forked from mirrors/nixpkgs
52cd3538ff
Nixpkgs hasn't supported grsecurity kernels since 2017, so unless anybody is manually enabling the grsecurity feature to make these small kernel tweaks this is dead code. This means we don't actually support any "features" in the kernel common-config any more, but I've left the argument there because it's conceivable we could have some again in future.
186 lines
6.1 KiB
Nix
186 lines
6.1 KiB
Nix
{ buildPackages
|
|
, callPackage
|
|
, perl
|
|
, bison ? null
|
|
, flex ? null
|
|
, gmp ? null
|
|
, libmpc ? null
|
|
, mpfr ? null
|
|
, lib
|
|
, stdenv
|
|
|
|
, # The kernel source tarball.
|
|
src
|
|
|
|
, # The kernel version.
|
|
version
|
|
|
|
, # Allows overriding the default defconfig
|
|
defconfig ? null
|
|
|
|
, # Legacy overrides to the intermediate kernel config, as string
|
|
extraConfig ? ""
|
|
|
|
, # kernel intermediate config overrides, as a set
|
|
structuredExtraConfig ? {}
|
|
|
|
, # The version number used for the module directory
|
|
modDirVersion ? version
|
|
|
|
, # An attribute set whose attributes express the availability of
|
|
# certain features in this kernel. E.g. `{iwlwifi = true;}'
|
|
# indicates a kernel that provides Intel wireless support. Used in
|
|
# NixOS to implement kernel-specific behaviour.
|
|
features ? {}
|
|
|
|
, # Custom seed used for CONFIG_GCC_PLUGIN_RANDSTRUCT if enabled. This is
|
|
# automatically extended with extra per-version and per-config values.
|
|
randstructSeed ? ""
|
|
|
|
, # A list of patches to apply to the kernel. Each element of this list
|
|
# should be an attribute set {name, patch} where `name' is a
|
|
# symbolic name and `patch' is the actual patch. The patch may
|
|
# optionally be compressed with gzip or bzip2.
|
|
kernelPatches ? []
|
|
, ignoreConfigErrors ? stdenv.hostPlatform.linux-kernel.name != "pc" ||
|
|
stdenv.hostPlatform != stdenv.buildPlatform
|
|
, extraMeta ? {}
|
|
|
|
, isZen ? false
|
|
, isLibre ? false
|
|
, isHardened ? false
|
|
|
|
# easy overrides to stdenv.hostPlatform.linux-kernel members
|
|
, autoModules ? stdenv.hostPlatform.linux-kernel.autoModules
|
|
, preferBuiltin ? stdenv.hostPlatform.linux-kernel.preferBuiltin or false
|
|
, kernelArch ? stdenv.hostPlatform.linuxArch
|
|
|
|
, ...
|
|
}:
|
|
|
|
# Note: this package is used for bootstrapping fetchurl, and thus
|
|
# cannot use fetchpatch! All mutable patches (generated by GitHub or
|
|
# cgit) that are needed here should be included directly in Nixpkgs as
|
|
# files.
|
|
|
|
assert stdenv.isLinux;
|
|
|
|
let
|
|
# Combine the `features' attribute sets of all the kernel patches.
|
|
kernelFeatures = lib.fold (x: y: (x.features or {}) // y) ({
|
|
iwlwifi = true;
|
|
efiBootStub = true;
|
|
needsCifsUtils = true;
|
|
netfilterRPFilter = true;
|
|
ia32Emulation = true;
|
|
} // features) kernelPatches;
|
|
|
|
commonStructuredConfig = import ./common-config.nix {
|
|
inherit lib stdenv version;
|
|
|
|
features = kernelFeatures; # Ensure we know of all extra patches, etc.
|
|
};
|
|
|
|
intermediateNixConfig = configfile.moduleStructuredConfig.intermediateNixConfig
|
|
# extra config in legacy string format
|
|
+ extraConfig
|
|
+ stdenv.hostPlatform.linux-kernel.extraConfig or "";
|
|
|
|
structuredConfigFromPatches =
|
|
map ({extraStructuredConfig ? {}, ...}: {settings=extraStructuredConfig;}) kernelPatches;
|
|
|
|
# appends kernel patches extraConfig
|
|
kernelConfigFun = baseConfigStr:
|
|
let
|
|
configFromPatches =
|
|
map ({extraConfig ? "", ...}: extraConfig) kernelPatches;
|
|
in lib.concatStringsSep "\n" ([baseConfigStr] ++ configFromPatches);
|
|
|
|
configfile = stdenv.mkDerivation {
|
|
inherit ignoreConfigErrors autoModules preferBuiltin kernelArch;
|
|
pname = "linux-config";
|
|
inherit version;
|
|
|
|
generateConfig = ./generate-config.pl;
|
|
|
|
kernelConfig = kernelConfigFun intermediateNixConfig;
|
|
passAsFile = [ "kernelConfig" ];
|
|
|
|
depsBuildBuild = [ buildPackages.stdenv.cc ];
|
|
nativeBuildInputs = [ perl gmp libmpc mpfr ]
|
|
++ lib.optionals (lib.versionAtLeast version "4.16") [ bison flex ];
|
|
|
|
platformName = stdenv.hostPlatform.linux-kernel.name;
|
|
# e.g. "defconfig"
|
|
kernelBaseConfig = if defconfig != null then defconfig else stdenv.hostPlatform.linux-kernel.baseConfig;
|
|
# e.g. "bzImage"
|
|
kernelTarget = stdenv.hostPlatform.linux-kernel.target;
|
|
|
|
prePatch = kernel.prePatch + ''
|
|
# Patch kconfig to print "###" after every question so that
|
|
# generate-config.pl from the generic builder can answer them.
|
|
sed -e '/fflush(stdout);/i\printf("###");' -i scripts/kconfig/conf.c
|
|
'';
|
|
|
|
preUnpack = kernel.preUnpack or "";
|
|
|
|
inherit (kernel) src patches;
|
|
|
|
buildPhase = ''
|
|
export buildRoot="''${buildRoot:-build}"
|
|
|
|
# Get a basic config file for later refinement with $generateConfig.
|
|
make -C . O="$buildRoot" $kernelBaseConfig \
|
|
ARCH=$kernelArch \
|
|
HOSTCC=${buildPackages.stdenv.cc.targetPrefix}gcc \
|
|
HOSTCXX=${buildPackages.stdenv.cc.targetPrefix}g++
|
|
|
|
# Create the config file.
|
|
echo "generating kernel configuration..."
|
|
ln -s "$kernelConfigPath" "$buildRoot/kernel-config"
|
|
DEBUG=1 ARCH=$kernelArch KERNEL_CONFIG="$buildRoot/kernel-config" AUTO_MODULES=$autoModules \
|
|
PREFER_BUILTIN=$preferBuiltin BUILD_ROOT="$buildRoot" SRC=. perl -w $generateConfig
|
|
'';
|
|
|
|
installPhase = "mv $buildRoot/.config $out";
|
|
|
|
enableParallelBuilding = true;
|
|
|
|
passthru = rec {
|
|
|
|
module = import ../../../../nixos/modules/system/boot/kernel_config.nix;
|
|
# used also in apache
|
|
# { modules = [ { options = res.options; config = svc.config or svc; } ];
|
|
# check = false;
|
|
# The result is a set of two attributes
|
|
moduleStructuredConfig = (lib.evalModules {
|
|
modules = [
|
|
module
|
|
{ settings = commonStructuredConfig; _file = "pkgs/os-specific/linux/kernel/common-config.nix"; }
|
|
{ settings = structuredExtraConfig; _file = "structuredExtraConfig"; }
|
|
]
|
|
++ structuredConfigFromPatches
|
|
;
|
|
}).config;
|
|
|
|
structuredConfig = moduleStructuredConfig.settings;
|
|
};
|
|
}; # end of configfile derivation
|
|
|
|
kernel = (callPackage ./manual-config.nix {}) {
|
|
inherit version modDirVersion src kernelPatches randstructSeed lib stdenv extraMeta configfile;
|
|
|
|
config = { CONFIG_MODULES = "y"; CONFIG_FW_LOADER = "m"; };
|
|
};
|
|
|
|
passthru = {
|
|
features = kernelFeatures;
|
|
inherit commonStructuredConfig isZen isHardened isLibre;
|
|
isXen = lib.warn "The isXen attribute is deprecated. All Nixpkgs kernels that support it now have Xen enabled." true;
|
|
kernelOlder = lib.versionOlder version;
|
|
kernelAtLeast = lib.versionAtLeast version;
|
|
passthru = kernel.passthru // (removeAttrs passthru [ "passthru" ]);
|
|
};
|
|
|
|
in lib.extendDerivation true passthru kernel
|