[gentoo-commits] repo/gentoo:master commit in: app-arch/unzip/

Wed, 24 Aug 2022 19:20:17 -0700 

commit:     bff42a923fb9b8ce5af167cc3032420d4a666307
Author:     Sam James <sam <AT> gentoo <DOT> org>
AuthorDate: Thu Aug 25 02:18:16 2022 +0000
Commit:     Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Thu Aug 25 02:19:14 2022 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=bff42a92

app-arch/unzip: add 6.0_p27

Contains patches for CVE-2022-0529, CVE-2022-0530 (bug 831190) and
for a unicode issue which *might* be CVE-2021-4217 (bug 866386).

Bug: https://bugs.gentoo.org/866386
Bug: https://bugs.gentoo.org/831190
Signed-off-by: Sam James <sam <AT> gentoo.org>

 app-arch/unzip/Manifest             |  1 +
 app-arch/unzip/unzip-6.0_p27.ebuild | 93 +++++++++++++++++++++++++++++++++++++
 2 files changed, 94 insertions(+)

diff --git a/app-arch/unzip/Manifest b/app-arch/unzip/Manifest
index 8f65ff09a28d..a3b8d1ff3cc5 100644
--- a/app-arch/unzip/Manifest
+++ b/app-arch/unzip/Manifest
@@ -1,2 +1,3 @@
 DIST unzip60.tar.gz 1376845 BLAKE2B 
5016d300b4452018a391f4ebc03c6960c068df400a0407c0c60bd7bb5ec5012031f916d8b204a6149ba291c2c35beba40d9b43c76fc093026e79471329ab0e47
 SHA512 
0694e403ebc57b37218e00ec1a406cae5cc9c5b52b6798e0d4590840b6cdbf9ddc0d9471f67af783e960f8fa2e620394d51384257dca23d06bcd90224a80ce5d
 DIST unzip_6.0-26.debian.tar.xz 23708 BLAKE2B 
7655396df2f8c4443bbd37a2fab590f1e66b3b8531871a6d95f281ac702e64a0e602f2412a58ff2addf4ce9cae8d146af650a18b02919d120c9db6c49df480b5
 SHA512 
9a56e400ad0984f87c7ee0548429349be549e35a3cae4c9acb88a8fb97a1d1fbd116cfa3292622ad8b2c67ffe79ae268861ddec1269993ba98f1a6a411b7611f
+DIST unzip_6.0-27.debian.tar.xz 24980 BLAKE2B 
e53a96f12af0cf5227600c73a35003484fca5de138cd37991eb1eb25b97b80371c3a566d989feeb04deb1a93acd9444253b091cd7e920b23520c87c5f5a94eeb
 SHA512 
e1e605f023c7b314a6c5b2857a3bd630350df2d7e4bf6bb38ab8594f967336384666b4db8afad931251b85261ee4e2c38d78641c74ac7e5fd02523f26e92ddb2

diff --git a/app-arch/unzip/unzip-6.0_p27.ebuild 
b/app-arch/unzip/unzip-6.0_p27.ebuild
new file mode 100644
index 000000000000..bfa8c139f8c9
--- /dev/null
+++ b/app-arch/unzip/unzip-6.0_p27.ebuild
@@ -0,0 +1,93 @@
+# Copyright 1999-2022 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=8
+
+inherit flag-o-matic multilib toolchain-funcs
+
+MY_PV="${PV//.}"
+MY_PV="${MY_PV%_p*}"
+MY_P="${PN}${MY_PV}"
+
+DESCRIPTION="unzipper for pkzip-compressed files"
+HOMEPAGE="http://www.info-zip.org/";
+SRC_URI="mirror://sourceforge/infozip/${MY_P}.tar.gz
+       mirror://debian/pool/main/u/${PN}/${PN}_${PV/_p/-}.debian.tar.xz"
+
+LICENSE="Info-ZIP"
+SLOT="0"
+KEYWORDS="~alpha ~amd64 ~arm ~arm64 ~hppa ~ia64 ~loong ~m68k ~mips ~ppc ~ppc64 
~riscv ~s390 ~sparc ~x86 ~x64-cygwin ~amd64-linux ~x86-linux ~ppc-macos 
~x64-macos ~sparc-solaris ~sparc64-solaris ~x64-solaris ~x86-solaris"
+IUSE="bzip2 natspec unicode"
+
+DEPEND="bzip2? ( app-arch/bzip2 )
+       natspec? ( dev-libs/libnatspec )"
+RDEPEND="${DEPEND}"
+
+S="${WORKDIR}/${MY_P}"
+
+PATCHES=(
+       "${WORKDIR}"/debian/patches
+       "${FILESDIR}"/${PN}-6.0-no-exec-stack.patch
+       "${FILESDIR}"/${PN}-6.0-format-security.patch
+       
"${FILESDIR}"/${PN}-6.0-fix-false-overlap-detection-on-32bit-systems.patch
+)
+
+src_prepare() {
+       # bug #275244
+       use natspec && PATCHES+=( "${FILESDIR}"/${PN}-6.0-natspec.patch )
+
+       rm "${WORKDIR}"/debian/patches/02-this-is-debian-unzip.patch || die
+
+       default
+
+       sed -i -r \
+               -e '/^CFLAGS/d' \
+               -e '/CFLAGS/s:-O[0-9]?:$(CFLAGS) $(CPPFLAGS):' \
+               -e '/^STRIP/s:=.*:=true:' \
+               -e "s:\<CC *= *\"?g?cc2?\"?\>:CC=\"$(tc-getCC)\":" \
+               -e "s:\<LD *= *\"?(g?cc2?|ld)\"?\>:LD=\"$(tc-getCC)\":" \
+               -e "s:\<AS *= *\"?(g?cc2?|as)\"?\>:AS=\"$(tc-getCC)\":" \
+               -e 's:LF2 = -s:LF2 = :' \
+               -e 's:LF = :LF = $(LDFLAGS) :' \
+               -e 's:SL = :SL = $(LDFLAGS) :' \
+               -e 's:FL = :FL = $(LDFLAGS) :' \
+               -e "/^#L_BZ2/s:^$(use bzip2 && echo .)::" \
+               -e 's:$(AS) :$(AS) $(ASFLAGS) :g' \
+               unix/Makefile \
+               || die "sed unix/Makefile failed"
+
+       # Delete bundled code to make sure we don't use it.
+       rm -r bzip2 || die
+}
+
+src_configure() {
+       case ${CHOST} in
+               i?86*-*linux*)       TARGET="linux_asm" ;;
+               *linux*)             TARGET="linux_noasm" ;;
+               i?86*-*bsd* | \
+               i?86*-dragonfly*)    TARGET="freebsd" ;; # mislabelled bsd with 
x86 asm
+               *bsd* | *dragonfly*) TARGET="bsd" ;;
+               *-darwin*)           TARGET="macosx" ;;
+               *-solaris*)          TARGET="generic" ;;
+               *-cygwin*)           TARGET="generic" ;;
+               *) die "Unknown target; please update the ebuild to handle 
${CHOST}     " ;;
+       esac
+
+       [[ ${CHOST} == *linux* ]] && append-cppflags -DNO_LCHMOD
+       use bzip2 && append-cppflags -DUSE_BZIP2
+       use unicode && append-cppflags -DUNICODE_SUPPORT -DUNICODE_WCHAR 
-DUTF8_MAYBE_NATIVE -DUSE_ICONV_MAPPING
+
+       # bug #281473
+       append-cppflags -DLARGE_FILE_SUPPORT
+}
+
+src_compile() {
+       ASFLAGS="${ASFLAGS} $(get_abi_CFLAGS)" emake -f unix/Makefile ${TARGET}
+}
+
+src_install() {
+       dobin unzip funzip unzipsfx unix/zipgrep
+       dosym unzip /usr/bin/zipinfo
+       doman man/*.1
+       dodoc BUGS History* README ToDo WHERE
+}

Reply via email to