aboutsummaryrefslogtreecommitdiffstats
path: root/main/gnutls/APKBUILD
diff options
context:
space:
mode:
Diffstat (limited to 'main/gnutls/APKBUILD')
-rw-r--r--main/gnutls/APKBUILD58
1 files changed, 45 insertions, 13 deletions
diff --git a/main/gnutls/APKBUILD b/main/gnutls/APKBUILD
index d9f3d0b5abb..dc4c551e158 100644
--- a/main/gnutls/APKBUILD
+++ b/main/gnutls/APKBUILD
@@ -2,26 +2,46 @@
# Contributor: Michael Mason <ms13sp@gmail.com>
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
pkgname=gnutls
-pkgver=3.6.15
-pkgrel=1
+pkgver=3.8.3
+pkgrel=0
pkgdesc="TLS protocol implementation"
url="https://www.gnutls.org/"
arch="all"
license="LGPL-2.1-or-later"
checkdepends="diffutils datefudge"
-makedepends="nettle-dev zlib-dev libtasn1-dev p11-kit-dev libunistring-dev texinfo"
+makedepends="
+ libidn2-dev
+ libkcapi-dev
+ libtasn1-dev
+ libunistring-dev
+ linux-headers
+ nettle-dev
+ p11-kit-dev
+ texinfo
+ zlib-dev
+ "
subpackages="$pkgname-dbg $pkgname-doc $pkgname-dev $pkgname-utils $pkgname-c++:xx"
_v=${pkgver%.*}
case $pkgver in
*.*.*.*) _v=${_v%.*};;
esac
source="https://www.gnupg.org/ftp/gcrypt/gnutls/v$_v/gnutls-$pkgver.tar.xz
- tests-crq.patch
- tests-certtool.patch
+ skip-ktls.patch
"
# Upstream Tracker: https://gnutls.org/security-new.html
# secfixes:
+# 3.8.3-r0:
+# - CVE-2023-5981
+# - CVE-2024-0553
+# - CVE-2024-0567
+# 3.8.0-r0:
+# - CVE-2023-0361
+# 3.7.7-r0:
+# - CVE-2022-2509 GNUTLS-SA-2022-07-07
+# 3.7.1-r0:
+# - CVE-2021-20231 GNUTLS-SA-2021-03-10
+# - CVE-2021-20232 GNUTLS-SA-2021-03-10
# 3.6.15-r0:
# - CVE-2020-24659 GNUTLS-SA-2020-09-04
# 3.6.14-r0:
@@ -34,29 +54,40 @@ source="https://www.gnupg.org/ftp/gcrypt/gnutls/v$_v/gnutls-$pkgver.tar.xz
# 3.5.13-r0:
# - CVE-2017-7507
+prepare() {
+ default_prepare
+
+ # tries to do local networking, "Failed to connect to server"
+ sed -i 's/cert-reencoding.sh//' tests/Makefile*
+}
+
build() {
- LIBS="-lgmp" ./configure \
+ ./configure \
--build=$CBUILD \
--host=$CHOST \
--prefix=/usr \
--sysconfdir=/etc \
--mandir=/usr/share/man \
--infodir=/usr/share/info \
+ --enable-ktls \
--disable-openssl-compatibility \
--disable-rpath \
--disable-static \
- --disable-guile \
--disable-valgrind-tests
make
}
check() {
- make -j1 check
+ # millis, 100s
+ export GNUTLS_TEST_TIMEOUT=100000
+ make check || {
+ cat tests/test-suite.log
+ return 1
+ }
}
package() {
- make -j1 DESTDIR="$pkgdir" \
- -C "$builddir" install
+ DESTDIR="$pkgdir" make -C "$builddir" install
}
utils() {
@@ -72,6 +103,7 @@ xx() {
mv "$pkgdir"/usr/lib/lib*xx.so.* "$subpkgdir"/usr/lib/
}
-sha512sums="f757d1532198f44bcad7b73856ce6a05bab43f6fb77fcc81c59607f146202f73023d0796d3e1e7471709cf792c8ee7d436e19407e0601bc0bda2f21512b3b01c gnutls-3.6.15.tar.xz
-3e7d872963cc25e49f1ecf98de7d6f3b6b22d2c1c9e982bc4b22ce658c11d8567903728e5aa33ce7b6d3e25fe0b7a75b8aca3e8f53838155af5abe23887d33fa tests-crq.patch
-30739b5ca06bb72e93d021065fbc90a1808c5fc139ff917308738456ae8601f5c372d223d77e51cdd34a6aa4d28dcb8140101c3f753ede1e39ee12e229c24cbe tests-certtool.patch"
+sha512sums="
+74eddba01ce4c2ffdca781c85db3bb52c85f1db3c09813ee2b8ceea0608f92ca3912fd9266f55deb36a8ba4d01802895ca5d5d219e7d9caec45e1a8534e45a84 gnutls-3.8.3.tar.xz
+0913e95e58c509c5bb3463cce262741486ada05e283f770a0ef9bf88956e1b87224070036d32069a6d0b6cb880253627890aee98edb5f1b07acf26a97bc19cee skip-ktls.patch
+"
generated by cgit v1.2.3 (git 2.41.0) at 2024-04-25 03:49:13 +0000