mirror of
git://slackware.nl/current.git
synced 2025-01-24 08:01:36 +01:00
d17567f359
patches/packages/emacs-27.2-x86_64-2_slack15.0.txz: Rebuilt. GNU Emacs through 28.2 allows attackers to execute commands via shell metacharacters in the name of a source-code file, because lib-src/etags.c uses the system C library function in its implementation of the ctags program. For example, a victim may use the "ctags *" command (suggested in the ctags documentation) in a situation where the current working directory has contents that depend on untrusted input. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-45939 (* Security fix *) patches/packages/vim-9.0.1034-x86_64-1_slack15.0.txz: Upgraded. This update fixes various security issues such as a heap-based buffer overflow and use after free. For more information, see: https://www.cve.org/CVERecord?id=CVE-2022-4141 https://www.cve.org/CVERecord?id=CVE-2022-3591 https://www.cve.org/CVERecord?id=CVE-2022-3520 https://www.cve.org/CVERecord?id=CVE-2022-3491 https://www.cve.org/CVERecord?id=CVE-2022-4292 https://www.cve.org/CVERecord?id=CVE-2022-4293 (* Security fix *) patches/packages/vim-gvim-9.0.1034-x86_64-1_slack15.0.txz: Upgraded.
231 lines
7.4 KiB
Bash
Executable file
231 lines
7.4 KiB
Bash
Executable file
#!/bin/bash
|
|
|
|
# Copyright 2008, 2009, 2010, 2011, 2012, 2014, 2015, 2017, 2018, 2019, 2020, 2021 Patrick J. Volkerding, Sebeka, MN, USA
|
|
# All rights reserved.
|
|
#
|
|
# Redistribution and use of this script, with or without modification, is
|
|
# permitted provided that the following conditions are met:
|
|
#
|
|
# 1. Redistributions of this script must retain the above copyright
|
|
# notice, this list of conditions and the following disclaimer.
|
|
#
|
|
# THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
|
|
# WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
|
|
# MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO
|
|
# EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
|
|
# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO,
|
|
# PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS;
|
|
# OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,
|
|
# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR
|
|
# OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF
|
|
# ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
|
|
|
# Written by Dušan Stefanović (stefanovic.dusan@gmail.com)
|
|
# Modified by Robby Workman <rworkman@slackbuilds.org>
|
|
# Modified by Patrick Volkerding <volkerdi@slackware.com>
|
|
|
|
cd $(dirname $0) ; CWD=$(pwd)
|
|
|
|
PKGNAM=emacs
|
|
BUILD=${BUILD:-2_slack15.0}
|
|
# Determine version number the tarball is labeled with:
|
|
TARBALLVER=${TARBALLVER:-$(echo $PKGNAM-*.tar.xz | rev | cut -f 3- -d . | cut -f 1 -d - | rev)}
|
|
# OK, now what's being used as the source directory version number... account
|
|
# for subversions a, b, c, and d in the $TARBALLVER:
|
|
SRCDIRVER=$(echo $TARBALLVER | tr -d a | tr -d b | tr -d c | tr -d d)
|
|
# I guess this is the main "version"... we don't use this variable anywhere below, but
|
|
# defining it is traditional:
|
|
VERSION=$SRCDIRVER
|
|
|
|
# Automatically determine the architecture we're building on:
|
|
if [ -z "$ARCH" ]; then
|
|
case "$(uname -m)" in
|
|
i?86) ARCH=i586 ;;
|
|
arm*) readelf /usr/bin/file -A | egrep -q "Tag_CPU.*[4,5]" && ARCH=arm || ARCH=armv7hl ;;
|
|
# Unless $ARCH is already set, use uname -m for all other archs:
|
|
*) ARCH=$(uname -m) ;;
|
|
esac
|
|
export ARCH
|
|
fi
|
|
|
|
# If the variable PRINT_PACKAGE_NAME is set, then this script will report what
|
|
# the name of the created package would be, and then exit. This information
|
|
# could be useful to other scripts.
|
|
if [ ! -z "${PRINT_PACKAGE_NAME}" ]; then
|
|
echo "$PKGNAM-$TARBALLVER-$ARCH-$BUILD.txz"
|
|
exit 0
|
|
fi
|
|
|
|
if [ "$ARCH" = "i586" ]; then
|
|
SLKCFLAGS="-O2 -march=i586 -mtune=i686"
|
|
elif [ "$ARCH" = "i686" ]; then
|
|
SLKCFLAGS="-O2 -march=i686 -mtune=i686"
|
|
elif [ "$ARCH" = "s390" ]; then
|
|
SLKCFLAGS="-O2"
|
|
elif [ "$ARCH" = "x86_64" ]; then
|
|
SLKCFLAGS="-O2 -fPIC"
|
|
elif [ "$ARCH" = "armv7hl" ]; then
|
|
SLKCFLAGS="-O2 -march=armv7-a -mfpu=vfpv3-d16"
|
|
else
|
|
SLKCFLAGS="-O2"
|
|
fi
|
|
|
|
# Without this, the emacs-no-x11 binary won't work with the installed files:
|
|
PDUMPER=${PDUMPER:-"--with-pdumper=no --with-dumping=unexec"}
|
|
|
|
# Don't use icecream:
|
|
PATH=$(echo $PATH | sed "s|/usr/libexec/icecc/bin||g" | tr -s : | sed "s/^://g" | sed "s/:$//g")
|
|
|
|
NUMJOBS=${NUMJOBS:-" -j$(expr $(nproc) + 1) "}
|
|
|
|
TMP=${TMP:-/tmp}
|
|
PKG=$TMP/package-$PKGNAM
|
|
|
|
rm -rf $PKG
|
|
mkdir -p $TMP $PKG
|
|
cd $TMP
|
|
rm -rf $PKGNAM-$TARBALLVER
|
|
tar xvf $CWD/$PKGNAM-$TARBALLVER.tar.xz || exit 1
|
|
cd $PKGNAM-$SRCDIRVER || exit 1
|
|
|
|
zcat $CWD/d48bb4874bc6cd3e69c7a15fc3c91cc141025c51.patch.gz | patch -p1 --verbose || exit 1
|
|
|
|
chown -R root:root .
|
|
find . \
|
|
\( -perm 777 -o -perm 775 -o -perm 711 -o -perm 555 -o -perm 511 \) \
|
|
-exec chmod 755 {} \+ -o \
|
|
\( -perm 666 -o -perm 664 -o -perm 600 -o -perm 444 -o -perm 440 -o -perm 400 \) \
|
|
-exec chmod 644 {} \+
|
|
|
|
# The defaults are a little too worried about adding a few more K of pure
|
|
# memory given the amount available on modern systems:
|
|
sed -i "s/#define SYSTEM_PURESIZE_EXTRA 0/#define SYSTEM_PURESIZE_EXTRA 100000/g" src/puresize.h
|
|
|
|
#autoreconf -vif
|
|
|
|
CFLAGS="$SLKCFLAGS" \
|
|
CXXFLAGS="$SLKCFLAGS" \
|
|
./configure \
|
|
--prefix=/usr \
|
|
--sysconfdir=/etc \
|
|
--localstatedir=/var \
|
|
--program-prefix="" \
|
|
--program-suffix="" \
|
|
--mandir=/usr/man \
|
|
--infodir=/usr/info \
|
|
--without-gconf \
|
|
--without-gsettings \
|
|
--with-modules \
|
|
--with-x \
|
|
--with-x-toolkit=${X_TOOLKIT:-gtk3} \
|
|
$PDUMPER \
|
|
--build=${ARCH}-slackware-linux || exit 1
|
|
|
|
make $NUMJOBS || make || exit 1
|
|
make install DESTDIR=$PKG || exit 1
|
|
|
|
( cd $PKG/usr/bin
|
|
rm emacs
|
|
mv emacs-${SRCDIRVER} emacs-${TARBALLVER}-with-x11
|
|
)
|
|
|
|
# Also add a version of the binary that is not linked to X11:
|
|
cd $TMP
|
|
rm -rf $PKGNAM-$TARBALLVER
|
|
tar xvf $CWD/$PKGNAM-$TARBALLVER.tar.xz || exit 1
|
|
cd $PKGNAM-$SRCDIRVER || exit 1
|
|
|
|
zcat $CWD/d48bb4874bc6cd3e69c7a15fc3c91cc141025c51.patch.gz | patch -p1 --verbose || exit 1
|
|
|
|
chown -R root:root .
|
|
find . \
|
|
\( -perm 777 -o -perm 775 -o -perm 711 -o -perm 555 -o -perm 511 \) \
|
|
-exec chmod 755 {} \+ -o \
|
|
\( -perm 666 -o -perm 664 -o -perm 600 -o -perm 444 -o -perm 440 -o -perm 400 \) \
|
|
-exec chmod 644 {} \+
|
|
|
|
CFLAGS="$SLKCFLAGS" \
|
|
CXXFLAGS="$SLKCFLAGS" \
|
|
./configure \
|
|
--prefix=/usr \
|
|
--sysconfdir=/etc \
|
|
--localstatedir=/var \
|
|
--program-prefix="" \
|
|
--program-suffix="" \
|
|
--mandir=/usr/man \
|
|
--infodir=/usr/info \
|
|
--without-gconf \
|
|
--without-gsettings \
|
|
--with-modules \
|
|
--with-x=no \
|
|
$PDUMPER \
|
|
--build=${ARCH}-slackware-linux || exit 1
|
|
|
|
make $NUMJOBS || make || exit 1
|
|
|
|
# Install the non-x version:
|
|
cat src/emacs > $PKG/usr/bin/emacs-${TARBALLVER}-no-x11
|
|
chown root:root $PKG/usr/bin/emacs-${TARBALLVER}-no-x11
|
|
chmod 1755 $PKG/usr/bin/emacs-${TARBALLVER}-no-x11
|
|
|
|
# Create unversioned symlinks for both versions of emacs:
|
|
( cd $PKG/usr/bin
|
|
ln -sf emacs-${TARBALLVER}-with-x11 emacs-with-x11
|
|
ln -sf emacs-${TARBALLVER}-no-x11 emacs-no-x11
|
|
# Create a plain "emacs" symlink pointing to emacs-with-x11:
|
|
ln -sf emacs-with-x11 emacs
|
|
)
|
|
|
|
# Seems like this nonsense is finally obsolete:
|
|
if [ -d $PKG/var/games/emacs ]; then
|
|
# I don't care for broken permissions.
|
|
chmod 755 $PKG/var/games/emacs
|
|
chown -R root:games $PKG/var/games/emacs
|
|
chmod 664 $PKG/var/games/emacs/*
|
|
fi
|
|
|
|
# This avoids a collision with Exuberant Ctags...
|
|
mv $PKG/usr/bin/ctags $PKG/usr/bin/ctags-emacs
|
|
if [ -r $PKG/usr/man/man1/ctags.1 ]; then
|
|
mv $PKG/usr/man/man1/ctags.1 $PKG/usr/man/man1/ctags-emacs.1
|
|
elif [ -r $PKG/usr/man/man1/ctags.1.gz ]; then
|
|
mv $PKG/usr/man/man1/ctags.1.gz $PKG/usr/man/man1/ctags-emacs.1.gz
|
|
fi
|
|
|
|
find $PKG | xargs file | grep -e "executable" -e "shared object" \
|
|
| grep ELF | cut -f 1 -d : | xargs strip --strip-unneeded 2> /dev/null
|
|
|
|
( cd $PKG/usr/man
|
|
find . -type f -exec gzip -9 {} \+
|
|
for i in $(find . -type l) ; do ln -s $( readlink $i ).gz $i.gz ; rm $i ; done
|
|
)
|
|
|
|
( cd $PKG/usr/info
|
|
rm -f dir
|
|
gzip -9 *
|
|
)
|
|
|
|
mkdir -p $PKG/usr/doc/$PKGNAM-$TARBALLVER
|
|
cp -a \
|
|
AUTHORS COPYING* INSTALL README* \
|
|
$PKG/usr/doc/$PKGNAM-$TARBALLVER
|
|
|
|
# If there's a ChangeLog, installing at least part of the recent history
|
|
# is useful, but don't let it get totally out of control:
|
|
if [ -r ChangeLog ]; then
|
|
DOCSDIR=$(echo $PKG/usr/doc/${PKGNAM}-$TARBALLVER)
|
|
cat ChangeLog | head -n 1000 > $DOCSDIR/ChangeLog
|
|
touch -r ChangeLog $DOCSDIR/ChangeLog
|
|
fi
|
|
|
|
mkdir -p $PKG/install
|
|
cat $CWD/slack-desc > $PKG/install/slack-desc
|
|
zcat $CWD/doinst.sh.gz > $PKG/install/doinst.sh
|
|
|
|
# Tag packages that use a toolkit other than default (currently gtk3):
|
|
if [ -z "$TAG" ] && [ ! -z "$X_TOOLKIT" ]; then
|
|
TAG="_$X_TOOLKIT"
|
|
fi
|
|
|
|
cd $PKG
|
|
/sbin/makepkg -l y -c n $TMP/$PKGNAM-$TARBALLVER-$ARCH-$BUILD$TAG.txz
|