New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
chore: bump node to v12.18.0 (master) #23789
Conversation
5bb5350
to
9e89d7f
Compare
6919940
to
c075c6f
Compare
Thanks @codebytere for making the zlib changes, but now that I think more, a couple questions come to my mind.
I would like to bring this up in the upgrades-wg meeting tomorrow, can you add it to the agenda. Thanks! |
@jkleinsc why was the sandbox change required for this PR specifically ? Can it be isolated to a separate PR ? |
@deepak1556 running with no-sandbox on this PR causes the arm/arm64 tests to fail: |
Weird it starts failing on a node update. The change made doesn't enable sandbox, just fixes the permission of chrome-sandbox used by renderers with webPreference /cc @nornagon |
Hmm... looking at this comment: https://github.com/electron/electron/blob/master/spec-main/api-app-spec.ts#L1192, I wonder if I can get a docker seccomp profile working with our CI. I think that might be safer than |
digging into this further it appears that we won't be able to use a docker seccomp profile. |
Thanks for checking @jkleinsc , but I still don't have a clarity on why these tests started failing suddenly in this PR and why is fixing suid sandbox permissions turned out to be the fix. |
@deepak1556 here's what I'm wondering - the main tests that are failing with --no-sandbox are debugger tests and I'm wondering if the --no-sandbox option isn't being properly passed which would then make sense as to why turning it off would work. |
3bfc130
to
eff85ae
Compare
1ef30f0
to
1dc5d84
Compare
They don't at present
I would say no - i doubt it would have nontrivial impact potential but even so i think it's an acceptable downside to minimizing our zlib bundle and staying more up-to-date
I believe this change would reduce binary since, since we're de-duplicating a dependency 🤔 |
Seeing a slightly different ARM failure now i'm not quite sure how to approach: https://github.visualstudio.com/electron/_build/results?buildId=72603&view=logs&j=877ace19-74f4-59bc-441c-1ef8c83d8f95&t=f3841320-31a2-57c0-0cc6-7ff521662a00&l=991 |
@deepak1556 after some investigation, i think we have no choice but to add Then, because we have a Node.js environment, what's happening is that the devtools windows uses Node.js' implementation of the esmodule loader, which is at present incapable of loading modules from URLs (for good reason). There's no real way to specifically enable sandbox for devtools only, since at the time we're calling |
@codebytere since #16864 we sandbox devtools renderer by default. I am not sure how node esmloader is leaking into it. Were you able to confirm that the devtool renderer had node environment ? Also why does this change only affect ARM builds ? |
@deepak1556 Since that PR sandbox is enabled by default for devtools webContents. However this case we are overriding the default. The arm tests on VSTS run with the |
because of container 🤦 now I understand the problem. In that case I am good with the proposed solution. Thanks for the context. |
@codebytere thanks for the context on |
For future reference, bundling two different zlib only increases the size by |
The report tests are disabled becuase the test report validator checks that the `process.versions` object exactly matches that created by Node.js - ours will always have an extra electron key and fail. I'm planning to see if I can add an embedder case for this upstream.
547918a
to
e695ca6
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, Thanks!
c936eb9
to
04a065a
Compare
Co-authored-by: Robo <hop2deep@gmail.com>
04a065a
to
7a3f830
Compare
Release Notes Persisted
|
Co-authored-by: Shelley Vohr <shelley.vohr@gmail.com>
Co-authored-by: Shelley Vohr <shelley.vohr@gmail.com>
Updating Node.js to v12.18.0.
See all changes in v12.16.3..v12.18.0
Notes: Updated Node.js to v12.18.0.