thefossguy
/
nix-kernel-dev
1
0
Fork 0
Code Releases Activity
nix-kernel-dev/scripts/configure-kernel.sh

156 lines
5.5 KiB
Bash
Executable File
Raw Blame History

#!/usr/bin/env bash
set -xeu -o pipefail
function setup_rust_toolchain() {
RUSTUP_OVERRIDE_DIR_PATH="$(dirname "$(dirname "$PWD")")"
if [[ "${RUSTUP_OVERRIDE_DIR_PATH}" == *'/nix-kernel-dev' || "${RUSTUP_OVERRIDE_DIR_PATH}" == *'/freax' ]]; then
RUSTUP_OVERRIDE_SUFFIX="--path ${RUSTUP_OVERRIDE_DIR_PATH}"
fi
# shellcheck disable=SC2086
rustup override set "$(scripts/min-tool-version.sh rustc)" ${RUSTUP_OVERRIDE_SUFFIX}
rustup component add rust-src rustfmt clippy
cargo install --locked --version "$(scripts/min-tool-version.sh bindgen)" bindgen-cli
# shellcheck disable=SC2155
export RUST_LIB_SRC="$(rustc --print sysroot)/lib/rustlib/src/rust/library"
}
function enable_rust_config() {
if [[ "${BUILD_WITH_RUST}" == '1' ]] && [[ "${LLVM:-0}" == '1' ]]; then
setup_rust_toolchain
make rustavailable
make rust.config
./scripts/config --enable CONFIG_RUST
./scripts/config --enable CONFIG_RUST_OVERFLOW_CHECKS
./scripts/config --enable CONFIG_RUST_BUILD_ASSERT_ALLOW
if ! grep -q 'CONFIG_RUST=y' .config && ! grep -q 'CONFIG_RUST_OVERFLOW_CHECKS=y' .config; then
echo 'ERROR: building with Rust does not seem to be possible'
exit 4
fi
else
# shellcheck disable=SC2016
echo 'WARNING: $BUILD_WITH_RUST or $LLVM is unset, not building with Rust'
fi
}
function modify_kernel_config() {
# start with a "useful" base config
make olddefconfig
# built-in kernel config+headers
./scripts/config --enable CONFIG_IKCONFIG
./scripts/config --enable CONFIG_IKCONFIG_PROC
./scripts/config --enable CONFIG_IKHEADERS
# defconfig does not enable these
./scripts/config --module CONFIG_XFS_FS
./scripts/config --module CONFIG_ZRAM
# "de-branding" and "re-branding"
./scripts/config --disable CONFIG_LOCALVERSION_AUTO
./scripts/config --set-str CONFIG_BUILD_SALT ''
./scripts/config --set-str CONFIG_LOCALVERSION "${KERNEL_LOCALVERSION}"
# no need to have these keys, not a prod kernel
./scripts/config --disable CONFIG_MODULE_SIG
./scripts/config --disable CONFIG_MODULE_SIG_ALL
./scripts/config --set-str CONFIG_MODULE_SIG_KEY ''
./scripts/config --set-str CONFIG_SYSTEM_REVOCATION_KEYS ''
./scripts/config --set-str CONFIG_SYSTEM_TRUSTED_KEYS ''
# disable AEGIS-128 (ARM{,64} NEON})
# https://github.com/NixOS/nixpkgs/issues/74744
# plus, this kernel won't run in "prod", so this isn't even a "nice to have"
./scripts/config --disable CONFIG_CRYPTO_AEGIS128_SIMD
# debug options
./scripts/config --enable CONFIG_ARCH_WANT_FRAME_POINTERS
./scripts/config --enable CONFIG_DEBUG
./scripts/config --enable CONFIG_DEBUG_BUGVERBOSE
./scripts/config --enable CONFIG_DEBUG_DRIVER
./scripts/config --enable CONFIG_DEBUG_FS
./scripts/config --enable CONFIG_DEBUG_FS_ALLOW_ALL
./scripts/config --enable CONFIG_DEBUG_INFO
./scripts/config --enable CONFIG_DEBUG_KERNEL
./scripts/config --enable CONFIG_DEBUG_MISC
./scripts/config --enable CONFIG_DYNAMIC_DEBUG
./scripts/config --enable CONFIG_DYNAMIC_DEBUG_CORE
./scripts/config --enable CONFIG_FRAME_POINTER
./scripts/config --enable CONFIG_GDB_SCRIPTS
./scripts/config --enable CONFIG_KALLSYMS
./scripts/config --enable CONFIG_KASAN
./scripts/config --enable CONFIG_KGDB
./scripts/config --enable CONFIG_KGDB_KDB
./scripts/config --enable CONFIG_KGDB_SERIAL_CONSOLE
./scripts/config --enable CONFIG_KMSAN
./scripts/config --enable CONFIG_LOCK_TORTURE_TEST
./scripts/config --enable CONFIG_LOCKDEP
./scripts/config --enable CONFIG_LOCKUP_DETECTOR
./scripts/config --enable CONFIG_PRINTK_CALLER
./scripts/config --enable CONFIG_PRINTK_TIME
./scripts/config --enable CONFIG_PROVE_LOCKING
./scripts/config --enable CONFIG_STACK_VALIDATION
./scripts/config --enable CONFIG_STRICT_KERNEL_RWS
./scripts/config --enable CONFIG_UBSAN
# sched_ext
if [[ -n "${COMPILING_SCHED_EXT:-}" ]]; then
./scripts/config --disable CONFIG_DEBUG_INFO_DWARF_TOOLCHAIN_DEFAULT
./scripts/config --enable CONFIG_DEBUG_INFO_DWARF5
./scripts/config --enable CONFIG_PAHOLE_HAS_BTF_TAG
./scripts/config --enable CONFIG_SCHED_CLASS_EXT
fi
# enable Rust, conditionally
enable_rust_config
# final config rebuild before kernel build
make olddefconfig
}
function configure_kernel() {
if [[ "${CLEAN_BUILD}" == '1' ]]; then
rm -vf .config*
if [[ "$(git rev-parse --is-inside-work-tree)" == 'true' ]]; then
git clean -x -d -f
fi
$SUDO_ALIAS make distclean
fi
if [[ -z "${KERNEL_CONFIG}" ]]; then
# $KERNEL_CONFIG is empty, meaning, use the current kernel's config
# in-built kernel config is always the trusted source
# remember, /boot/config-$(uname -r) can be modified by the root user
if [[ -f '/proc/config.gz' ]]; then
zcat /proc/config.gz > .config
elif [[ -f "/boot/config-$(uname -r)" ]]; then
cp "/boot/config-$(uname -r)" .config
else
echo 'ERROR: could not find the config for the current kernel'
exit 3
fi
# maybe the user has a specific kernel config to use
elif [[ -f "${KERNEL_CONFIG}" ]]; then
cp "${KERNEL_CONFIG}" .config
else
# **build** a kernel config
# e.g. `make defconfig`
make "${KERNEL_CONFIG}"
fi
# add my own modifications
modify_kernel_config
}
configure_kernel
View Git Blame Copy Permalink