mirror of
https://github.com/NixOS/nixpkgs.git
synced 2024-12-25 03:17:13 +00:00
3c136e5fa4
Fixes CVE-2017-8283
57 lines
1.6 KiB
Nix
57 lines
1.6 KiB
Nix
{ stdenv, fetchurl, perl, zlib, bzip2, xz, makeWrapper }:
|
|
|
|
stdenv.mkDerivation rec {
|
|
name = "dpkg-${version}";
|
|
version = "1.18.24";
|
|
|
|
src = fetchurl {
|
|
url = "mirror://debian/pool/main/d/dpkg/dpkg_${version}.tar.xz";
|
|
sha256 = "1d6p22vk1b9v16q96mwaz9w2xr4ly28yamkh49md9gq67qfhhlyq";
|
|
};
|
|
|
|
configureFlags = [
|
|
"--disable-dselect"
|
|
"--with-admindir=/var/lib/dpkg"
|
|
"PERL_LIBDIR=$(out)/${perl.libPrefix}"
|
|
(stdenv.lib.optionalString stdenv.isDarwin "--disable-linker-optimisations")
|
|
(stdenv.lib.optionalString stdenv.isDarwin "--disable-start-stop-daemon")
|
|
];
|
|
|
|
preConfigure = ''
|
|
# Nice: dpkg has a circular dependency on itself. Its configure
|
|
# script calls scripts/dpkg-architecture, which calls "dpkg" in
|
|
# $PATH. It doesn't actually use its result, but fails if it
|
|
# isn't present, so make a dummy available.
|
|
touch $TMPDIR/dpkg
|
|
chmod +x $TMPDIR/dpkg
|
|
PATH=$TMPDIR:$PATH
|
|
|
|
for i in $(find . -name Makefile.in); do
|
|
substituteInPlace $i --replace "install-data-local:" "disabled:" ;
|
|
done
|
|
'';
|
|
|
|
buildInputs = [ perl zlib bzip2 xz ];
|
|
nativeBuildInputs = [ makeWrapper ];
|
|
|
|
postInstall =
|
|
''
|
|
for i in $out/bin/*; do
|
|
if head -n 1 $i | grep -q perl; then
|
|
wrapProgram $i --prefix PERL5LIB : $out/${perl.libPrefix}
|
|
fi
|
|
done
|
|
|
|
mkdir -p $out/etc/dpkg
|
|
cp -r scripts/t/origins $out/etc/dpkg
|
|
'';
|
|
|
|
meta = with stdenv.lib; {
|
|
description = "The Debian package manager";
|
|
homepage = https://wiki.debian.org/Teams/Dpkg;
|
|
license = licenses.gpl2Plus;
|
|
platforms = platforms.unix;
|
|
maintainers = with maintainers; [ mornfall nckx ];
|
|
};
|
|
}
|