62ee86086c
Patches from direct URLs on github are not stable (comment headers change w/ server settings), hence why we usually use `fetchpatch`. In lieu of that, vendor the unstable patch.
29 lines
764 B
Nix
29 lines
764 B
Nix
{ stdenv, fetchurl, openssl, zlib, windows }:
|
|
|
|
stdenv.mkDerivation rec {
|
|
pname = "libssh2";
|
|
version = "1.9.0";
|
|
|
|
src = fetchurl {
|
|
url = "${meta.homepage}/download/${pname}-${version}.tar.gz";
|
|
sha256 = "1zfsz9nldakfz61d2j70pk29zlmj7w2vv46s9l3x2prhcgaqpyym";
|
|
};
|
|
|
|
outputs = [ "out" "dev" "devdoc" ];
|
|
|
|
buildInputs = [ openssl zlib ]
|
|
++ stdenv.lib.optional stdenv.hostPlatform.isMinGW windows.mingw_w64;
|
|
|
|
patches = [
|
|
# Not able to use fetchpatch here: infinite recursion
|
|
./CVE-2019-17498.patch
|
|
];
|
|
|
|
meta = with stdenv.lib; {
|
|
description = "A client-side C library implementing the SSH2 protocol";
|
|
homepage = "https://www.libssh2.org";
|
|
platforms = platforms.all;
|
|
license = licenses.bsd3;
|
|
maintainers = [ ];
|
|
};
|
|
}
|