer: Debian Chromium Maintainers <pkg-chromium-maint at lists.alioth.debian.org>
> Changed-By: Michael Gilbert <mgilbert at debian.org>
> Description:
>  chromedriver - web browser - WebDriver support
>  chromium   - web browser
>  chromium-dbg - web browser - debugging symbols
>  chromium-inspector - web browser - page inspection support
>  chromium-l10n - web browser - language packs
> Closes: 748867 766420 767697 769836 771640
> Changes:
>  chromium-browser (39.0.2171.71-1) unstable; urgency=medium
>  .
>    * New upstream stable release:
>      - CVE-2014-3566: SSLv3 support is now disabled by default.
>      - CVE-2014-7899: Address bar spoofing. Credit to Eli Grey.
>      - CVE-2014-7900: Use-after-free in pdfium. Credit to Atte Kettunen.
>      - CVE-2014-7901: Integer overflow in pdfium. Credit to cloudfuzzer.
>      - CVE-2014-7902: Use-after-free in pdfium. Credit to cloudfuzzer.
>      - CVE-2014-7903: Buffer overflow in pdfium. Credit to cloudfuzzer.
>      - CVE-2014-7904: Buffer overflow in Skia. Credit to Atte Kettunen.
>      - CVE-2014-7905: Flaw allowing navigation to intents that do not have the
>        BROWSABLE category. Credit to WangTao(neobyte).
>      - CVE-2014-7906: Use-after-free in pepper plugins. Credit to Chen Zhang.
>      - CVE-2014-0574: Double-free in Flash. Credit to biloulehibou.
>      - CVE-2014-7907: Use-after-free in blink. Credit to Chen Zhang.
>      - CVE-2014-7908: Integer overflow in media. Credit to Christoph Diehl.
>      - CVE-2014-7909: Uninitialized memory read in Skia. Credit to miaubiz.
>    * Display info about upstream ending support for non-sse2 (closes: #769836).
>    * Remove non-free RFCs from the upstream tarball (closes: #771640).
>    * Include a conf file for Google's API keys (closes: #748867).
>    * Handle dangling chromium icon directory (closes: #766420).
>    * Install icons into the correct path (closes: #767697).
> Checksums-Sha1:
>  be6d6105502cfae932f42522716295ce39c09904 4032 chromium-browser_39.0.2171.71-1.dsc
>  4d1ca0f62cf15d21e7116e181bcf1b4ca7d39da1 273337552 chromium-browser_39.0.2171.71.orig.tar.xz
>  f9304c8bf7ed6f5ea3eddc6804532a2274733be8 177604 chromium-browser_39.0.2171.71-1.debian.tar.xz
>  06b99a874e5d868dbb28d4f4095442279cae6019 37053310 chromium_39.0.2171.71-1_i386.deb
>  1adc89b125b1969f69f63eeec6df56ccef31dcf0 592742752 chromium-dbg_39.0.2171.71-1_i386.deb
>  03a832115f617a1f91672fab4c7113419e044f80 2828718 chromium-l10n_39.0.2171.71-1_all.deb
>  f22746c69916a2be0158c91dc4a2f663c105a9c7 827050 chromium-inspector_39.0.2171.71-1_all.deb
>  a1df008399f00e42156dce9d3fd65360c4f7ba8e 2079076 chromedriver_39.0.2171.71-1_i386.deb
> Checksums-Sha256:
>  1c31742923cbc3257dc5d81181abfc30eec28960c7eeca8da843bd8ae18f5c5a 4032 chromium-browser_39.0.2171.71-1.dsc
>  b1f4e1c384405f7d93935e30dc6344ea63fcc06f980bdcf4a3c77590ea847a6b 273337552 chromium-browser_39.0.2171.71.orig.tar.xz
>  3f996bde87ae7b868dbcc9a408951c972af705d884ed88c9967aed99a3b7b600 177604 chromium-browser_39.0.2171.71-1.debian.tar.xz
>  4fd90a74fff3e8c889eeb1367d9818f5270b41078b992d890873b02cfa6844b6 37053310 chromium_39.0.2171.71-1_i386.deb
>  6d30592a4efdfee721f0596234e4bc207a17a7276e6024a436f99b8be8214999 592742752 chromium-dbg_39.0.2171.71-1_i386.deb
>  f7b30632468f6ff604585dff44ed2a1fd3752bb287afae85c71cb8a2454b8dd3 2828718 chromium-l10n_39.0.2171.71-1_all.deb
>  6a92574388372947a6e1e9723cf6e35ac03333f4df9be2a7b66047486c9b0ce4 827050 chromium-inspector_39.0.2171.71-1_all.deb
>  2ae25f2998eeccf33b4c5086247396470561543a81d33d14a4035f06c72a29d8 2079076 chromedriver_39.0.2171.71-1_i386.deb
> Files:
>  2e1e628a5ffeed664daf8130fa11deac 4032 web optional chromium-browser_39.0.2171.71-1.dsc
>  82f26e83aed207c98adf4fee5effe961 273337552 web optional chromium-browser_39.0.2171.71.orig.tar.xz
>  ae3c01b7390ea2ce67cf057c54825ed7 177604 web optional chromium-browser_39.0.2171.71-1.debian.tar.xz
>  ca3261d01ecd53a78f0bca522db6a98d 37053310 web optional chromium_39.0.2171.71-1_i386.deb
>  5fd69c3c530cac04fe9a6f7590fd36ed 592742752 debug extra chromium-dbg_39.0.2171.71-1_i386.deb
>  1af88ea5a6ceb4351f7d8930baf0d9fa 2828718 localization optional chromium-l10n_39.0.2171.71-1_all.deb
>  2e665fc736f0c3e43870d7e806a059df 827050 web optional chromium-inspector_39.0.2171.71-1_all.deb
>  064d309bcb85299a9a1107115070999b 2079076 web optional chromedriver_39.0.2171.71-1_i386.deb
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1
>
> iQQcBAEBCgAGBQJUfBTJAAoJELjWss0C1vRzCLcf/3zWd8P8U9OdRumuOlOHytty
> uL2Cy41FzoiPMOXJBY+ywGXAamSONL8SVyVOXF+ycqguqgrFIcJLLRBVlUWyEMoc
> p19J/9sXhH8e8+17AleRpOEQhoBwlpYdo9O0I+0NCnAN5Jm3Fw7MK0D/bd0KYAt+
> gqUmRySjVlBPNGnJSFKbWrisW+/QjwqA2FjG5AGmfCgUCqN5Cqg2vEXuXuesbijP
> kiNNAxD6f3DEqKfmQoVTsTVBToZTU3ot+vAYi1jm0fNAmECGVpsD8wVxI6/h43HD
> XN7cvE5Sbw3Y0KMrK9NXkxYQCg7ta+kOGvqYV9lUhR+dL5DcyR2o1ycLML6nWcSh
> vUAR54ckdWxAnDBvoBH+Ooe3BHN4m3HtvYLa6T75wes8fd7uLrQVni5Rmg4tjuUA
> aANfMt09LVuuH+kXbZE64KVi76s2Xubqv55WdEYEtlMojTotOX79LyxmFgTUgaaI
> PjzMeQ9DVuEvypR9kbrAVIPWNnJkjfMkslFHFi2G93PgnrWH9+MCc9901rdxZlgo
> wuIum3XZfmxzJIqwrePXY3Rrib5Kvt6mQ0CxHsl8BWy+SQVfEX1ifszUNqLzUlE1
> kHg5yOJlPBIwOqLvOuSMnOX5skCFuy+dPn6VFRxbdi5Cq84Wy8L/m4yJQWjOM0Ma
> ly8wkX7wXnQKnqoWCRVvJ96wDfjUWhMqLLFC+Z8qNfJj2dKNW7qlk4fRHaxqqMxn
> z/tdrilxOrU+t1pJ4DiNCfUhUL6G+JobiXKMlXvkbicFnrdyig2YOfwex4pZT+NW
> KgTrRpp4pDeOiidRiO263t8nL9EJ9pTn9Aouf3rmxJB7iH1fGoC/OPsyrgQPRZEV
> zHAPtv2JK3LDwUarfaxN2fJujD+qnQo8Pu+K0ZfFzeZ1J86sQLw1tlU9m11nq8pp
> fAEwb1mGPhOTHQ0m7okXSCFG0l49Ssl8VmoLK6p1OgC62eghgKhZE8/BWHF4NrX4
> PHrunidX3jXbQy1x8KKP1bhHSjMKxezYBtvWKa4OsPgTd2gDgZUxk2V6XX+ZaXPf
> FmKszVj1CfEE4sh+v2XEXLYZLt8GiheXVshaukaWrv2nb14icfaXw7De7wNwW61p
> 9+Gj+zIb/hzLmFAXuCAyOKnZwEZMsJt3lTzio3mKMnk2DE+eDME7TkSQFEli7YGr
> nEFFmL8MsXOb42nUtkc0khxUeIP3gUk3KWUme1XJUYIVVKG6+x5iZwtILNxBcNj8
> CiS42WCWksNZtjfbi33QY5OfJhDOiktc+2P9dpR5b03qDrDpdA1Xg09DNwPsPC0H
> Yk24L4qp1oz6TvmYokFYOmGsQnp8yd8rAFIvhXu4tNUqYEKfXyIpgm+EmNbAMWo=
> =LLxk
> -----END PGP SIGNATURE-----
>
> ---------- Forwarded message ----------
> From: "bastien ROUCARIÈS" <roucaries.bastien+debian at gmail.com>
> To: submit at bugs.debian.org
> Cc:
> Date: Sun, 16 Nov 2014 23:18:49 +0000
> Subject: [chromium-browser] Please use -fexcess-precision=standard or -ffloat-store instead of enabling sse2
> Package: chromium-browser
> Severity: serious
> version: 38.0.2125.101-4
> justification: i386 package must be compiled for i586
>
> According to gcc documentation and my experience [1]:
>
>>The following options control compiler behavior regarding floating-point arithmetic. These options trade off between speed and >correctness. All must be specifically enabled.
>>
>>-ffloat-store
>>    Do not store floating-point variables in registers, and inhibit other options that might change whether a floating-point value is taken from a register or memory.
>>
>>    This option prevents undesirable excess precision on machines such as the 68000 where the floating registers (of the 68881) keep more precision than a double is supposed to have. Similarly for the x86 architecture. For most programs, the excess precision does only good, but a few programs rely on the precise definition of IEEE floating point. Use -ffloat-store for such programs, after modifying them to store all pertinent intermediate computations into variables.
>>-fexcess-precision=style
>>    This option allows further control over excess precision on machines where floating-point registers have more precision than the IEEE float and double types and the processor does not support operations rounding to those types. By default, -fexcess-precision=fast is in effect; this means that operations are carried out in the precision of the registers and that it is unpredictable when rounding to the types specified in the source code takes place. When compiling C, if -fexcess-precision=standard is specified then excess precision follows the rules specified in ISO C99; in particular, both casts and assignments cause values to be rounded to their semantic types (whereas -ffloat-store only affects assignments). This option is enabled by default for C if a strict conformance option such as -std=c99 is used.
>
>>    -fexcess-precision=standard is not implemented for languages other than C, and has no effect if -funsafe-math-optimizations or -ffast-math is specified. On the x86, it also has no effect if -mfpmath=sse or -mfpmath=sse+387 is specified; in the former case, IEEE semantics apply without excess precision, and in the latter, rounding is unpredictable.
>
>  [1] https://gcc.gnu.org/onlinedocs/gcc-4.9.2/gcc/Disappointments.html#Disappointments

More information about the Pkg-chromium-maint mailing list