android_kernel_samsung_sm8650/avb_boot_img.bzl

load("//build/kernel/kleaf:hermetic_tools.bzl", "hermetic_toolchain")

def sign_boot_img(ctx):
    inputs = []
    inputs += ctx.files.artifacts
    inputs += ctx.files.avbtool
    inputs += ctx.files.key

    outputs = ctx.actions.declare_file("{}/boot.img".format(ctx.label.name))

    hermetic_tools = hermetic_toolchain.get(ctx)

    for artifact in ctx.files.artifacts:
        if artifact.basename == "boot.img":
            boot_img = artifact
            break

    if not boot_img:
        fail("artifacts must include file named \"boot.img\"")

    proplist = " ".join(["--prop {}".format(x) for x in ctx.attr.props])

    command = hermetic_tools.setup
    command += """
    cp {boot_img} {boot_dir}/{boot_name}
    {tool} add_hash_footer --image {boot_dir}/{boot_name} --algorithm SHA256_RSA4096 \
            --key {key} --partition_size {boot_partition_size} --partition_name boot \
            {proplist}
    """.format(
        boot_img = boot_img.path,
        tool = ctx.file.avbtool.path,
        key = ctx.file.key.path,
        boot_dir = outputs.dirname,
        boot_name = outputs.basename,
        boot_partition_size = ctx.attr.boot_partition_size,
        proplist = proplist,
    )

    ctx.actions.run_shell(
        mnemonic = "SignBootImg",
        inputs = inputs,
        outputs = [outputs],
        command = command,
        tools = hermetic_tools.deps,
        progress_message = "Signing boot image from artifacts",
    )

    return [
        DefaultInfo(
            files = depset([outputs]),
        ),
    ]

avb_sign_boot_image = rule(
    implementation = sign_boot_img,
    doc = "Sign the boot image present in artifacts",
    attrs = {
        "artifacts": attr.label(
            mandatory = True,
            allow_files = True,
        ),
        "avbtool": attr.label(
            mandatory = True,
            allow_single_file = True,
        ),
        "key": attr.label(
            mandatory = True,
            allow_single_file = True,
        ),
        "boot_partition_size": attr.int(
            mandatory = False,
            default = 0x6000000,  # bytes, = 98304 kb
            doc = "Final size of boot.img desired",
        ),
        "props": attr.string_list(
            mandatory = True,
            allow_empty = False,
            doc = "List of key:value pairs",
        ),
    },
    toolchains = [
        hermetic_toolchain.type,
    ],
)
ANDROID: build: avb_boot_img: Use hermetic tools Currently, the avb_boot_img rule uses "openssl" from the host while building. This causes a build error on hosts that do not have openssl installed. Since openssl is included in the prebuilt hermetic tools, let's update the rule to use those instead. Change-Id: Iddd95a3a74690bfe5e94733e810eed8800e77c39 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-09-06 04:16:35 +09:00			`load("//build/kernel/kleaf:hermetic_tools.bzl", "hermetic_toolchain")`

ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`def sign_boot_img(ctx):`
			`inputs = []`
			`inputs += ctx.files.artifacts`
			`inputs += ctx.files.avbtool`
			`inputs += ctx.files.key`

			`outputs = ctx.actions.declare_file("{}/boot.img".format(ctx.label.name))`

ANDROID: build: avb_boot_img: Use hermetic tools Currently, the avb_boot_img rule uses "openssl" from the host while building. This causes a build error on hosts that do not have openssl installed. Since openssl is included in the prebuilt hermetic tools, let's update the rule to use those instead. Change-Id: Iddd95a3a74690bfe5e94733e810eed8800e77c39 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-09-06 04:16:35 +09:00			`hermetic_tools = hermetic_toolchain.get(ctx)`

ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`for artifact in ctx.files.artifacts:`
			`if artifact.basename == "boot.img":`
			`boot_img = artifact`
			`break`

			`if not boot_img:`
			`fail("artifacts must include file named \"boot.img\"")`

			`proplist = " ".join(["--prop {}".format(x) for x in ctx.attr.props])`

ANDROID: build: avb_boot_img: Use hermetic tools Currently, the avb_boot_img rule uses "openssl" from the host while building. This causes a build error on hosts that do not have openssl installed. Since openssl is included in the prebuilt hermetic tools, let's update the rule to use those instead. Change-Id: Iddd95a3a74690bfe5e94733e810eed8800e77c39 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-09-06 04:16:35 +09:00			`command = hermetic_tools.setup`
			`command += """`
ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`cp {boot_img} {boot_dir}/{boot_name}`
			`{tool} add_hash_footer --image {boot_dir}/{boot_name} --algorithm SHA256_RSA4096 \`
ANDROID: build: avb_boot_img: Make boot img size configurable Some targets require different boot image sizes, so allow that to be configurable instead of hard-coded. Change-Id: Iaac716f5baf91e99e0e91e71ab7da73edbbb46b7 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-06-01 02:07:20 +09:00			`--key {key} --partition_size {boot_partition_size} --partition_name boot \`
ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`{proplist}`
			`""".format(`
ANDROID: build: Fix output directory layout With a recent change to the output directory handling from build_with_bazel.py, some dist directory paths incorrectly used hyphens instead of underscores. Fix this issue by mirroring the logic in msm_common.bzl which handles these paths properly. Also, run buildifier to fix format of Bazel build files. Change-Id: Ia82073f059c54f4a7f523c5bd91afdc755c70df1 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-07-22 03:55:52 +09:00			`boot_img = boot_img.path,`
			`tool = ctx.file.avbtool.path,`
			`key = ctx.file.key.path,`
			`boot_dir = outputs.dirname,`
			`boot_name = outputs.basename,`
			`boot_partition_size = ctx.attr.boot_partition_size,`
			`proplist = proplist,`
ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`)`

			`ctx.actions.run_shell(`
			`mnemonic = "SignBootImg",`
			`inputs = inputs,`
			`outputs = [outputs],`
			`command = command,`
ANDROID: build: avb_boot_img: Use hermetic tools Currently, the avb_boot_img rule uses "openssl" from the host while building. This causes a build error on hosts that do not have openssl installed. Since openssl is included in the prebuilt hermetic tools, let's update the rule to use those instead. Change-Id: Iddd95a3a74690bfe5e94733e810eed8800e77c39 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-09-06 04:16:35 +09:00			`tools = hermetic_tools.deps,`
ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`progress_message = "Signing boot image from artifacts",`
			`)`

			`return [`
			`DefaultInfo(`
			`files = depset([outputs]),`
			`),`
			`]`

			`avb_sign_boot_image = rule(`
			`implementation = sign_boot_img,`
			`doc = "Sign the boot image present in artifacts",`
			`attrs = {`
			`"artifacts": attr.label(`
			`mandatory = True,`
			`allow_files = True,`
			`),`
			`"avbtool": attr.label(`
			`mandatory = True,`
			`allow_single_file = True,`
			`),`
			`"key": attr.label(`
			`mandatory = True,`
			`allow_single_file = True,`
			`),`
ANDROID: build: avb_boot_img: Make boot img size configurable Some targets require different boot image sizes, so allow that to be configurable instead of hard-coded. Change-Id: Iaac716f5baf91e99e0e91e71ab7da73edbbb46b7 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-06-01 02:07:20 +09:00			`"boot_partition_size": attr.int(`
			`mandatory = False,`
ANDROID: build: Fix output directory layout With a recent change to the output directory handling from build_with_bazel.py, some dist directory paths incorrectly used hyphens instead of underscores. Fix this issue by mirroring the logic in msm_common.bzl which handles these paths properly. Also, run buildifier to fix format of Bazel build files. Change-Id: Ia82073f059c54f4a7f523c5bd91afdc755c70df1 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-07-22 03:55:52 +09:00			`default = 0x6000000, # bytes, = 98304 kb`
ANDROID: build: avb_boot_img: Make boot img size configurable Some targets require different boot image sizes, so allow that to be configurable instead of hard-coded. Change-Id: Iaac716f5baf91e99e0e91e71ab7da73edbbb46b7 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-06-01 02:07:20 +09:00			`doc = "Final size of boot.img desired",`
			`),`
ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`"props": attr.string_list(`
			`mandatory = True,`
			`allow_empty = False,`
			`doc = "List of key:value pairs",`
			`),`
			`},`
ANDROID: build: avb_boot_img: Use hermetic tools Currently, the avb_boot_img rule uses "openssl" from the host while building. This causes a build error on hosts that do not have openssl installed. Since openssl is included in the prebuilt hermetic tools, let's update the rule to use those instead. Change-Id: Iddd95a3a74690bfe5e94733e810eed8800e77c39 Signed-off-by: John Moon <quic_johmoo@quicinc.com> 2023-09-06 04:16:35 +09:00			`toolchains = [`
			`hermetic_toolchain.type,`
			`],`
ANDROID: build: msm_kernel_la: Make boot image a chained partition Convert the final boot image generated into a "chained partition" [1], which is accomplished by calling `avbtool add_hash_footer` on it. [1]: https://android.googlesource.com/platform/external/avb/+/master/README.md Change-Id: Iee1b9d57165011ffbabd273a2610cf2733731359 Signed-off-by: Guru Das Srinagesh <quic_gurus@quicinc.com> 2023-05-18 09:25:35 +09:00			`)`