From 893186f4fd4c1e697b2bc38aa8f268f236d5ea02 Mon Sep 17 00:00:00 2001 From: Joachim Fasting Date: Mon, 18 Apr 2016 17:08:53 +0200 Subject: [PATCH] kernel-headers: mark broken for grsecurity kernels Extracting headers from a grsecurity patched kernel triggers additional build steps that require gcc plugins. For this to work, we'd need to add gmp, libmpfr, and libmpc to the build inputs as well as run `make prepare` before installing the headers (lest the build fail due to missing files). Out-of-tree modules use kernel.dev and user space should use the Linux API headers used to build libc, not headers extracted from random kernels, so fixing this for grsecurity is pointless. --- pkgs/os-specific/linux/kernel-headers/default.nix | 2 ++ 1 file changed, 2 insertions(+) diff --git a/pkgs/os-specific/linux/kernel-headers/default.nix b/pkgs/os-specific/linux/kernel-headers/default.nix index a33d24fc847b..da9f30094746 100644 --- a/pkgs/os-specific/linux/kernel-headers/default.nix +++ b/pkgs/os-specific/linux/kernel-headers/default.nix @@ -1,5 +1,7 @@ { stdenv, kernel, perl }: +assert (!(kernel.features.grsecurity or false)); + let baseBuildFlags = [ "INSTALL_HDR_PATH=$(out)" "headers_install" ]; in stdenv.mkDerivation {