2017-11-09 12:11:35 +01:00
|
|
|
{ stdenv, lib, buildPackages, fetchurl, fetchpatch
|
2015-05-06 09:14:18 +02:00
|
|
|
, enableStatic ? false
|
|
|
|
, enableMinimal ? false
|
2017-06-02 23:35:13 +02:00
|
|
|
, useMusl ? false, musl
|
2015-05-06 09:14:18 +02:00
|
|
|
, extraConfig ? ""
|
2017-06-02 23:35:13 +02:00
|
|
|
, buildPlatform, hostPlatform
|
2015-05-06 09:14:18 +02:00
|
|
|
}:
|
2010-03-09 23:17:38 +01:00
|
|
|
|
|
|
|
let
|
2010-08-01 23:06:45 +02:00
|
|
|
configParser = ''
|
|
|
|
function parseconfig {
|
|
|
|
while read LINE; do
|
2010-08-01 23:25:37 +02:00
|
|
|
NAME=`echo "$LINE" | cut -d \ -f 1`
|
|
|
|
OPTION=`echo "$LINE" | cut -d \ -f 2`
|
2010-08-01 23:06:45 +02:00
|
|
|
|
2014-10-29 13:32:40 +01:00
|
|
|
if ! [[ "$NAME" =~ ^CONFIG_ ]]; then continue; fi
|
2010-08-01 23:06:45 +02:00
|
|
|
|
2010-08-01 23:25:37 +02:00
|
|
|
echo "parseconfig: removing $NAME"
|
2012-03-11 22:23:15 +01:00
|
|
|
sed -i /$NAME'\(=\| \)'/d .config
|
2010-08-01 23:06:45 +02:00
|
|
|
|
2010-11-21 21:39:52 +01:00
|
|
|
echo "parseconfig: setting $NAME=$OPTION"
|
|
|
|
echo "$NAME=$OPTION" >> .config
|
2010-08-01 23:06:45 +02:00
|
|
|
done
|
|
|
|
}
|
|
|
|
'';
|
|
|
|
|
2010-03-09 23:17:38 +01:00
|
|
|
in
|
|
|
|
|
2010-08-22 01:13:21 +02:00
|
|
|
stdenv.mkDerivation rec {
|
2017-08-21 09:11:00 +02:00
|
|
|
name = "busybox-1.27.2";
|
2010-03-09 23:17:38 +01:00
|
|
|
|
2017-08-21 09:11:00 +02:00
|
|
|
# Note to whoever is updating busybox: please verify that:
|
|
|
|
# nix-build pkgs/stdenv/linux/make-bootstrap-tools.nix -A test
|
|
|
|
# still builds after the update.
|
2010-03-09 23:17:38 +01:00
|
|
|
src = fetchurl {
|
2010-08-22 01:13:21 +02:00
|
|
|
url = "http://busybox.net/downloads/${name}.tar.bz2";
|
2017-08-21 09:11:00 +02:00
|
|
|
sha256 = "1pv3vs2w4l2wnw5qb0rkbpvjjdd1fwjv87miavqq0r0ynqbfajwx";
|
2010-03-09 23:17:38 +01:00
|
|
|
};
|
|
|
|
|
2017-09-01 02:46:26 +02:00
|
|
|
hardeningDisable = [ "format" ] ++ lib.optionals enableStatic [ "fortify" ];
|
2015-12-23 02:59:47 +01:00
|
|
|
|
2017-11-09 12:11:35 +01:00
|
|
|
patches = [
|
|
|
|
./busybox-in-store.patch
|
|
|
|
(fetchpatch {
|
|
|
|
name = "CVE-2017-15873.patch";
|
|
|
|
url = "https://git.busybox.net/busybox/patch/?id=0402cb32df015d9372578e3db27db47b33d5c7b0";
|
|
|
|
sha256 = "1s3xqifd0dww19mbnzrks0i1az0qwd884sxjzrx33d6a9jxv4dzn";
|
|
|
|
})
|
|
|
|
(fetchpatch {
|
|
|
|
name = "CVE-2017-15874.patch";
|
|
|
|
url = "https://git.busybox.net/busybox/patch/?id=9ac42c500586fa5f10a1f6d22c3f797df11b1f6b";
|
|
|
|
sha256 = "0169p4ylz9zd14ghhb39yfjvbdca2kb21pphylfh9ny7i484ahql";
|
|
|
|
})
|
2017-12-08 22:47:11 +01:00
|
|
|
(fetchpatch {
|
|
|
|
name = "CVE-2017-16544.patch";
|
|
|
|
url = "https://git.busybox.net/busybox/patch/?id=c3797d40a1c57352192c6106cc0f435e7d9c11e8";
|
|
|
|
sha256 = "1q3lkc4xczxrzhz73x2r0w7kmd6y33zhcnz3478nk5xi0qr66mcy";
|
|
|
|
})
|
2017-11-09 12:11:35 +01:00
|
|
|
];
|
2014-10-29 13:34:46 +01:00
|
|
|
|
2010-08-01 23:06:45 +02:00
|
|
|
configurePhase = ''
|
2014-04-09 01:15:38 +02:00
|
|
|
export KCONFIG_NOTIMESTAMP=1
|
2014-10-29 13:32:40 +01:00
|
|
|
make ${if enableMinimal then "allnoconfig" else "defconfig"}
|
|
|
|
|
2010-08-01 23:06:45 +02:00
|
|
|
${configParser}
|
2014-10-29 13:32:40 +01:00
|
|
|
|
2010-08-01 23:06:45 +02:00
|
|
|
cat << EOF | parseconfig
|
2014-10-29 13:32:40 +01:00
|
|
|
|
|
|
|
CONFIG_PREFIX "$out"
|
|
|
|
CONFIG_INSTALL_NO_USR y
|
|
|
|
|
2015-10-25 10:15:35 +01:00
|
|
|
CONFIG_LFS y
|
|
|
|
|
2016-07-19 03:37:14 +02:00
|
|
|
${lib.optionalString enableStatic ''
|
2014-10-29 13:32:40 +01:00
|
|
|
CONFIG_STATIC y
|
|
|
|
''}
|
|
|
|
|
|
|
|
# Use the external mount.cifs program.
|
|
|
|
CONFIG_FEATURE_MOUNT_CIFS n
|
|
|
|
CONFIG_FEATURE_MOUNT_HELPERS y
|
|
|
|
|
2016-07-08 17:32:17 +02:00
|
|
|
# Set paths for console fonts.
|
|
|
|
CONFIG_DEFAULT_SETFONT_DIR "/etc/kbd"
|
|
|
|
|
2014-07-30 10:49:31 +02:00
|
|
|
${extraConfig}
|
2017-11-25 19:43:57 +01:00
|
|
|
CONFIG_CROSS_COMPILER_PREFIX "${stdenv.cc.targetPrefix}"
|
2010-08-01 23:06:45 +02:00
|
|
|
EOF
|
2014-10-29 13:32:40 +01:00
|
|
|
|
2010-08-01 23:25:37 +02:00
|
|
|
make oldconfig
|
2016-06-01 21:52:03 +02:00
|
|
|
|
|
|
|
runHook postConfigure
|
|
|
|
'';
|
|
|
|
|
|
|
|
postConfigure = lib.optionalString useMusl ''
|
2017-11-25 19:43:57 +01:00
|
|
|
makeFlagsArray+=("CC=${stdenv.cc.targetPrefix}gcc -isystem ${musl}/include -B${musl}/lib -L${musl}/lib")
|
2010-08-01 23:06:45 +02:00
|
|
|
'';
|
2010-03-09 23:17:38 +01:00
|
|
|
|
2017-06-02 23:35:13 +02:00
|
|
|
nativeBuildInputs = lib.optional (hostPlatform != buildPlatform) buildPackages.stdenv.cc;
|
2016-07-19 03:37:14 +02:00
|
|
|
|
2017-06-02 23:35:13 +02:00
|
|
|
buildInputs = lib.optionals (enableStatic && !useMusl) [ stdenv.cc.libc stdenv.cc.libc.static ];
|
2016-06-01 21:52:03 +02:00
|
|
|
|
2012-05-21 19:51:40 +02:00
|
|
|
enableParallelBuilding = true;
|
|
|
|
|
2015-05-06 09:14:18 +02:00
|
|
|
meta = with stdenv.lib; {
|
2012-03-28 00:05:03 +02:00
|
|
|
description = "Tiny versions of common UNIX utilities in a single small executable";
|
2017-08-02 23:50:51 +02:00
|
|
|
homepage = https://busybox.net/;
|
2015-05-06 09:14:18 +02:00
|
|
|
license = licenses.gpl2;
|
|
|
|
maintainers = with maintainers; [ viric ];
|
|
|
|
platforms = platforms.linux;
|
2012-03-28 00:05:03 +02:00
|
|
|
};
|
2010-03-09 23:17:38 +01:00
|
|
|
}
|