diff options
Diffstat (limited to 'main/gnutls/APKBUILD')
-rw-r--r-- | main/gnutls/APKBUILD | 58 |
1 files changed, 45 insertions, 13 deletions
diff --git a/main/gnutls/APKBUILD b/main/gnutls/APKBUILD index d9f3d0b5abb..dc4c551e158 100644 --- a/main/gnutls/APKBUILD +++ b/main/gnutls/APKBUILD @@ -2,26 +2,46 @@ # Contributor: Michael Mason <ms13sp@gmail.com> # Maintainer: Natanael Copa <ncopa@alpinelinux.org> pkgname=gnutls -pkgver=3.6.15 -pkgrel=1 +pkgver=3.8.3 +pkgrel=0 pkgdesc="TLS protocol implementation" url="https://www.gnutls.org/" arch="all" license="LGPL-2.1-or-later" checkdepends="diffutils datefudge" -makedepends="nettle-dev zlib-dev libtasn1-dev p11-kit-dev libunistring-dev texinfo" +makedepends=" + libidn2-dev + libkcapi-dev + libtasn1-dev + libunistring-dev + linux-headers + nettle-dev + p11-kit-dev + texinfo + zlib-dev + " subpackages="$pkgname-dbg $pkgname-doc $pkgname-dev $pkgname-utils $pkgname-c++:xx" _v=${pkgver%.*} case $pkgver in *.*.*.*) _v=${_v%.*};; esac source="https://www.gnupg.org/ftp/gcrypt/gnutls/v$_v/gnutls-$pkgver.tar.xz - tests-crq.patch - tests-certtool.patch + skip-ktls.patch " # Upstream Tracker: https://gnutls.org/security-new.html # secfixes: +# 3.8.3-r0: +# - CVE-2023-5981 +# - CVE-2024-0553 +# - CVE-2024-0567 +# 3.8.0-r0: +# - CVE-2023-0361 +# 3.7.7-r0: +# - CVE-2022-2509 GNUTLS-SA-2022-07-07 +# 3.7.1-r0: +# - CVE-2021-20231 GNUTLS-SA-2021-03-10 +# - CVE-2021-20232 GNUTLS-SA-2021-03-10 # 3.6.15-r0: # - CVE-2020-24659 GNUTLS-SA-2020-09-04 # 3.6.14-r0: @@ -34,29 +54,40 @@ source="https://www.gnupg.org/ftp/gcrypt/gnutls/v$_v/gnutls-$pkgver.tar.xz # 3.5.13-r0: # - CVE-2017-7507 +prepare() { + default_prepare + + # tries to do local networking, "Failed to connect to server" + sed -i 's/cert-reencoding.sh//' tests/Makefile* +} + build() { - LIBS="-lgmp" ./configure \ + ./configure \ --build=$CBUILD \ --host=$CHOST \ --prefix=/usr \ --sysconfdir=/etc \ --mandir=/usr/share/man \ --infodir=/usr/share/info \ + --enable-ktls \ --disable-openssl-compatibility \ --disable-rpath \ --disable-static \ - --disable-guile \ --disable-valgrind-tests make } check() { - make -j1 check + # millis, 100s + export GNUTLS_TEST_TIMEOUT=100000 + make check || { + cat tests/test-suite.log + return 1 + } } package() { - make -j1 DESTDIR="$pkgdir" \ - -C "$builddir" install + DESTDIR="$pkgdir" make -C "$builddir" install } utils() { @@ -72,6 +103,7 @@ xx() { mv "$pkgdir"/usr/lib/lib*xx.so.* "$subpkgdir"/usr/lib/ } -sha512sums="f757d1532198f44bcad7b73856ce6a05bab43f6fb77fcc81c59607f146202f73023d0796d3e1e7471709cf792c8ee7d436e19407e0601bc0bda2f21512b3b01c gnutls-3.6.15.tar.xz -3e7d872963cc25e49f1ecf98de7d6f3b6b22d2c1c9e982bc4b22ce658c11d8567903728e5aa33ce7b6d3e25fe0b7a75b8aca3e8f53838155af5abe23887d33fa tests-crq.patch -30739b5ca06bb72e93d021065fbc90a1808c5fc139ff917308738456ae8601f5c372d223d77e51cdd34a6aa4d28dcb8140101c3f753ede1e39ee12e229c24cbe tests-certtool.patch" +sha512sums=" +74eddba01ce4c2ffdca781c85db3bb52c85f1db3c09813ee2b8ceea0608f92ca3912fd9266f55deb36a8ba4d01802895ca5d5d219e7d9caec45e1a8534e45a84 gnutls-3.8.3.tar.xz +0913e95e58c509c5bb3463cce262741486ada05e283f770a0ef9bf88956e1b87224070036d32069a6d0b6cb880253627890aee98edb5f1b07acf26a97bc19cee skip-ktls.patch +" |