diff options
Diffstat (limited to 'community/nodejs-current/APKBUILD')
-rw-r--r-- | community/nodejs-current/APKBUILD | 114 |
1 files changed, 85 insertions, 29 deletions
diff --git a/community/nodejs-current/APKBUILD b/community/nodejs-current/APKBUILD index 76c2bb89562..6143a253db9 100644 --- a/community/nodejs-current/APKBUILD +++ b/community/nodejs-current/APKBUILD @@ -1,7 +1,56 @@ # Contributor: Jakub Jirutka <jakub@jirutka.cz> -# Maintainer: Jose-Luis Rivas <ghostbar@riseup.net> +# Contributor: Jose-Luis Rivas <ghostbar@riseup.net> +# Maintainer: Patrycja Rosa <alpine@ptrcnull.me> # # secfixes: +# 21.7.2-r0: +# - CVE-2024-27982 +# - CVE-2024-27983 +# 20.8.1-r0: +# - CVE-2023-45143 +# - CVE-2023-39332 +# - CVE-2023-39331 +# - CVE-2023-38552 +# - CVE-2023-39333 +# 18.9.1-r0: +# - CVE-2022-32213 +# - CVE-2022-32215 +# - CVE-2022-32222 +# - CVE-2022-35255 +# - CVE-2022-35256 +# 18.6.0-r0: +# - CVE-2022-32212 +# - CVE-2022-32214 +# - CVE-2022-32222 +# 17.3.1-r0: +# - CVE-2021-44531 +# - CVE-2021-44532 +# - CVE-2021-44533 +# - CVE-2022-21824 +# 16.11.1-r0: +# - CVE-2021-22959 +# - CVE-2021-22960 +# 16.6.2-r0: +# - CVE-2021-3672 +# - CVE-2021-22931 +# - CVE-2021-22939 +# 16.6.0-r0: +# - CVE-2021-22930 +# 15.10.0-r0: +# - CVE-2021-22883 +# - CVE-2021-22884 +# 15.5.1-r0: +# - CVE-2020-8265 +# - CVE-2020-8287 +# 15.3.0-r0: +# - CVE-2020-8277 +# 14.11.0-r0: +# - CVE-2020-8201 +# - CVE-2020-8251 +# 14.4.0-r0: +# - CVE-2020-8172 +# - CVE-2020-11080 +# - CVE-2020-8174 # 13.11.0-r0: # - CVE-2019-15604 # - CVE-2019-15605 @@ -21,62 +70,65 @@ # 9.2.1-r0: # - CVE-2017-15896 # - CVE-2017-15897 -# +# 0: +# - CVE-2023-44487 + pkgname=nodejs-current # The current stable version, i.e. non-LTS. -pkgver=14.3.0 +pkgver=21.7.3 pkgrel=0 pkgdesc="JavaScript runtime built on V8 engine - current stable version" url="https://nodejs.org/" -arch="all !mips64 !mips64el" +arch="all" license="MIT" depends="ca-certificates" -depends_dev="libuv" +depends_dev=" + libuv-dev + " makedepends=" + $depends_dev + ada-dev brotli-dev c-ares-dev - libuv-dev + icu-dev linux-headers nghttp2-dev - openssl-dev + openssl-dev>3 python3 + samurai zlib-dev " subpackages="$pkgname-dev $pkgname-doc" provides="nodejs" +provider_priority=10 replaces="nodejs nodejs-lts" # nodejs-lts for backward compatibility -source="https://nodejs.org/dist/v$pkgver/node-v$pkgver.tar.gz +source="https://nodejs.org/dist/v$pkgver/node-v$pkgver.tar.xz dont-run-gyp-files-for-bundled-deps.patch - link-with-libatomic-on-mips32.patch elf.patch unbundle-uv.patch + system-ada.patch + 39739.patch " builddir="$srcdir/node-v$pkgver" -prepare() { - default_prepare - - # Remove bundled dependencies that we're not using. - rm -rf deps/brotli deps/cares deps/openssl deps/uv deps/zlib -} - build() { - # Add defines recommended in libuv readme. - export CFLAGS="$CFLAGS -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64" - export CXXFLAGS="$CXXFLAGS -D_LARGEFILE_SOURCE -D_FILE_OFFSET_BITS=64" - - case "$CARCH" in - mips*) _carchflags="--with-mips-arch-variant=r1 --with-mips-float-abi=soft";; - esac + # Os overwrites the optimizations in BUILDTYPE=Release + # increases binary size by ~10% (53.1 MiB -> 58.6 MiB), + # but also increases performance by ~20% according to + # v8/web-tooling-benchmark. Node.js is quite huge anyway; + # there are better options for size constrained environments. + export CFLAGS="${CFLAGS/-Os/}" + export CXXFLAGS="${CXXFLAGS/-Os/} -Wno-deprecated-declarations" ./configure --prefix=/usr \ - $_carchflags \ --shared-brotli \ --shared-zlib \ --shared-libuv \ --shared-openssl \ --shared-cares \ --shared-nghttp2 \ + --ninja \ + --with-intl=system-icu \ --without-npm \ --openssl-use-def-ca-store @@ -89,14 +141,18 @@ check() { ./node -e 'console.log("Hello, world!")' ./node -e "require('assert').equal(process.versions.node, '$pkgver')" + ./node -e 'console.log("Openssl:", process.versions.openssl)' } package() { make DESTDIR="$pkgdir" install } -sha512sums="fa1533e179b641f342a862b6349fce8fe30eb90587a2c70ca5bf39dd80b465b4924785fc5ae45dd22d3f809fdb689cba2fe05d4b86d40f82f78390afa9d52f3b node-v14.3.0.tar.gz -940cc90aaa77a531cde13e31918a9978f9478936c3851038bcdf2869e64de03ce84dec5a46519469a90a8ba2853226825452d23d9347752abdbe04e944c083eb dont-run-gyp-files-for-bundled-deps.patch -65df7eeadbdfc015185260c0e24f3206714e4d2aacceef742d078a4f8bae386b2867e0f7f3b8c2eac47180cb10a8e14b71a36a23bb74ed6a95eecbaf76897e0c link-with-libatomic-on-mips32.patch -ace818285ff0b868f17be64db7c7b77b314ba370fda6bac640d56bf18322a54fa015206a3e1adefa1d78ef66b597eebf10c28d6549005cd7e58f60a37c38b741 elf.patch -6b06f819a026999e3a01bee09401004376e8c1fe19541a6f508557e73fbbb5b9d433cf8130a99230c7d04513715dff898f6004809e1ce7d0c01287312e468a5a unbundle-uv.patch" +sha512sums=" +1686947e0c03fa238c98bd47d96867a9cfa087eb79baa60828d600f04ca1e58fec02076bc2fdc06717b4f4ee67a74179dcc52b7eacc7d25a3743fb944d69b95c node-v21.7.3.tar.xz +411a3b07ba90c51fb913419e71615a6eb33a938d5026bb4a43b5f385457d2d14405eaddc3b68a21534e3a1b398e45148dc648dad23bc7755491a5cf777e2646c dont-run-gyp-files-for-bundled-deps.patch +e6f2907bdf2082097841f44ac9380d5b1bc65eca39be7153da081266940c6a10d2932e16a2e15bdcf12fec61c45549d009d1a07e5e1633603172968b5f6fdb77 elf.patch +d8f1092a92f7a168755020b3e40fe72b743f9150de6d18f7664074dadaef866ecb4fa8252fa891fd7cf34b3dc183455af8d5570d7b3f1883464c2b6e3a9f2789 unbundle-uv.patch +c4c7c4c10be56abc5b92eb10acb734f2a2157d7a6cd0ea873747c82e7de808ef8584a8090adcaedfac66efe06a2d64ce6952ad6d7e3c1db780ccf25a8934c67a system-ada.patch +080ede859262f5507a913b1f9995092ed075777e94c73c23ee74d74c739e9b2e6b4cc3afad189a333692f10485e7e3e12a15662286df2c946f73bdd6083baee8 39739.patch +" |