141ec69812
- Fix CVE-2019-20044: In Zsh before 5.8, attackers able to execute commands can regain privileges dropped by the --no-PRIVILEGED option. Zsh fails to overwrite the saved uid, so the original privileges can be restored by executing MODULE_PATH=/dir/with/module zmodload with a module that calls setuid(). - Update indentation of hash file (two spaces) Signed-off-by: Fabrice Fontaine <fontaine.fabrice@gmail.com> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
53 lines
1.4 KiB
Makefile
53 lines
1.4 KiB
Makefile
################################################################################
|
|
#
|
|
# zsh
|
|
#
|
|
################################################################################
|
|
|
|
ZSH_VERSION = 5.8
|
|
ZSH_SITE = http://www.zsh.org/pub
|
|
ZSH_SOURCE = zsh-$(ZSH_VERSION).tar.xz
|
|
ZSH_DEPENDENCIES = ncurses
|
|
ZSH_CONF_OPTS = --bindir=/bin
|
|
ZSH_CONF_ENV = zsh_cv_sys_nis=no zsh_cv_sys_nis_plus=no
|
|
ZSH_LICENSE = MIT-like
|
|
ZSH_LICENSE_FILES = LICENCE
|
|
|
|
ifeq ($(BR2_PACKAGE_GDBM),y)
|
|
ZSH_CONF_OPTS += --enable-gdbm
|
|
ZSH_DEPENDENCIES += gdbm
|
|
else
|
|
ZSH_CONF_OPTS += --disable-gdbm
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_LIBCAP),y)
|
|
ZSH_CONF_OPTS += --enable-cap
|
|
ZSH_DEPENDENCIES += libcap
|
|
else
|
|
ZSH_CONF_OPTS += --disable-cap
|
|
endif
|
|
|
|
ifeq ($(BR2_PACKAGE_PCRE),y)
|
|
ZSH_CONF_OPTS += --enable-pcre
|
|
ZSH_CONF_ENV += ac_cv_prog_PCRECONF=$(STAGING_DIR)/usr/bin/pcre-config
|
|
ZSH_DEPENDENCIES += pcre
|
|
else
|
|
ZSH_CONF_OPTS += --disable-pcre
|
|
endif
|
|
|
|
# Add /bin/zsh to /etc/shells otherwise some login tools like dropbear
|
|
# can reject the user connection. See man shells.
|
|
define ZSH_ADD_ZSH_TO_SHELLS
|
|
grep -qsE '^/bin/zsh$$' $(TARGET_DIR)/etc/shells \
|
|
|| echo "/bin/zsh" >> $(TARGET_DIR)/etc/shells
|
|
endef
|
|
ZSH_TARGET_FINALIZE_HOOKS += ZSH_ADD_ZSH_TO_SHELLS
|
|
|
|
# Remove versioned zsh-x.y.z binary taking up space
|
|
define ZSH_TARGET_INSTALL_FIXUPS
|
|
rm -f $(TARGET_DIR)/bin/zsh-$(ZSH_VERSION)
|
|
endef
|
|
ZSH_POST_INSTALL_TARGET_HOOKS += ZSH_TARGET_INSTALL_FIXUPS
|
|
|
|
$(eval $(autotools-package))
|