-
Notifications
You must be signed in to change notification settings - Fork 15
/
Copy pathdebian_custom_kernel.sh
executable file
·132 lines (68 loc) · 4.27 KB
/
debian_custom_kernel.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
#!/bin/bash
source $HOME/colors.sh
NOCOLOR="\033[0m"
#DT=`date '+%d%m%Y'`
BASEPATH=$HOME/latest_kernel_build_$(hostname)_$(date '+%F')
EFIBOOTDIR=/boot/efi/EFI/debian/
EFIMENUENTRY=/boot/efi/loader/entries/Debian.conf
get_kernel=/usr/local/bin/secure_kernel_tarball
printf "\n\n ${Reverse}################ Building Custom Kernel ${NOCOLOR}################ \n\n"
mkdir -p $BASEPATH
printf "${Bright}${White}Created the ${BASEPATH} ${NOCOLOR} \n\n"
cd $BASEPATH
printf "Hostname: %s\nDate : %s\nUptime :%s\n\n" "$(hostname -s)" "$(date)" "$(uptime)"
printf " Check the latest stable kernel version from ${Bright}${Blue}kernel.org${NOCOLOR} \n\n"
#kernel=`curl -sL https://www.kernel.org/finger_banner | grep '4.18' | awk -F: '{gsub(/ /,"", $0); print $2}'`
kernel=`curl -s https://www.kernel.org/ | grep -A1 'stable' | grep -oP '(?<=strong>).*(?=</strong.*)' | grep 5.3`
printf "${Bright}${Green}$kernel${NOCOLOR}\n\n"
printf "\n\n${Bright}${Magenta} Make sure we are in the right directory ${NOCOLOR}...\n\n"
printf "${Reverse}$PWD ${NOCOLOR} \n\n"
printf "Get the kernel from ${Bright}${Blue}kernel.org${NOCOLOR} and this for the ${Underline}*stable* kernel${NOCOLOR} \n\n\n"
#wget -c https://cdn.kernel.org/pub/linux/kernel/v4.x/linux-$kernel.tar.xz
#printf "Get the ${Bright}${LimeYellow}sign for the kernel${NOCOLOR} ...\n\n"
#wget -c https://cdn.kernel.org/pub/linux/kernel/v4.x/linux-$kernel.tar.sign
#printf "Get the ${Bright}${Cyan} asc file for verification ${NOCOLOR} ...\n\n"
#wget -c https://cdn.kernel.org/pub/linux/kernel/v4.x/sha256sums.asc
eval ${get_kernel} ${kernel}
printf "${Bright}${LimeYellow}Decompress the kernel source ${NOCOLOR}..\n\n"
tar -xJvf linux-$kernel.tar.xz | /usr/local/bin/lolcat
#printf "${Bright}${Magenta}Verify the GPG signature on the kernel file${NOCOLOR}...\n\n"
#gpg2 --verify linux-$kernel.tar.sign
#gpg2 --verify sha256sums.asc
cd linux-$kernel
printf "##################${Reverse}Configure the kernel ${NOCOLOR} ######## \n\n\n"
printf "\n\n${Bright}${LimeYellow}Make clean and make mrproper on it ${NOCLOR}......\n\n"
make clean && make mrproper
printf "${Bright}${PowderBlue}Create a .config file,copying over the existing one ${NOCOLOR}....\n\n"
cp -v /boot/config-`uname -r` .config
printf "${Bright}${Blue}Run make olddefconfig on it ${NOCOLOR}....\n\n"
make olddefconfig | /usr/local/bin/lolcat
printf "${Bright}${Red}Taking away faulty option for custom kernel build${NOCOLOR}..\n\n"
sed -i 's/CONFIG_SYSTEM_TRUSTED_KEYS=yes/CONFIG_SYSTEM_TRUSTED_KEYS=no /' .config
grep CONFIG_SYSTEM_TRUSTED_KEYS .config
sleep 5
printf "${Bright}${Cyan}######################### Lets build the kernel #####################################${NOCOLOR}....\n\n\n"
printf "\n${Yellow} Disabling DEBUG INFO${NOCOLOR} . . .\n\n"
scripts/config --disable DEBUG_INFO
printf " \_ ${Green}Done${NOCOLOR}\n\n"
/usr/bin/time -f "\n\n\tTime Elapsed: %E\n\n" unbuffer fakeroot make-kpkg -j `getconf _NPROCESSORS_ONLN` --initrd --append-to-version=-`hostname` kernel_image kernel_headers | /usr/bin/ts | /usr/local/bin/lolcat
printf "\n\n\n ${Bright}${Green}Install the generated packages aka kernel,headers,modules et al ${NOCOLOR}\n\n\n"
cd ..
dpkg -i linux-headers-* linux-image-*
printf "${Bright}${Cyan}Copy kernel,initrd to EFI directory ${NOCOLOR}.....\n\n\n"
cd /boot
cp -v /boot/vmlinuz-$kernel-debian $EFIBOOTDIR
cp -v /boot/initrd.img-$kernel-debian $EFIBOOTDIR
printf "\n\n\n${Bright}${PowderBlue} Fix the boot entry ${NOCOLOR}...\n\n\n"
echo "title Debian" > $EFIMENUENTRY
echo "linux /EFI/debian/vmlinuz-$kernel-debian" >> $EFIMENUENTRY
echo "initrd /EFI/debian/initrd.img-$kernel-debian" >> $EFIMENUENTRY
echo "options root=PARTUUID=38fa068d-df77-4562-926c-cbfe8f6c8a52 loglevel=3 systemd.show_status=true rw" >> $EFIMENUENTRY
printf "\n\n${Bright}${Green}Take a look at it ${NOCOLOR}...\n\n\n"
cat $EFIMENUENTRY
printf "\n\n ${Bright}${Cyan} Fix the UEFI boot shell script ... ${NOCOLOR} \n\n"
echo " \EFI\debian\vmlinuz-$kernel-debian root=PARTUUID=38fa068d-df77-4562-926c-cbfe8f6c8a52 loglevel=3 systemd.show_status=true rw initrd=\EFI\debian\initrd.img-$kernel-debian" > /boot/efi/EFI/debian.nsh
cat /boot/efi/EFI/debian.nsh
printf "\n\n ${Bright}${LimeYellow} Removing the build directory...wait .. ${NOCOLOR} \n\n"
rm -rf $BASEPATH
exit 0