| 1 |
#! /bin/sh |
| 2 |
# |
| 3 |
# This is a kernel build script for Fedora 19's 3.14 kernel. |
| 4 |
# |
| 5 |
|
| 6 |
die () { |
| 7 |
echo $1 |
| 8 |
exit 1 |
| 9 |
} |
| 10 |
|
| 11 |
yum -y install tar wget rpm-build make gcc patch redhat-rpm-config xmlto asciidoc gnupg elfutils-devel zlib-devel binutils-devel newt-devel python-devel perl-ExtUtils-Embed pciutils-devel hmaccalc bison net-tools audit-libs-devel pesign bc ncurses-devel |
| 12 |
|
| 13 |
cd /tmp/ || die "Can't chdir to /tmp/ ." |
| 14 |
|
| 15 |
if [ ! -r kernel-3.14.27-100.fc19.src.rpm ] |
| 16 |
then |
| 17 |
wget https://archives.fedoraproject.org/pub/archive/fedora/linux/updates/19/SRPMS/kernel-3.14.27-100.fc19.src.rpm || die "Can't download source package." |
| 18 |
fi |
| 19 |
LANG=C rpm --checksig kernel-3.14.27-100.fc19.src.rpm | grep -F ': rsa sha1 (md5) pgp md5 OK' || die "Can't verify signature." |
| 20 |
rpm -ivh kernel-3.14.27-100.fc19.src.rpm || die "Can't install source package." |
| 21 |
|
| 22 |
cd /root/rpmbuild/SOURCES/ || die "Can't chdir to /root/rpmbuild/SOURCES/ ." |
| 23 |
if [ ! -r ccs-patch-1.8.3-20150421.tar.gz ] |
| 24 |
then |
| 25 |
wget -O ccs-patch-1.8.3-20150421.tar.gz 'http://sourceforge.jp/frs/redir.php?f=/tomoyo/49684/ccs-patch-1.8.3-20150421.tar.gz' || die "Can't download patch." |
| 26 |
fi |
| 27 |
|
| 28 |
cd /root/rpmbuild/SPECS/ || die "Can't chdir to /root/rpmbuild/SPECS/ ." |
| 29 |
cp -p kernel.spec ccs-kernel.spec || die "Can't copy spec file." |
| 30 |
patch << "EOF" || die "Can't patch spec file." |
| 31 |
--- ccs-kernel.spec |
| 32 |
+++ ccs-kernel.spec |
| 33 |
@@ -31,7 +31,7 @@ |
| 34 |
# |
| 35 |
# (Uncomment the '#' and both spaces below to set the buildid.) |
| 36 |
# |
| 37 |
-# % define buildid .local |
| 38 |
+%define buildid _tomoyo_1.8.3p10 |
| 39 |
################################################################### |
| 40 |
|
| 41 |
# The buildid can also be specified on the rpmbuild command line |
| 42 |
@@ -490,7 +490,7 @@ |
| 43 |
AutoProv: yes\ |
| 44 |
%{nil} |
| 45 |
|
| 46 |
-Name: kernel%{?variant} |
| 47 |
+Name: ccs-kernel%{?variant} |
| 48 |
Group: System Environment/Kernel |
| 49 |
License: GPLv2 and Redistributable, no modification permitted |
| 50 |
URL: http://www.kernel.org/ |
| 51 |
@@ -945,7 +945,7 @@ |
| 52 |
AutoReqProv: no\ |
| 53 |
Requires(pre): /usr/bin/find\ |
| 54 |
Requires: perl\ |
| 55 |
-%description -n kernel%{?variant}%{?1:-%{1}}-devel\ |
| 56 |
+%description -n ccs-kernel%{?variant}%{?1:-%{1}}-devel\ |
| 57 |
This package provides kernel headers and makefiles sufficient to build modules\ |
| 58 |
against the %{?2:%{2} }kernel package.\ |
| 59 |
%{nil} |
| 60 |
@@ -965,7 +965,7 @@ |
| 61 |
Provides: kernel%{?1:-%{1}}-modules-extra-uname-r = %{KVERREL}%{?1:.%{1}}\ |
| 62 |
Requires: kernel-uname-r = %{KVERREL}%{?1:.%{1}}\ |
| 63 |
AutoReqProv: no\ |
| 64 |
-%description -n kernel%{?variant}%{?1:-%{1}}-modules-extra\ |
| 65 |
+%description -n ccs-kernel%{?variant}%{?1:-%{1}}-modules-extra\ |
| 66 |
This package provides less commonly used kernel modules for the %{?2:%{2} }kernel package.\ |
| 67 |
%{nil} |
| 68 |
|
| 69 |
@@ -1462,6 +1462,10 @@ |
| 70 |
|
| 71 |
# END OF PATCH APPLICATIONS |
| 72 |
|
| 73 |
+# TOMOYO Linux |
| 74 |
+tar -zxf %_sourcedir/ccs-patch-1.8.3-20150421.tar.gz |
| 75 |
+patch -sp1 < patches/ccs-patch-3.14-fedora-19.diff |
| 76 |
+ |
| 77 |
%endif |
| 78 |
|
| 79 |
# Any further pre-build tree manipulations happen here. |
| 80 |
@@ -1484,6 +1488,17 @@ |
| 81 |
for i in *.config |
| 82 |
do |
| 83 |
mv $i .config |
| 84 |
+ # TOMOYO Linux 2.5 |
| 85 |
+ sed -i -e 's/# CONFIG_SECURITY_PATH is not set/CONFIG_SECURITY_PATH=y/' -- .config |
| 86 |
+ sed -i -e 's/# CONFIG_SECURITY_TOMOYO is not set/CONFIG_SECURITY_TOMOYO=y/' -- .config |
| 87 |
+ echo 'CONFIG_SECURITY_TOMOYO_MAX_ACCEPT_ENTRY=2048' >> .config |
| 88 |
+ echo 'CONFIG_SECURITY_TOMOYO_MAX_AUDIT_LOG=1024' >> .config |
| 89 |
+ echo '# CONFIG_SECURITY_TOMOYO_OMIT_USERSPACE_LOADER is not set' >> .config |
| 90 |
+ echo 'CONFIG_SECURITY_TOMOYO_POLICY_LOADER="/sbin/tomoyo-init"' >> .config |
| 91 |
+ echo 'CONFIG_SECURITY_TOMOYO_ACTIVATION_TRIGGER="/sbin/init"' >> .config |
| 92 |
+ echo '# CONFIG_DEFAULT_SECURITY_TOMOYO is not set' >> .config |
| 93 |
+ # TOMOYO Linux 1.8 |
| 94 |
+ cat config.ccs >> .config |
| 95 |
Arch=`head -1 .config | cut -b 3-` |
| 96 |
make ARCH=$Arch listnewconfig | grep -E '^CONFIG_' >.newoptions || true |
| 97 |
%if %{listnewconfig_fail} |
| 98 |
EOF |
| 99 |
echo "" |
| 100 |
echo "" |
| 101 |
echo "" |
| 102 |
echo "Edit /root/rpmbuild/SPECS/ccs-kernel.spec if needed, and run" |
| 103 |
echo "rpmbuild -bb /root/rpmbuild/SPECS/ccs-kernel.spec" |
| 104 |
echo "to build kernel rpm packages." |
| 105 |
echo "" |
| 106 |
ARCH=`uname -m` |
| 107 |
echo "I'll start 'rpmbuild -bb --target $ARCH --without debug --without debuginfo /root/rpmbuild/SPECS/ccs-kernel.spec' in 30 seconds. Press Ctrl-C to stop." |
| 108 |
sleep 30 |
| 109 |
exec rpmbuild -bb --target $ARCH --without debug --without debuginfo /root/rpmbuild/SPECS/ccs-kernel.spec |
| 110 |
exit 0 |
TOMOYO
Parent Directory
Revision Log