]> git.proxmox.com Git - pve-kernel.git/blob - Makefile
projects / pve-kernel.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
bump version to 4.10.17-16, bump ABI to 4.10.17-1-pve
[pve-kernel.git] / Makefile
1 RELEASE=5.0
2
3 # also update proxmox-ve/changelog if you change KERNEL_VER or KREL
4 KERNEL_VER=4.10.17
5 PKGREL=16
6 # also include firmware of previous version into
7 # the fw package: fwlist-2.6.32-PREV-pve
8 KREL=1
9
10 KERNEL_SRC=ubuntu-zesty
11 KERNEL_SRC_SUBMODULE=submodules/ubuntu-zesty
12
13 EXTRAVERSION=-${KREL}-pve
14 KVNAME=${KERNEL_VER}${EXTRAVERSION}
15 PACKAGE=pve-kernel-${KVNAME}
16 HDRPACKAGE=pve-headers-${KVNAME}
17
18 ARCH=$(shell dpkg-architecture -qDEB_BUILD_ARCH)
19
20 # amd64/x86_64/x86 share the arch subdirectory in the kernel, 'x86' so we need
21 # a mapping
22 KERNEL_ARCH=x86
23 ifneq (${ARCH}, amd64)
24 KERNEL_ARCH=${ARCH}
25 endif
26
27 GITVERSION:=$(shell git rev-parse HEAD)
28 CHANGELOG_DATE:=$(shell dpkg-parsechangelog -SDate -lchangelog.Debian)
29 export SOURCE_DATE_EPOCH ?= $(shell dpkg-parsechangelog -STimestamp -lchangelog.Debian)
30
31 SKIPABI=0
32
33 TOP=$(shell pwd)
34
35 KERNEL_CFG_ORG=config-${KERNEL_VER}.org
36
37 SPLDIR=pkg-spl
38 SPLSRC=submodules/zfs/pkg-spl.tar.gz
39 ZFSDIR=pkg-zfs
40 ZFSSRC=submodules/zfs/pkg-zfs.tar.gz
41 ZFS_MODULES=zfs.ko zavl.ko znvpair.ko zunicode.ko zcommon.ko zpios.ko
42 SPL_MODULES=spl.ko splat.ko
43
44 DST_DEB=${PACKAGE}_${KERNEL_VER}-${PKGREL}_${ARCH}.deb
45 HDR_DEB=${HDRPACKAGE}_${KERNEL_VER}-${PKGREL}_${ARCH}.deb
46 PVEPKG=proxmox-ve
47 PVE_DEB=${PVEPKG}_${RELEASE}-${PKGREL}_all.deb
48 VIRTUALHDRPACKAGE=pve-headers
49 VIRTUAL_HDR_DEB=${VIRTUALHDRPACKAGE}_${RELEASE}-${PKGREL}_all.deb
50
51 LINUX_TOOLS_PKG=linux-tools-4.10
52 LINUX_TOOLS_DEB=${LINUX_TOOLS_PKG}_${KERNEL_VER}-${PKGREL}_${ARCH}.deb
53
54 DEBS=${DST_DEB} ${HDR_DEB} ${PVE_DEB} ${VIRTUAL_HDR_DEB} ${LINUX_TOOLS_DEB}
55
56 all: check_gcc ${DEBS}
57
58 ${PVE_DEB} pve: proxmox-ve/control proxmox-ve/postinst ${PVE_RELEASE_KEYS}
59 rm -rf proxmox-ve/data
60 mkdir -p proxmox-ve/data/DEBIAN
61 mkdir -p proxmox-ve/data/usr/share/doc/${PVEPKG}/
62 mkdir -p proxmox-ve/data/etc/apt/trusted.gpg.d
63 install -m 0644 proxmox-ve/proxmox-release-5.x.pubkey proxmox-ve/data/etc/apt/trusted.gpg.d/proxmox-ve-release-5.x.gpg
64 sed -e 's/@KVNAME@/${KVNAME}/' -e 's/@KERNEL_VER@/${KERNEL_VER}/' -e 's/@RELEASE@/${RELEASE}/' -e 's/@PKGREL@/${PKGREL}/' <proxmox-ve/control >proxmox-ve/data/DEBIAN/control
65 sed -e 's/@KVNAME@/${KVNAME}/' <proxmox-ve/postinst >proxmox-ve/data/DEBIAN/postinst
66 chmod 0755 proxmox-ve/data/DEBIAN/postinst
67 install -m 0755 proxmox-ve/postrm proxmox-ve/data/DEBIAN/postrm
68 echo "git clone git://git.proxmox.com/git/pve-kernel.git\\ngit checkout ${GITVERSION}" > proxmox-ve/data/usr/share/doc/${PVEPKG}/SOURCE
69 install -m 0644 proxmox-ve/copyright proxmox-ve/data/usr/share/doc/${PVEPKG}
70 install -m 0644 proxmox-ve/changelog.Debian proxmox-ve/data/usr/share/doc/${PVEPKG}
71 gzip -n --best proxmox-ve/data/usr/share/doc/${PVEPKG}/changelog.Debian
72 dpkg-deb --build proxmox-ve/data ${PVE_DEB}
73
74 ${VIRTUAL_HDR_DEB} pve-headers: proxmox-ve/pve-headers.control
75 rm -rf proxmox-ve/data
76 mkdir -p proxmox-ve/data/DEBIAN
77 mkdir -p proxmox-ve/data/usr/share/doc/${VIRTUALHDRPACKAGE}/
78 sed -e 's/@KVNAME@/${KVNAME}/' -e 's/@KERNEL_VER@/${KERNEL_VER}/' -e 's/@RELEASE@/${RELEASE}/' -e 's/@PKGREL@/${PKGREL}/' <proxmox-ve/pve-headers.control >proxmox-ve/data/DEBIAN/control
79 echo "git clone git://git.proxmox.com/git/pve-kernel.git\\ngit checkout ${GITVERSION}" > proxmox-ve/data/usr/share/doc/${VIRTUALHDRPACKAGE}/SOURCE
80 install -m 0644 proxmox-ve/copyright proxmox-ve/data/usr/share/doc/${VIRTUALHDRPACKAGE}
81 install -m 0644 proxmox-ve/changelog.Debian proxmox-ve/data/usr/share/doc/${VIRTUALHDRPACKAGE}
82 gzip -n --best proxmox-ve/data/usr/share/doc/${VIRTUALHDRPACKAGE}/changelog.Debian
83 dpkg-deb --build proxmox-ve/data ${VIRTUAL_HDR_DEB}
84
85 check_gcc:
86 ifeq ($(CC), cc)
87 gcc --version|grep "6\.3" || false
88 else
89 $(CC) --version|grep "6\.3" || false
90 endif
91
92 ${DST_DEB}: data control.in prerm.in postinst.in postrm.in copyright changelog.Debian | fwcheck abicheck
93 mkdir -p data/DEBIAN
94 sed -e 's/@KERNEL_VER@/${KERNEL_VER}/' -e 's/@KVNAME@/${KVNAME}/' -e 's/@PKGREL@/${PKGREL}/' -e 's/@ARCH@/${ARCH}/' <control.in >data/DEBIAN/control
95 sed -e 's/@@KVNAME@@/${KVNAME}/g' <prerm.in >data/DEBIAN/prerm
96 chmod 0755 data/DEBIAN/prerm
97 sed -e 's/@@KVNAME@@/${KVNAME}/g' <postinst.in >data/DEBIAN/postinst
98 chmod 0755 data/DEBIAN/postinst
99 sed -e 's/@@KVNAME@@/${KVNAME}/g' <postrm.in >data/DEBIAN/postrm
100 chmod 0755 data/DEBIAN/postrm
101 install -D -m 644 copyright data/usr/share/doc/${PACKAGE}/copyright
102 install -D -m 644 changelog.Debian data/usr/share/doc/${PACKAGE}/changelog.Debian
103 echo "git clone git://git.proxmox.com/git/pve-kernel.git\\ngit checkout ${GITVERSION}" > data/usr/share/doc/${PACKAGE}/SOURCE
104 gzip -n -f --best data/usr/share/doc/${PACKAGE}/changelog.Debian
105 rm -f data/lib/modules/${KVNAME}/source
106 rm -f data/lib/modules/${KVNAME}/build
107 dpkg-deb --build data ${DST_DEB}
108 lintian ${DST_DEB}
109
110 LINUX_TOOLS_DH_LIST=strip installchangelogs installdocs compress shlibdeps gencontrol md5sums builddeb
111
112 ${LINUX_TOOLS_DEB}: .compile_mark control.tools changelog.Debian copyright
113 rm -rf linux-tools ${LINUX_TOOLS_DEB}
114 mkdir -p linux-tools/debian
115 cp control.tools linux-tools/debian/control
116 echo 9 > linux-tools/debian/compat
117 cp changelog.Debian linux-tools/debian/changelog
118 cp copyright linux-tools/debian
119 mkdir -p linux-tools/debian/linux-tools-4.10/usr/bin
120 install -m 0755 ${KERNEL_SRC}/tools/perf/perf linux-tools/debian/linux-tools-4.10/usr/bin/perf_4.10
121 cd linux-tools; for i in ${LINUX_TOOLS_DH_LIST}; do dh_$$i; done
122 lintian ${LINUX_TOOLS_DEB}
123
124 fwlist-${KVNAME}: data
125 ./find-firmware.pl data/lib/modules/${KVNAME} >fwlist.tmp
126 mv fwlist.tmp $@
127
128 .PHONY: fwcheck
129 fwcheck: fwlist-${KVNAME} fwlist-previous
130 @echo "checking fwlist for changes since last built firmware package.."
131 @echo "if this check fails, add fwlist-${KVNAME} to the pve-firmware repository and upload a new firmware package together with the ${KVNAME} kernel"
132 bash -c "diff -up -N <(sort fwlist-previous | uniq) <(sort fwlist-${KVNAME} | uniq) > fwlist.diff"
133 rm fwlist.diff
134 @echo "done, no need to rebuild pve-firmware"
135
136
137 abi-${KVNAME}: .compile_mark
138 sed -e 's/^\(.\+\)[[:space:]]\+\(.\+\)[[:space:]]\(.\+\)$$/\3 \2 \1/' ${KERNEL_SRC}/Module.symvers | sort > abi-${KVNAME}
139
140 .PHONY: abicheck
141 abicheck: abi-${KVNAME} abi-previous abi-blacklist
142 ./abi-check abi-${KVNAME} abi-previous ${SKIPABI}
143
144 data: .compile_mark ${SPL_MODULES} ${ZFS_MODULES}
145 rm -rf data tmp; mkdir -p tmp/lib/modules/${KVNAME}
146 mkdir tmp/boot
147 install -m 644 ${KERNEL_SRC}/.config tmp/boot/config-${KVNAME}
148 install -m 644 ${KERNEL_SRC}/System.map tmp/boot/System.map-${KVNAME}
149 install -m 644 ${KERNEL_SRC}/arch/${KERNEL_ARCH}/boot/bzImage tmp/boot/vmlinuz-${KVNAME}
150 cd ${KERNEL_SRC}; make INSTALL_MOD_PATH=../tmp/ modules_install
151 # install zfs drivers
152 install -d -m 0755 tmp/lib/modules/${KVNAME}/zfs
153 install -m 644 ${SPL_MODULES} ${ZFS_MODULES} tmp/lib/modules/${KVNAME}/zfs
154 # remove firmware
155 rm -rf tmp/lib/firmware
156 # strip debug info
157 find tmp/lib/modules -name \*.ko -print | while read f ; do strip --strip-debug "$$f"; done
158 # finalize
159 /sbin/depmod -b tmp/ ${KVNAME}
160 # Autogenerate blacklist for watchdog devices (see README)
161 install -m 0755 -d tmp/lib/modprobe.d
162 ls tmp/lib/modules/${KVNAME}/kernel/drivers/watchdog/ > watchdog-blacklist.tmp
163 echo ipmi_watchdog.ko >> watchdog-blacklist.tmp
164 cat watchdog-blacklist.tmp|sed -e 's/^/blacklist /' -e 's/.ko$$//'|sort -u > tmp/lib/modprobe.d/blacklist_${PACKAGE}.conf
165 mv tmp data
166
167 PVE_CONFIG_OPTS= \
168 -m INTEL_MEI_WDT \
169 -d CONFIG_SND_PCM_OSS \
170 -e CONFIG_TRANSPARENT_HUGEPAGE_MADVISE \
171 -d CONFIG_TRANSPARENT_HUGEPAGE_ALWAYS \
172 -m CONFIG_CEPH_FS \
173 -m CONFIG_BLK_DEV_NBD \
174 -m CONFIG_BLK_DEV_RBD \
175 -m CONFIG_BCACHE \
176 -m CONFIG_JFS_FS \
177 -m CONFIG_HFS_FS \
178 -m CONFIG_HFSPLUS_FS \
179 -e CONFIG_BRIDGE \
180 -e CONFIG_BRIDGE_NETFILTER \
181 -e CONFIG_BLK_DEV_SD \
182 -e CONFIG_BLK_DEV_SR \
183 -e CONFIG_BLK_DEV_DM \
184 -e CONFIG_BLK_DEV_NVME \
185 -d CONFIG_INPUT_EVBUG \
186 -d CONFIG_CPU_FREQ_DEFAULT_GOV_ONDEMAND \
187 -e CONFIG_CPU_FREQ_DEFAULT_GOV_PERFORMANCE \
188 -d CONFIG_MODULE_SIG \
189 -d CONFIG_MEMCG_DISABLED \
190 -e CONFIG_MEMCG_SWAP_ENABLED \
191 -e CONFIG_MEMCG_KMEM \
192 -d CONFIG_DEFAULT_CFQ \
193 -e CONFIG_DEFAULT_DEADLINE \
194 -e CONFIG_MODVERSIONS \
195 -d CONFIG_DEFAULT_SECURITY_DAC \
196 -e CONFIG_DEFAULT_SECURITY_APPARMOR \
197 --set-str CONFIG_DEFAULT_SECURITY apparmor
198
199 .compile_mark: ${KERNEL_SRC}/README ${KERNEL_CFG_ORG}
200 [ ! -e /lib/modules/${KVNAME}/build ] || (echo "please remove /lib/modules/${KVNAME}/build" && false)
201 cp ${KERNEL_CFG_ORG} ${KERNEL_SRC}/.config
202 cd ${KERNEL_SRC}; ./scripts/config ${PVE_CONFIG_OPTS}
203 cd ${KERNEL_SRC}; make oldconfig
204 cd ${KERNEL_SRC}; make KBUILD_BUILD_VERSION_TIMESTAMP="PVE ${KERNEL_VER}-${PKGREL} ($(CHANGELOG_DATE))" -j 8
205 make -C ${KERNEL_SRC}/tools/perf prefix=/usr HAVE_CPLUS_DEMANGLE=1 NO_LIBPYTHON=1 NO_LIBPERL=1 NO_LIBCRYPTO=1 PYTHON=python2.7
206 make -C ${KERNEL_SRC}/tools/perf man
207 touch $@
208
209 ${KERNEL_SRC}/README ${KERNEL_CFG_ORG}: ${KERNEL_SRC_SUBMODULE} | submodules
210 rm -rf ${KERNEL_SRC}
211 cp -a ${KERNEL_SRC_SUBMODULE} ${KERNEL_SRC}
212 cat ${KERNEL_SRC}/debian.master/config/config.common.ubuntu ${KERNEL_SRC}/debian.master/config/${ARCH}/config.common.${ARCH} ${KERNEL_SRC}/debian.master/config/${ARCH}/config.flavour.generic > ${KERNEL_CFG_ORG}
213 cd ${KERNEL_SRC}; patch -p1 < ../uname-version-timestamp.patch
214 cd ${KERNEL_SRC}; patch -p1 <../bridge-patch.diff
215 #cd ${KERNEL_SRC}; patch -p1 <../bridge-forward-ipv6-neighbor-solicitation.patch
216 #cd ${KERNEL_SRC}; patch -p1 <../add-empty-ndo_poll_controller-to-veth.patch
217 cd ${KERNEL_SRC}; patch -p1 <../override_for_missing_acs_capabilities.patch
218 #cd ${KERNEL_SRC}; patch -p1 <../vhost-net-extend-device-allocation-to-vmalloc.patch
219 cd ${KERNEL_SRC}; patch -p1 < ../kvm-dynamic-halt-polling-disable-default.patch
220 cd ${KERNEL_SRC}; patch -p1 < ../cgroup-cpuset-add-cpuset.remap_cpus.patch
221 cd ${KERNEL_SRC}; patch -p1 < ../0001-netfilter-nft_set_rbtree-handle-re-addition-element-.patch # DoS from within (unpriv) containers
222 cd ${KERNEL_SRC}; patch -p1 < ../CVE-2014-9900-net-Zeroing-the-structure-ethtool_wolinfo-in-ethtool.patch
223 cd ${KERNEL_SRC}; patch -p1 < ../CVE-2017-1000380-ALSA-timer-Fix-missing-queue-indices-reset-at-SNDRV_.patch
224 cd ${KERNEL_SRC}; patch -p1 < ../CVE-2017-1000380-ALSA-timer-Fix-race-between-read-and-ioctl.patch
225 cd ${KERNEL_SRC}; patch -p1 < ../CVE-2017-7346-drm-vmwgfx-limit-the-number-of-mip-levels-in-vmw_gb_.patch
226 cd ${KERNEL_SRC}; patch -p1 < ../CVE-2017-9605-drm-vmwgfx-Make-sure-backup_handle-is-always-valid.patch
227 sed -i ${KERNEL_SRC}/Makefile -e 's/^EXTRAVERSION.*$$/EXTRAVERSION=${EXTRAVERSION}/'
228 touch $@
229
230 ${SPL_MODULES}: .compile_mark ${SPLSRC}
231 rm -rf ${SPLDIR}
232 tar xf ${SPLSRC}
233 [ ! -e /lib/modules/${KVNAME}/build ] || (echo "please remove /lib/modules/${KVNAME}/build" && false)
234 cd ${SPLDIR}; ./autogen.sh
235 cd ${SPLDIR}; ./configure --with-config=kernel --with-linux=${TOP}/${KERNEL_SRC} --with-linux-obj=${TOP}/${KERNEL_SRC}
236 cd ${SPLDIR}; make
237 cp ${SPLDIR}/module/spl/spl.ko spl.ko
238 cp ${SPLDIR}/module/splat/splat.ko splat.ko
239
240 ${ZFS_MODULES}: .compile_mark ${ZFSSRC}
241 rm -rf ${ZFSDIR}
242 tar xf ${ZFSSRC}
243 [ ! -e /lib/modules/${KVNAME}/build ] || (echo "please remove /lib/modules/${KVNAME}/build" && false)
244 cd ${ZFSDIR}; ./autogen.sh
245 cd ${ZFSDIR}; ./configure --with-spl=${TOP}/${SPLDIR} --with-spl-obj=${TOP}/${SPLDIR} --with-config=kernel --with-linux=${TOP}/${KERNEL_SRC} --with-linux-obj=${TOP}/${KERNEL_SRC}
246 cd ${ZFSDIR}; make
247 cp ${ZFSDIR}/module/zfs/zfs.ko zfs.ko
248 cp ${ZFSDIR}/module/avl/zavl.ko zavl.ko
249 cp ${ZFSDIR}/module/nvpair/znvpair.ko znvpair.ko
250 cp ${ZFSDIR}/module/unicode/zunicode.ko zunicode.ko
251 cp ${ZFSDIR}/module/zcommon/zcommon.ko zcommon.ko
252 cp ${ZFSDIR}/module/zpios/zpios.ko zpios.ko
253
254 headers_tmp := $(CURDIR)/tmp-headers
255 headers_dir := $(headers_tmp)/usr/src/linux-headers-${KVNAME}
256
257 ${HDR_DEB} hdr: .compile_mark headers-control.in headers-postinst.in
258 rm -rf $(headers_tmp)
259 install -d $(headers_tmp)/DEBIAN $(headers_dir)/include/
260 sed -e 's/@KERNEL_VER@/${KERNEL_VER}/' -e 's/@KVNAME@/${KVNAME}/' -e 's/@PKGREL@/${PKGREL}/' -e 's/@ARCH@/${ARCH}/' <headers-control.in >$(headers_tmp)/DEBIAN/control
261 sed -e 's/@@KVNAME@@/${KVNAME}/g' <headers-postinst.in >$(headers_tmp)/DEBIAN/postinst
262 chmod 0755 $(headers_tmp)/DEBIAN/postinst
263 install -D -m 644 copyright $(headers_tmp)/usr/share/doc/${HDRPACKAGE}/copyright
264 install -D -m 644 changelog.Debian $(headers_tmp)/usr/share/doc/${HDRPACKAGE}/changelog.Debian
265 echo "git clone git://git.proxmox.com/git/pve-kernel.git\\ngit checkout ${GITVERSION}" > $(headers_tmp)/usr/share/doc/${HDRPACKAGE}/SOURCE
266 gzip -n -f --best $(headers_tmp)/usr/share/doc/${HDRPACKAGE}/changelog.Debian
267 install -m 0644 ${KERNEL_SRC}/.config $(headers_dir)
268 install -m 0644 ${KERNEL_SRC}/Module.symvers $(headers_dir)
269 cd ${KERNEL_SRC}; find . -path './debian/*' -prune -o -path './include/*' -prune -o -path './Documentation' -prune \
270 -o -path './scripts' -prune -o -type f \
271 \( -name 'Makefile*' -o -name 'Kconfig*' -o -name 'Kbuild*' -o \
272 -name '*.sh' -o -name '*.pl' \) \
273 -print | cpio -pd --preserve-modification-time $(headers_dir)
274 cd ${KERNEL_SRC}; cp -a include scripts $(headers_dir)
275 cd ${KERNEL_SRC}; (find arch/${KERNEL_ARCH} -name include -type d -print | \
276 xargs -n1 -i: find : -type f) | \
277 cpio -pd --preserve-modification-time $(headers_dir)
278 mkdir -p ${headers_tmp}/lib/modules/${KVNAME}
279 ln -sf /usr/src/linux-headers-${KVNAME} ${headers_tmp}/lib/modules/${KVNAME}/build
280 dpkg-deb --build $(headers_tmp) ${HDR_DEB}
281 #lintian ${HDR_DEB}
282
283 .PHONY: upload
284 upload: ${DEBS}
285 tar cf - ${DEBS}|ssh repoman@repo.proxmox.com -- upload --product pve --dist stretch --arch ${ARCH}
286
287 .PHONY: distclean
288 distclean: clean
289 rm -rf linux-firmware.git dvb-firmware.git ${KERNEL_SRC}.org
290
291 # upgrade to current master
292 .PHONY: update_modules
293 update_modules: submodules
294 git submodule foreach 'git pull --ff-only origin master'
295
296 # make sure submodules were initialized
297 .PHONY: submodules
298 submodules ${SPLSRC} ${ZFSSRC}:
299 test -f "${KERNEL_SRC_SUBMODULE}/README" || git submodule update --init
300
301
302 .PHONY: clean
303 clean:
304 rm -rf *~ .compile_mark watchdog-blacklist.tmp ${KERNEL_CFG_ORG} ${KERNEL_SRC} ${KERNEL_SRC}.tmp ${KERNEL_CFG_ORG} ${KERNEL_SRC}.org orig tmp data proxmox-ve/data *.deb ${headers_tmp} fwdata fwlist.tmp *.ko abi-${KVNAME} fwlist-${KVNAME} ${ZFSDIR} ${SPLDIR} ${SPL_MODULES} ${ZFS_MODULES} hpsa.ko ${HPSADIR} ${DRBDDIR} drbd-9.0 ${IGBDIR} igb.ko ${IXGBEDIR} ixgbe.ko ${E1000EDIR} e1000e.ko linux-tools ${LINUX_TOOLS_DEB}
305
306
307
308
309
Linux Kernel for Proxmox projects