APKBUILD 4.02 KB
Newer Older
Sergei Lukin's avatar
Sergei Lukin committed
1
# Contributor: Sergei Lukin <sergej.lukin@gmail.com>
2
# Contributor: Valery Kartel <valery.kartel@gmail.com>
3
# Contributor: Łukasz Jendrysik <scadu@yandex.com>
Natanael Copa's avatar
Natanael Copa committed
4
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
Carlo Landmeter's avatar
Carlo Landmeter committed
5
pkgname=curl
prspkt's avatar
prspkt committed
6
pkgver=7.67.0
7
pkgrel=4
prspkt's avatar
prspkt committed
8
pkgdesc="URL retrival utility and library"
J0WI's avatar
J0WI committed
9
url="https://curl.haxx.se/"
10
arch="all"
Carlo Landmeter's avatar
Carlo Landmeter committed
11
license="MIT"
12
depends="ca-certificates"
13
depends_dev="openssl-dev nghttp2-dev zlib-dev"
prspkt's avatar
prspkt committed
14
checkdepends="python3"
prspkt's avatar
prspkt committed
15
makedepends="$depends_dev autoconf automake groff libtool perl"
16
subpackages="$pkgname-dbg $pkgname-static $pkgname-doc $pkgname-dev libcurl"
17 18 19
source="https://curl.haxx.se/download/$pkgname-$pkgver.tar.xz
	CVE-2020-8169.patch
	CVE-2020-8177.patch
Leo's avatar
Leo committed
20
	CVE-2020-8231.patch
21 22
	CVE-2020-8285.patch
	CVE-2020-8286.patch
23
	CVE-2021-22898.patch
24
	"
Carlo Landmeter's avatar
Carlo Landmeter committed
25

26
# secfixes:
27 28
#   7.67.0-r4:
#     - CVE-2021-22898
29 30 31
#   7.67.0-r3:
#     - CVE-2020-8285
#     - CVE-2020-8286
Leo's avatar
Leo committed
32 33
#   7.67.0-r2:
#     - CVE-2020-8231
34 35 36
#   7.67.0-r1:
#     - CVE-2020-8169
#     - CVE-2020-8177
J0WI's avatar
J0WI committed
37 38 39
#   7.66.0-r0:
#     - CVE-2019-5481
#     - CVE-2019-5482
J0WI's avatar
J0WI committed
40 41 42
#   7.65.0-r0:
#     - CVE-2019-5435
#     - CVE-2019-5436
43
#   7.64.0-r0:
Ariel Zelivansky's avatar
Ariel Zelivansky committed
44
#     - CVE-2018-16890
45 46
#     - CVE-2019-3822
#     - CVE-2019-3823
47 48 49 50
#   7.62.0-r0:
#     - CVE-2018-16839
#     - CVE-2018-16840
#     - CVE-2018-16842
51 52
#   7.61.1-r0:
#     - CVE-2018-14618
53 54
#   7.61.0-r0:
#     - CVE-2018-0500
prspkt's avatar
prspkt committed
55 56 57
#   7.60.0-r0:
#     - CVE-2018-1000300
#     - CVE-2018-1000301
prspkt's avatar
prspkt committed
58 59 60 61
#   7.59.0-r0:
#     - CVE-2018-1000120
#     - CVE-2018-1000121
#     - CVE-2018-1000122
TBK's avatar
TBK committed
62 63 64 65
#   7.57.0-r0:
#     - CVE-2017-8816
#     - CVE-2017-8817
#     - CVE-2017-8818
Natanael Copa's avatar
Natanael Copa committed
66 67
#   7.56.1-r0:
#     - CVE-2017-1000257
68 69 70 71
#   7.55.0-r0:
#     - CVE-2017-1000099
#     - CVE-2017-1000100
#     - CVE-2017-1000101
Natanael Copa's avatar
Natanael Copa committed
72 73
#   7.54.0-r0:
#     - CVE-2017-7468
Sergei Lukin's avatar
Sergei Lukin committed
74
#   7.53.1-r2:
Natanael Copa's avatar
Natanael Copa committed
75
#     - CVE-2017-7407
76 77
#   7.53.0:
#     - CVE-2017-2629
78 79
#   7.52.1:
#     - CVE-2016-9594
80 81 82 83 84 85 86 87 88 89 90 91
#   7.51.0:
#     - CVE-2016-8615
#     - CVE-2016-8616
#     - CVE-2016-8617
#     - CVE-2016-8618
#     - CVE-2016-8619
#     - CVE-2016-8620
#     - CVE-2016-8621
#     - CVE-2016-8622
#     - CVE-2016-8623
#     - CVE-2016-8624
#     - CVE-2016-8625
92 93
#   7.50.3:
#     - CVE-2016-7167
94 95
#   7.50.2:
#     - CVE-2016-7141
96 97 98 99 100 101 102 103
#   7.50.1:
#     - CVE-2016-5419
#     - CVE-2016-5420
#     - CVE-2016-5421
#   7.36.0:
#     - CVE-2014-0138
#     - CVE-2014-0139

prspkt's avatar
prspkt committed
104 105 106 107
prepare() {
	default_prepare
	autoreconf -vfi
}
108

Carlo Landmeter's avatar
Carlo Landmeter committed
109
build() {
110 111 112 113
	./configure \
		--build=$CBUILD \
		--host=$CHOST \
		--prefix=/usr \
Natanael Copa's avatar
Natanael Copa committed
114
		--enable-ipv6 \
V Krishn's avatar
V Krishn committed
115
		--enable-unix-sockets \
116
		--enable-static \
117
		--without-libidn \
118
		--without-libidn2 \
Natanael Copa's avatar
Natanael Copa committed
119
		--with-nghttp2 \
120
		--disable-ldap \
121 122
		--with-pic \
		--without-libssh2 # https://bugs.alpinelinux.org/issues/10222
TBK's avatar
TBK committed
123
	make
Natanael Copa's avatar
Natanael Copa committed
124
}
125

126 127
check() {
	cd "$builddir"
Natanael Copa's avatar
Natanael Copa committed
128
	make -C tests nonflaky-test
129 130
}

Natanael Copa's avatar
Natanael Copa committed
131
package() {
prspkt's avatar
prspkt committed
132 133
	cd "$builddir"
	make install DESTDIR="$pkgdir"
Carlo Landmeter's avatar
Carlo Landmeter committed
134 135
}

136 137
libcurl() {
	pkgdesc="The multiprotocol file transfer library"
prspkt's avatar
prspkt committed
138

139 140 141 142
	mkdir -p "$subpkgdir"/usr
	mv "$pkgdir"/usr/lib "$subpkgdir"/usr
}

143 144 145 146 147 148 149
static() {
	pkgdesc="$pkgdesc (static library)"

	mkdir -p "$subpkgdir"/usr/lib
	mv "$pkgdir"/usr/lib/*.a "$subpkgdir"/usr/lib
}

150 151
sha512sums="1d5a344be92dd61b1ba5189eff0fe337e492f2e850794943570fe71c985d0af60bd412082be646e07aaa8639908593e1ce4bb2d07db35394ec377e8ce8b9ae29  curl-7.67.0.tar.xz
4950975d59bdf8398dd5f4b8338e5f76ae3752247be9054a28753351bcddb46f71a8bd601dba31da1b6b3fbbfbe6192f33a6500144d89f2cfdfb47161e3addba  CVE-2020-8169.patch
Leo's avatar
Leo committed
152
d43f92378c11824e73204b55a8e0952294e5cb17c89503e6fcd4932f812dda244a66c81e20606b4ececed7198bda37e0ca511631bf2ba91e2e9f336290ba5d4b  CVE-2020-8177.patch
153 154
d5f4421e5ac6f89220d00fb156c803edbb64679e9064ca8328269eea3582ee7780f77522b5069a1288cc09e968567175c94139249cc337906243c95d0bc3e684  CVE-2020-8231.patch
2765302f147ad29b7187d334edfb66076ab81088583dd681ba37aed96eee6a5108ca8281fe185e60494d4aeda003216319d15e05a341f5796698452816fe0f97  CVE-2020-8285.patch
155 156
6c42a589a8bc7b588dcd2c3e656a221000608841b6347c66e640ba818f6ff73fcfaf1ae1948dcbd446689559f54476b0ca5e340fb00f44da1defb7c2573d4a8c  CVE-2020-8286.patch
c52275bc8ce1463b5a05c5387144b743462a2f551853134254317023ad39445eb53119d88bfb58d17aaa6e5f86985c2f2b540980337eaca1f385ac15818546e6  CVE-2021-22898.patch"