# Contributor: Mika Havela <mika.havela@gmail.com>
# Maintainer: Mika Havela <mika.havela@gmail.com>
pkgname=zziplib
pkgver=0.13.69
pkgrel=2
pkgdesc="Lightweight library to easily extract data from zip files"
url="https://github.com/gdraheim/zziplib"
arch="all"
license="LGPL-2.0-or-later MPL-1.1"
makedepends="zlib-dev python2"
checkdepends="zip"
subpackages="$pkgname-dev $pkgname-doc $pkgname-utils"
source="zziplib-$pkgver.tar.gz::https://github.com/gdraheim/zziplib/archive/v$pkgver.tar.gz
	CVE-2018-17828.patch
	CVE-2018-16548.patch
	"

# secfixes:
#   0.13.69-r2:
#     - CVE-2018-16548
#     - CVE-2018-17828

build() {
	./configure \
		--prefix=/usr \
		--disable-static
	make
}

check() {
	make check
}

package() {
	make DESTDIR="$pkgdir" install
}

utils() {
	pkgdesc="Utilities for the zziplib library"
	install -d "$subpkgdir"/usr
	mv "$pkgdir"/usr/bin "$subpkgdir"/usr/
}

sha512sums="ade026289737f43ca92a8746818d87dd7618d473dbce159546ce9071c9e4cbe164a6b1c9efff16efb7aa0327b2ec6b34f3256c6bda19cd6e325703fffc810ef0  zziplib-0.13.69.tar.gz
9aef14fa0e531caafe18f836e0b34feee9a85e30da0bc5fe3dda5cf77b29c5d4e47c831dc419a59160aa68f288725f9c76dd3357bc0f2e9d62a8758a7d148d0b  CVE-2018-17828.patch
8d4c284d1e7b455cb5ecfc7990871fd4df6ee2ab59844f26ecdd94d1dcdb56105126913164678a2cb624b9be0e93b0d9e6fd8af7e2dcab05a66f0b0bd7c97a13  CVE-2018-16548.patch"