2016-09-25 15:14:52 +02:00
|
|
|
{ stdenv, lib, fetchurl, fetchpatch, oniguruma }:
|
|
|
|
|
|
|
|
stdenv.mkDerivation rec {
|
|
|
|
name = "jq-${version}";
|
|
|
|
version="1.5";
|
|
|
|
|
|
|
|
src = fetchurl {
|
2016-09-26 15:37:25 +02:00
|
|
|
url="https://github.com/stedolan/jq/releases/download/jq-${version}/jq-${version}.tar.gz";
|
2015-10-08 20:56:21 +02:00
|
|
|
sha256="0g29kyz4ykasdcrb0zmbrp2jqs9kv1wz9swx849i2d1ncknbzln4";
|
2013-05-20 09:17:20 +02:00
|
|
|
};
|
2016-09-25 15:14:52 +02:00
|
|
|
|
|
|
|
buildInputs = [ oniguruma ];
|
|
|
|
|
|
|
|
patches = [
|
|
|
|
(fetchpatch {
|
|
|
|
name = "CVE-2015-8863.patch";
|
|
|
|
url = https://github.com/stedolan/jq/commit/8eb1367ca44e772963e704a700ef72ae2e12babd.diff;
|
|
|
|
sha256 = "18bjanzvklfzlzzd690y88725l7iwl4f6wnr429na5pfmircbpvh";
|
|
|
|
})
|
|
|
|
(fetchpatch {
|
|
|
|
name = "CVE-2016-4074.patch";
|
|
|
|
url = https://patch-diff.githubusercontent.com/raw/stedolan/jq/pull/1214.diff;
|
|
|
|
sha256 = "1w8bapnyp56di6p9casbfczfn8258rw0z16grydavdjddfm280l9";
|
|
|
|
})
|
2013-05-20 09:17:20 +02:00
|
|
|
];
|
2016-09-25 15:14:52 +02:00
|
|
|
patchFlags = [ "-p2" ]; # `src` subdir was introduced after v1.5 was released
|
2014-08-13 14:22:38 +02:00
|
|
|
|
|
|
|
# jq is linked to libjq:
|
|
|
|
configureFlags = [
|
|
|
|
"LDFLAGS=-Wl,-rpath,\\\${libdir}"
|
|
|
|
];
|
2016-09-25 15:14:52 +02:00
|
|
|
|
2013-05-20 09:17:20 +02:00
|
|
|
meta = {
|
|
|
|
description = ''A lightweight and flexible command-line JSON processor'';
|
2016-09-25 15:14:52 +02:00
|
|
|
license = lib.licenses.mit;
|
|
|
|
maintainers = with lib.maintainers; [ raskin ];
|
|
|
|
platforms = with lib.platforms; linux ++ darwin;
|
2016-09-26 15:37:25 +02:00
|
|
|
downloadPage = "http://stedolan.github.io/jq/download/";
|
|
|
|
updateWalker = true;
|
|
|
|
inherit version;
|
2013-05-20 09:17:20 +02:00
|
|
|
};
|
|
|
|
}
|