aports

Custom Alpine Linux aports

git clone https://git.8pit.net/aports.git

  1# Contributor: Sören Tempel <soeren+alpine@soeren-tempel.net>
  2# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
  3pkgname=wpa_supplicant
  4pkgver=2.10
  5pkgrel=12
  6pkgdesc="utility providing key negotiation for WPA wireless networks"
  7url="https://w1.fi/wpa_supplicant/"
  8arch="all"
  9options="!check" # has no tests
 10license="BSD-3-Clause"
 11subpackages="$pkgname-doc $pkgname-openrc"
 12makedepends="linux-headers openssl-dev>3 dbus-dev libnl3-dev"
 13source="https://w1.fi/releases/wpa_supplicant-$pkgver.tar.gz
 14	wpa_supplicant.initd
 15	wpa_supplicant.confd
 16	wpa_cli.confd
 17	wpa_cli.initd
 18
 19	CVE-2023-52160.patch
 20
 21	unsafe-renegotiation-1.patch
 22	unsafe-renegotiation-2.patch
 23
 24	0001-nl80211-add-extra-ies-only-if-allowed-by-driver.patch
 25	0002-AP-guard-FT-SAE-code-with-CONFIG_IEEE80211R_AP.patch
 26
 27	config
 28	wpa_cli.sh
 29	"
 30
 31# secfixes:
 32#   2.10-r11:
 33#     - CVE-2023-52160
 34#   2.9-r13:
 35#     - CVE-2021-30004
 36#   2.9-r12:
 37#     - CVE-2021-27803
 38#   2.9-r10:
 39#     - CVE-2021-0326
 40#   2.9-r5:
 41#     - CVE-2019-16275
 42#   2.7-r3:
 43#     - CVE-2019-11555
 44#   2.7-r2:
 45#     - CVE-2019-9494
 46#     - CVE-2019-9495
 47#     - CVE-2019-9497
 48#     - CVE-2019-9498
 49#     - CVE-2019-9499
 50#   2.6-r14:
 51#     - CVE-2018-14526
 52#   2.6-r7:
 53#     - CVE-2017-13077
 54#     - CVE-2017-13078
 55#     - CVE-2017-13079
 56#     - CVE-2017-13080
 57#     - CVE-2017-13081
 58#     - CVE-2017-13082
 59#     - CVE-2017-13086
 60#     - CVE-2017-13087
 61#     - CVE-2017-13088
 62
 63prepare() {
 64	default_prepare
 65
 66	# Copy our configuration file to the build directory
 67	cp "$srcdir"/config "$builddir"/wpa_supplicant/.config
 68}
 69
 70build() {
 71	export CFLAGS="$CFLAGS -flto=auto"
 72	cd "$builddir"/wpa_supplicant
 73	make LIBDIR=/lib BINDIR=/sbin
 74	make LIBDIR=/lib BINDIR=/sbin eapol_test
 75}
 76
 77package() {
 78	cd "$builddir"/wpa_supplicant
 79	make DESTDIR="$pkgdir" LIBDIR=/lib BINDIR=/sbin install
 80	install -Dm644 wpa_supplicant.conf \
 81		"$pkgdir"/usr/share/doc/wpa_supplicant/examples/wpa_supplicant.conf
 82	install -Dm755 "$srcdir"/wpa_cli.sh \
 83		"$pkgdir"/etc/wpa_supplicant/wpa_cli.sh
 84
 85	local man=
 86	for man in doc/docbook/*.?; do
 87		install -Dm644 "$man" \
 88			"$pkgdir"/usr/share/man/man${man##*.}/${man##*/}
 89	done
 90	install -Dm755 eapol_test "$pkgdir"/sbin/eapol_test
 91
 92	# openrc runscripts
 93	install -Dm755 "$srcdir"/wpa_supplicant.initd \
 94		"$pkgdir"/etc/init.d/wpa_supplicant
 95	install -Dm644 "$srcdir"/wpa_supplicant.confd \
 96		"$pkgdir"/etc/conf.d/wpa_supplicant
 97	install -Dm755 "$srcdir"/wpa_cli.initd \
 98		"$pkgdir"/etc/init.d/wpa_cli
 99	install -Dm644 "$srcdir"/wpa_cli.confd \
100		"$pkgdir"/etc/conf.d/wpa_cli
101}
102
103sha512sums="
104021c2a48f45d39c1dc6557730be5debaee071bc0ff82a271638beee6e32314e353e49d39e2f0dc8dff6e094dcc7008cfe1c32d0c7a34a1a345a12a3f1c1e11a1  wpa_supplicant-2.10.tar.gz
105f822b22dd86343ac79c6eb6ca8b11ec46d246945c38f02a331ac5ed30d8e86b00bf1b048030d669c3b5e89cd989f4aab5ec382377bbd54e8ce570bdc59d5d63a  wpa_supplicant.initd
1062e173313df992b89f3fd57b63e846f82afbdbc27db01b862289e26f5e6c4d0b5a14371b582ef827e45f0063830c644d444911574e0aaeb16c24e95b5fa808d6e  wpa_supplicant.confd
107c3db077fa78dd296d90d07626cb4e684f87618a77ffd51c1ae04b47be7bc0db1e9a3e0f7442acef21c081f6bb782f150cbbd3d0bf245d6ab43f19da3899b53b9  wpa_cli.confd
108f4b9c86530a2b10cd50e6014c9bee1d143714ab9f86bf29119dcd2c86dec5239c356518a36147d6418e4eb31aa4a7df3e5c86647779d2b4626bffcfe6685f362  wpa_cli.initd
109955c219a9e4e3e89f7f880561755059ea9f1ea27f5a5ec9f6a5b7c29195b06123c8eecfba324f3695bdb8cb53c401745c3d030a97e133dd1730351dc36c92fec  CVE-2023-52160.patch
1109528735924faf876a7094de46760605e5e66e265187421a668be06dbf03d7b4db6b84cbad793fcd6bd614e3ba540f82f1f80660d75e8a6070eeb7e9abb54ed28  unsafe-renegotiation-1.patch
111a92ba3ed3f41022a8af9396d2b703ee47f78aa05c1fddb42919a7fe6a6fad71e3515c63457e97e252ae0a32c6c34d67ea6efe0278df1e141cf36e650237e5295  unsafe-renegotiation-2.patch
112fb328872087268056b035802f71df2f7af8d11699822fe68611201a07dc693c4fdb8c50dd4fd509ed6db4cca89f6003ce3303770951686a35633977f466f4fb5  0001-nl80211-add-extra-ies-only-if-allowed-by-driver.patch
113f8a5f5e18509b61ad6fb7ce78207c039fccfca6b71f494cbe9853bcb1b09025364554a45b6129a5b992f6327f72c8a97b660088d9c542f0e62a1c370a3c628a8  0002-AP-guard-FT-SAE-code-with-CONFIG_IEEE80211R_AP.patch
114abe1bbb9e58072b2c8aa027366d8ab2cea48839d0000ded93d779cf4366bb951fa0bff41284e703094348195cd6933c933ffc2964053189bc6c90d011e6b3ee6  config
115212c4265afce2e72b95a32cd785612d6c3e821b47101ead154136d184ac4add01434ada6c87edbb9a98496552e76e1a4d79c6b5840e3a5cfe5e6d602fceae576  wpa_cli.sh
116"