mirror of
https://gitlab.alpinelinux.org/alpine/aports.git
synced 2026-01-01 23:01:35 +01:00
151 lines
4.7 KiB
Plaintext
151 lines
4.7 KiB
Plaintext
# Maintainer: Natanael Copa <ncopa@alpinelinux.org>
|
|
|
|
_flavor=grsec
|
|
pkgname=linux-${_flavor}
|
|
pkgver=3.0.8
|
|
_kernver=3.0
|
|
pkgrel=1
|
|
pkgdesc="Linux kernel with grsecurity"
|
|
url=http://grsecurity.net
|
|
depends="mkinitfs linux-firmware"
|
|
makedepends="perl installkernel bash gmp-dev"
|
|
options="!strip"
|
|
_config=${config:-kernelconfig.${CARCH}}
|
|
install=
|
|
source="ftp://ftp.kernel.org/pub/linux/kernel/v3.0/linux-$_kernver.tar.bz2
|
|
ftp://ftp.kernel.org/pub/linux/kernel/v3.0/patch-$pkgver.bz2
|
|
grsecurity-2.2.2-3.0.8-201110250925.patch
|
|
grsec-timblogiw-noconst.patch
|
|
|
|
0001-ip_gre-dont-increase-dev-needed_headroom-on-a-live-d.patch
|
|
0001-ipv4-fix-ipsec-forward-performance-regression.patch
|
|
0004-arp-flush-arp-cache-on-device-change.patch
|
|
|
|
kernelconfig.x86
|
|
kernelconfig.x86_64
|
|
"
|
|
subpackages="$pkgname-dev"
|
|
arch="x86 x86_64 arm"
|
|
license="GPL-2"
|
|
|
|
_abi_release=${pkgver}-${_flavor}
|
|
|
|
prepare() {
|
|
local _patch_failed=
|
|
cd "$srcdir"/linux-$_kernver
|
|
if [ "$_kernver" != "$pkgver" ]; then
|
|
bunzip2 -c < "$srcdir"/patch-$pkgver.bz2 | patch -p1 -N || return 1
|
|
fi
|
|
|
|
# first apply patches in specified order
|
|
for i in $source; do
|
|
case $i in
|
|
*.patch)
|
|
msg "Applying $i..."
|
|
if ! patch -s -p1 -N -i "$srcdir"/$i; then
|
|
echo $i >>failed
|
|
_patch_failed=1
|
|
fi
|
|
;;
|
|
esac
|
|
done
|
|
|
|
if ! [ -z "$_patch_failed" ]; then
|
|
error "The following patches failed:"
|
|
cat failed
|
|
return 1
|
|
fi
|
|
|
|
mkdir -p "$srcdir"/build
|
|
cp "$srcdir"/$_config "$srcdir"/build/.config || return 1
|
|
make -C "$srcdir"/linux-$_kernver O="$srcdir"/build HOSTCC="${CC:-gcc}" \
|
|
silentoldconfig
|
|
}
|
|
|
|
# this is so we can do: 'abuild menuconfig' to reconfigure kernel
|
|
menuconfig() {
|
|
cd "$srcdir"/build || return 1
|
|
make menuconfig
|
|
cp .config "$startdir"/$_config
|
|
}
|
|
|
|
build() {
|
|
cd "$srcdir"/build
|
|
export GCC_SPECS=/usr/share/gcc/hardenednopie.specs
|
|
make CC="${CC:-gcc}" \
|
|
KBUILD_BUILD_VERSION="$((pkgrel + 1 ))-Alpine" \
|
|
|| return 1
|
|
}
|
|
|
|
package() {
|
|
cd "$srcdir"/build
|
|
mkdir -p "$pkgdir"/boot "$pkgdir"/lib/modules
|
|
make -j1 modules_install firmware_install install \
|
|
INSTALL_MOD_PATH="$pkgdir" \
|
|
INSTALL_PATH="$pkgdir"/boot \
|
|
|| return 1
|
|
|
|
rm -f "$pkgdir"/lib/modules/${_abi_release}/build \
|
|
"$pkgdir"/lib/modules/${_abi_release}/source
|
|
rm -rf "$pkgdir"/lib/firmware
|
|
|
|
install -D include/config/kernel.release \
|
|
"$pkgdir"/usr/share/kernel/$_flavor/kernel.release
|
|
}
|
|
|
|
dev() {
|
|
# copy the only the parts that we really need for build 3rd party
|
|
# kernel modules and install those as /usr/src/linux-headers,
|
|
# simlar to what ubuntu does
|
|
#
|
|
# this way you dont need to install the 300-400 kernel sources to
|
|
# build a tiny kernel module
|
|
#
|
|
pkgdesc="Headers and script for third party modules for grsec kernel"
|
|
local dir="$subpkgdir"/usr/src/linux-headers-${_abi_release}
|
|
|
|
# first we import config, run prepare to set up for building
|
|
# external modules, and create the scripts
|
|
mkdir -p "$dir"
|
|
cp "$srcdir"/$_config "$dir"/.config
|
|
make -j1 -C "$srcdir"/linux-$_kernver O="$dir" HOSTCC="${CC:-gcc}" \
|
|
silentoldconfig prepare modules_prepare scripts
|
|
|
|
# remove the stuff that poits to real sources. we want 3rd party
|
|
# modules to believe this is the soruces
|
|
rm "$dir"/Makefile "$dir"/source
|
|
|
|
# copy the needed stuff from real sources
|
|
#
|
|
# this is taken from ubuntu kernel build script
|
|
# http://kernel.ubuntu.com/git?p=ubuntu/ubuntu-jaunty.git;a=blob;f=debian/rules.d/3-binary-indep.mk;hb=HEAD
|
|
cd "$srcdir"/linux-$_kernver
|
|
find . -path './include/*' -prune -o -path './scripts/*' -prune \
|
|
-o -type f \( -name 'Makefile*' -o -name 'Kconfig*' \
|
|
-o -name 'Kbuild*' -o -name '*.sh' -o -name '*.pl' \
|
|
-o -name '*.lds' \) | cpio -pdm "$dir"
|
|
cp -a drivers/media/dvb/dvb-core/*.h "$dir"/drivers/media/dvb/dvb-core
|
|
cp -a drivers/media/video/*.h "$dir"/drivers/media/video
|
|
cp -a drivers/media/dvb/frontends/*.h "$dir"/drivers/media/dvb/frontends
|
|
cp -a scripts include "$dir"
|
|
find $(find arch -name include -type d -print) -type f \
|
|
| cpio -pdm "$dir"
|
|
|
|
install -Dm644 "$srcdir"/build/Module.symvers \
|
|
"$dir"/Module.symvers
|
|
|
|
mkdir -p "$subpkgdir"/lib/modules/${_abi_release}
|
|
ln -sf /usr/src/linux-headers-${_abi_release} \
|
|
"$subpkgdir"/lib/modules/${_abi_release}/build
|
|
}
|
|
|
|
md5sums="398e95866794def22b12dfbc15ce89c0 linux-3.0.tar.bz2
|
|
49618d8c7a71549c8870eb709c7d3f81 patch-3.0.8.bz2
|
|
5015a2afce7d3665bf74e0896529fb90 grsecurity-2.2.2-3.0.8-201110250925.patch
|
|
c41cf0ee9794f393423c6b2093072260 grsec-timblogiw-noconst.patch
|
|
ebb99ef6ad8cd2d9fd8f49d5c5849057 0001-ip_gre-dont-increase-dev-needed_headroom-on-a-live-d.patch
|
|
b27bc150f7a3932de28fcb8803809cbc 0001-ipv4-fix-ipsec-forward-performance-regression.patch
|
|
776adeeb5272093574f8836c5037dd7d 0004-arp-flush-arp-cache-on-device-change.patch
|
|
0134b22fc2c95106803f4043cffed087 kernelconfig.x86
|
|
d97d1808eebdfb97734dccfbcaea35f2 kernelconfig.x86_64"
|