2017-06-28 22:32:25 +02:00
|
|
|
{ stdenv, hostPlatform, fetchFromGitHub, perl, buildLinux, ... } @ args:
|
2017-06-21 23:46:12 +02:00
|
|
|
|
2017-09-04 17:09:29 +02:00
|
|
|
with stdenv.lib;
|
|
|
|
|
|
2017-06-21 23:46:12 +02:00
|
|
|
let
|
2017-09-11 01:21:31 +02:00
|
|
|
version = "4.13.1";
|
2017-09-13 14:20:58 +02:00
|
|
|
revision = "b";
|
|
|
|
|
sha256 = "0l64r4978ynwpikw9fvhzzyrhvxhl7chwkbns1064c1dhr6j0zg6";
|
2017-09-04 17:09:29 +02:00
|
|
|
|
|
|
|
|
# modVersion needs to be x.y.z, will automatically add .0 if needed
|
|
|
|
|
modVersion = concatStrings (intersperse "." (take 3 (splitString "." "${version}.0")));
|
2017-06-21 23:46:12 +02:00
|
|
|
|
2017-09-04 17:09:29 +02:00
|
|
|
# branchVersion needs to be x.y
|
|
|
|
|
branchVersion = concatStrings (intersperse "." (take 2 (splitString "." version)));
|
|
|
|
|
|
|
|
|
|
modDirVersion = "${modVersion}-hardened";
|
|
|
|
|
in
|
2017-06-21 23:46:12 +02:00
|
|
|
import ./generic.nix (args // {
|
2017-09-04 17:09:29 +02:00
|
|
|
inherit modDirVersion;
|
|
|
|
|
|
2017-06-21 23:46:12 +02:00
|
|
|
version = "${version}-${revision}";
|
2017-09-04 17:09:29 +02:00
|
|
|
extraMeta.branch = "${branchVersion}";
|
2017-06-21 23:46:12 +02:00
|
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
|
|
|
|
inherit sha256;
|
|
|
|
|
owner = "copperhead";
|
|
|
|
|
repo = "linux-hardened";
|
|
|
|
|
rev = "${version}.${revision}";
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
kernelPatches = args.kernelPatches;
|
|
|
|
|
|
|
|
|
|
features.iwlwifi = true;
|
|
|
|
|
features.efiBootStub = true;
|
|
|
|
|
features.needsCifsUtils = true;
|
|
|
|
|
features.netfilterRPFilter = true;
|
|
|
|
|
} // (args.argsOverride or {}))
|
