blob: 08967d27aa209aa045197e5f4a8f2076022d615b (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
|
# Contriburo: Łukasz Jendrysik <scadu@yandex.com>
# Contributor: Michael Mason <ms13sp@gmail.com>
# Maintainer: Zach van Rijn <me@zv.io>
pkgname=gnutls
pkgver=3.6.16
pkgrel=0
pkgdesc="A TLS protocol implementation"
url="https://www.gnutls.org/"
arch="all"
license="LGPL-2.1+"
makedepends="libtasn1-dev libunistring-dev nettle-dev p11-kit-dev texinfo
unbound-dev cmd:which zlib-dev"
checkdepends="diffutils"
subpackages="$pkgname-dbg $pkgname-doc $pkgname-dev $pkgname-lang
$pkgname-c++:xx $pkgname-dane $pkgname-utils"
_v=${pkgver%.*}
_v2=$pkgver
case $pkgver in
*.*.*.*)
_v=${_v%.*}
_v2=${pkgver%.*}
;;
esac
source="https://www.gnupg.org/ftp/gcrypt/gnutls/v${_v}/$pkgname-$pkgver.tar.xz
gnulib-tests-dont-require-gpg-passphrase.patch
disable-certtool-test.patch
"
# secfixes:
# 3.5.13-r0:
# - CVE-2017-7507
# 3.6.14-r0:
# - CVE-2020-11501
# - CVE-2020-13777
# 3.6.15-r0:
# - CVE-2020-24659
build() {
LIBS="-lgmp" ./configure \
--build=$CBUILD \
--host=$CHOST \
--prefix=/usr \
--sysconfdir=/etc \
--mandir=/usr/share/man \
--infodir=/usr/share/info \
--disable-openssl-compatibility \
--disable-rpath \
--disable-static \
--disable-guile \
--disable-valgrind-tests \
--without-included-libtasn1 \
--enable-cxx \
--enable-manpages \
--enable-tests \
--disable-full-test-suite \
--with-p11-kit
make
}
check() {
make check
}
package() {
make -j1 DESTDIR="$pkgdir" install
}
dane() {
pkgdesc="$pkgdesc (DNS DANE support library)"
mkdir -p "$subpkgdir"/usr/bin
mkdir -p "$subpkgdir"/usr/lib
mv "$pkgdir"/usr/bin/danetool "$subpkgdir"/usr/bin/
mv "$pkgdir"/usr/lib/libgnutls-dane* "$subpkgdir"/usr/lib/
}
utils() {
pkgdesc="Command line tools for TLS protocol"
mkdir -p "$subpkgdir"/usr/
mv "$pkgdir"/usr/bin "$subpkgdir"/usr/
}
xx() {
pkgdesc="The C++ interface to GnuTLS"
mkdir -p "$subpkgdir"/usr/lib
mv "$pkgdir"/usr/lib/lib*xx.so.* "$subpkgdir"/usr/lib/
}
sha512sums="72c78d7fcb024393c1d15f2a1856608ae4460ba43cc5bbbb4c29b80508cae6cb822df4638029de2363437d110187e0a3cc19a7288c3b2f44b2f648399a028438 gnutls-3.6.16.tar.xz
abc24ee59cc67805fe953535b0bae33080fc8b0bf788304377f6d10ec8c162c4cf203a69c98a4ba3483b4c60ed7a204433cc7db9b8190eddb0d68f6fb6dad52d gnulib-tests-dont-require-gpg-passphrase.patch
25400be364c1f27b88451002a471cbf841b9738dd93c42dcbeaf7644c3deea6afc85300b40d5ae32d29dc4d441237e8b311f3e07f0af2fb4788701ee4e240c0f disable-certtool-test.patch"
|
