BoomMicrophone/nixpkgs-suyu
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge pull request #8647 from ts468/upstream.trusted_grub

Browse source 
trustedGRUB: GRUB 1 based -> GRUB 2 based
This commit is contained in:
William A. Kennington III 2015-07-05 11:52:13 -07:00
commit 282e7e6c84
2 changed files with 84 additions and 21 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

100
pkgs/tools/misc/grub/trusted.nix
View file

@ -1,26 +1,92 @@
{stdenv, fetchgit, autoconf, automake, buggyBiosCDSupport ? true}: { stdenv, fetchurl, fetchgit, autogen, flex, bison, python, autoconf, automake
, gettext, ncurses, libusb, freetype, qemu, devicemapper
}:
stdenv.mkDerivation { with stdenv.lib;
name = "trustedGRUB-1.1.5"; let
pcSystems = {
"i686-linux".target = "i386";
"x86_64-linux".target = "i386";
};
inPCSystems = any (system: stdenv.system == system) (mapAttrsToList (name: _: name) pcSystems);
version = "2.0-git-2015-07-04";
unifont_bdf = fetchurl {
url = "http://unifoundry.com/unifont-5.1.20080820.bdf.gz";
sha256 = "0s0qfff6n6282q28nwwblp5x295zd6n71kl43xj40vgvdqxv0fxx";
};
po_src = fetchurl {
name = "grub-2.02-beta2.tar.gz";
url = "http://alpha.gnu.org/gnu/grub/grub-2.02~beta2.tar.gz";
sha256 = "1lr9h3xcx0wwrnkxdnkfjwy08j7g7mdlmmbdip2db4zfgi69h0rm";
};
in (
stdenv.mkDerivation rec {
name = "trustedGRUB-${version}";
src = fetchgit { src = fetchgit {
url = "https://github.com/ts468/TrustedGRUB"; url = "https://github.com/Sirrix-AG/TrustedGRUB2";
rev = "954941c17e14c8f7b18e6cd3043ef5f946866f1c"; rev = "1865d07bdef7f39916790c77103fb85e99de14a4";
sha256 = "30c21765dc44f02275e66220d6724ec9cd45496226ca28c6db59a9147aa22685"; sha256 = "e6bd9edfeb653e98e585fd691a31533b649b2fca1f4a903c70f6ea371014c9f7";
}; };
# Autoconf/automake required for the splashimage patch. nativeBuildInputs = [ autogen flex bison python autoconf automake ];
buildInputs = [autoconf automake]; buildInputs = [ ncurses libusb freetype gettext devicemapper ]
++ optional doCheck qemu;
preConfigure = '' preConfigure =
autoreconf '' for i in "tests/util/"*.in
do
sed -i "$i" -e's|/bin/bash|/bin/sh|g'
done
# Apparently, the QEMU executable is no longer called
# `qemu-system-i386', even on i386.
#
# In addition, use `-nodefaults' to avoid errors like:
#
# chardev: opening backend "stdio" failed
# qemu: could not open serial device 'stdio': Invalid argument
#
# See <http://www.mail-archive.com/qemu-devel@nongnu.org/msg22775.html>.
sed -i "tests/util/grub-shell.in" \
-e's/qemu-system-i386/qemu-system-x86_64 -nodefaults/g'
'';
prePatch =
'' tar zxf ${po_src} grub-2.02~beta2/po
rm -rf po
mv grub-2.02~beta2/po po
sh autogen.sh
gunzip < "${unifont_bdf}" > "unifont.bdf"
sed -i "configure" \
-e "s|/usr/src/unifont.bdf|$PWD/unifont.bdf|g"
'';
patches = [ ./fix-bash-completion.patch ];
# save target that grub is compiled for
grubTarget = if inPCSystems
then "${pcSystems.${stdenv.system}.target}-pc"
else "";
doCheck = false;
enableParallelBuilding = true;
postInstall = ''
paxmark pms $out/sbin/grub-{probe,bios-setup}
''; '';
meta = { meta = with stdenv.lib; {
homepage = "http://sourceforge.net/projects/trustedgrub/"; description = "GRUB 2.0 extended with TCG (TPM) support for integrity measured boot process (trusted boot)";
repositories.git = https://github.com/ts468/TrustedGRUB; homepage = https://github.com/Sirrix-AG/TrustedGRUB2;
description = "Legacy GRUB bootloader extended with TCG support"; license = licenses.gpl3Plus;
platforms = stdenv.lib.platforms.linux; platforms = platforms.gnu;
maintainers = with stdenv.lib.maintainers; [ tstrobel ];
}; };
} })

5
pkgs/top-level/all-packages.nix
View file

@ -1706,10 +1706,7 @@ let
automake = automake112x; # fails with 13 and 14 automake = automake112x; # fails with 13 and 14
}; };
trustedGrub = callPackage_i686 ../tools/misc/grub/trusted.nix { trustedGrub = callPackage_i686 ../tools/misc/grub/trusted.nix { };
buggyBiosCDSupport = config.grub.buggyBiosCDSupport or true;
automake = automake112x; # fails with 13 and 14
};
grub2 = grub2_full; grub2 = grub2_full;