APKBUILD 4.08 KB
Newer Older
1
# Contributor: Sergei Lukin <sergej.lukin@gmail.com>
2
# Contributor: Valery Kartel <valery.kartel@gmail.com>
3
# Contributor: Łukasz Jendrysik <scadu@yandex.com>
Natanael Copa's avatar
Natanael Copa committed
4
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
Carlo Landmeter's avatar
Carlo Landmeter committed
5
pkgname=curl
6
pkgver=7.61.1
7
pkgrel=3
8 9
pkgdesc="URL retrival utility and library"
url="https://curl.haxx.se"
10
arch="all"
Carlo Landmeter's avatar
Carlo Landmeter committed
11
license="MIT"
12
depends="ca-certificates"
A. Klitzing's avatar
A. Klitzing committed
13
makedepends="zlib-dev libressl-dev libssh2-dev groff perl"
14
source="http://curl.haxx.se/download/$pkgname-$pkgver.tar.xz"
Timo Teräs's avatar
Timo Teräs committed
15
subpackages="$pkgname-dbg $pkgname-doc $pkgname-dev libcurl"
16 17
source="https://curl.haxx.se/download/$pkgname-$pkgver.tar.xz
	use-OPENSSL_config.patch
Leonardo Arena's avatar
Leonardo Arena committed
18 19 20
	CVE-2018-16839.patch
	CVE-2018-16840.patch
	CVE-2018-16842.patch
Leonardo Arena's avatar
Leonardo Arena committed
21 22 23
	CVE-2018-16890.patch
	CVE-2019-3822.patch
	CVE-2019-3823.patch
24 25
	CVE-2019-5481.patch
	CVE-2019-5482.patch
26
	"
27

28
builddir="$srcdir/$pkgname-$pkgver"
29

30
# secfixes:
31 32 33
#   7.61.1-r3:
#     - CVE-2019-5481
#     - CVE-2019-5482
Leonardo Arena's avatar
Leonardo Arena committed
34 35 36 37
#   7.61.1-r2:
#     - CVE-2018-16890
#     - CVE-2019-3822
#     - CVE-2019-3823
Leonardo Arena's avatar
Leonardo Arena committed
38 39 40 41
#   7.61.1-r1:
#     - CVE-2018-16839
#     - CVE-2018-16840
#     - CVE-2018-16842
42 43
#   7.61.1-r0:
#     - CVE-2018-14618
44 45
#   7.61.0-r0:
#     - CVE-2018-0500
46 47 48
#   7.60.0-r0:
#     - CVE-2018-1000300
#     - CVE-2018-1000301
prspkt's avatar
prspkt committed
49 50 51 52
#   7.59.0-r0:
#     - CVE-2018-1000120
#     - CVE-2018-1000121
#     - CVE-2018-1000122
53 54
#   7.58.0-r0:
#     - CVE-2018-1000005
TBK's avatar
TBK committed
55 56 57 58
#   7.57.0-r0:
#     - CVE-2017-8816
#     - CVE-2017-8817
#     - CVE-2017-8818
59 60
#   7.56.1-r0:
#     - CVE-2017-1000257
61 62 63 64
#   7.55.0-r0:
#     - CVE-2017-1000099
#     - CVE-2017-1000100
#     - CVE-2017-1000101
Natanael Copa's avatar
Natanael Copa committed
65 66
#   7.54.0-r0:
#     - CVE-2017-7468
67
#   7.53.1-r2:
Natanael Copa's avatar
Natanael Copa committed
68
#     - CVE-2017-7407
69 70
#   7.53.0:
#     - CVE-2017-2629
71 72
#   7.52.1:
#     - CVE-2016-9594
73 74 75 76 77 78 79 80 81 82 83 84
#   7.51.0:
#     - CVE-2016-8615
#     - CVE-2016-8616
#     - CVE-2016-8617
#     - CVE-2016-8618
#     - CVE-2016-8619
#     - CVE-2016-8620
#     - CVE-2016-8621
#     - CVE-2016-8622
#     - CVE-2016-8623
#     - CVE-2016-8624
#     - CVE-2016-8625
85 86
#   7.50.3:
#     - CVE-2016-7167
87 88
#   7.50.2:
#     - CVE-2016-7141
89 90 91 92 93 94 95 96
#   7.50.1:
#     - CVE-2016-5419
#     - CVE-2016-5420
#     - CVE-2016-5421
#   7.36.0:
#     - CVE-2014-0138
#     - CVE-2014-0139

Carlo Landmeter's avatar
Carlo Landmeter committed
97
build() {
98
	cd "$builddir"
99 100 101 102
	./configure \
		--build=$CBUILD \
		--host=$CHOST \
		--prefix=/usr \
Natanael Copa's avatar
Natanael Copa committed
103
		--enable-ipv6 \
V Krishn's avatar
V Krishn committed
104
		--enable-unix-sockets \
105
		--without-libidn \
106
		--without-libidn2 \
107
		--with-libssh2 \
108
		--disable-ldap \
TBK's avatar
TBK committed
109 110
		--with-pic
	make
Natanael Copa's avatar
Natanael Copa committed
111
}
112

113 114 115 116 117
check() {
	cd "$builddir"
	make check
}

Natanael Copa's avatar
Natanael Copa committed
118
package() {
119
	make DESTDIR="$pkgdir" \
TBK's avatar
TBK committed
120
		-C "$builddir" install
Carlo Landmeter's avatar
Carlo Landmeter committed
121 122
}

123 124 125 126 127 128
libcurl() {
	pkgdesc="The multiprotocol file transfer library"
	mkdir -p "$subpkgdir"/usr
	mv "$pkgdir"/usr/lib "$subpkgdir"/usr
}

129
sha512sums="e6f82a7292c70841162480c8880d25046bcfa64058f4ff76f7d398c85da569af1c244442c9c58a3478d59264365ff8e39eed2fb564cb137118588f7862e64e9a  curl-7.61.1.tar.xz
Leonardo Arena's avatar
Leonardo Arena committed
130 131 132
708527e73f9512c50e2250ca26786ba8994dc05fd2e362c1feb274e251219fb4bfc97e7e7722aa12424ccaf4c511d90d8820561c82a24f103b9ee2b743f4be28  use-OPENSSL_config.patch
4a28e4dcf36bf8e2fc5658d7fcee311d29452f4bed1479bad02772a8b7969c9dc653480b85715a5fe2bd2c2a8ae59e94fe72ffc6d0fe765131010d8f64bdfaee  CVE-2018-16839.patch
c1a684f17267b08f77625064ac62e4f06989c552d6d501565f8bebf31d3a96a613f0683376ec7cc16f6489554dcca4dcb1d428461159b82434c076df44ef5b38  CVE-2018-16840.patch
Leonardo Arena's avatar
Leonardo Arena committed
133 134 135
dcaca036eafaaae66eba99808d00ff6bed3c9e59c2c1239ca1ddcf54c9e1c53edabd543dc6925ded3cdf9efd39c0968353527ae5ed0b986cefba333fbc7fd1af  CVE-2018-16842.patch
573b896bd78e404002398bdf38d952ec6247af551ef7d6e34d52acbf004f8f4de60299e3a8f83be75e22dfb8731e466aea0253efec7116282afab32dbb1f66e8  CVE-2018-16890.patch
959a55237752b254bc5f58308607f3cf0475e207a7400ff6be7942c48131787f1dec4c05be5b76865ae0adf81ebae77774085ad0c19dd342fb0307cfcfe24b6c  CVE-2019-3822.patch
136 137 138
73f0d06f9bbd6f0688e67310120d1e806752626c103b0a52bc4b4a1a77bbe248885778f39386fbfc38cb534cd12d18f205c091769558e6a04b50010cb9ba6a69  CVE-2019-3823.patch
37161e4d94cdb1add2216b031f70d7ae84451229dffe48ca9856bb311e88678f0e11baab6bb4da0386ed31e8467aa51fabaf6122f876ef9bc0003638d07f22cf  CVE-2019-5481.patch
6a048e3794415792a4554651bc55b71c22735f58293db584e9c822af9faad22f27c730b5d649d4bf1fb8d2c251f8d6e2f67249929bb7b3a76495c1f36a898ce7  CVE-2019-5482.patch"