2018-10-12 20:49:38 +08:00
|
|
|
// Copyright (C) 2018 The Android Open Source Project
|
|
|
|
//
|
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
// You may obtain a copy of the License at
|
|
|
|
//
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
//
|
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
// limitations under the License.
|
|
|
|
|
|
|
|
package apex
|
|
|
|
|
|
|
|
import (
|
|
|
|
"fmt"
|
|
|
|
"io"
|
2019-03-15 01:13:21 +08:00
|
|
|
"path/filepath"
|
2019-02-18 14:25:04 +08:00
|
|
|
"strings"
|
2018-10-12 20:49:38 +08:00
|
|
|
|
|
|
|
"android/soong/android"
|
2019-02-02 08:53:07 +08:00
|
|
|
|
2018-10-12 20:49:38 +08:00
|
|
|
"github.com/google/blueprint/proptools"
|
|
|
|
)
|
|
|
|
|
|
|
|
var String = proptools.String
|
|
|
|
|
|
|
|
func init() {
|
|
|
|
android.RegisterModuleType("apex_key", apexKeyFactory)
|
2019-02-18 14:25:04 +08:00
|
|
|
android.RegisterSingletonType("apex_keys_text", apexKeysTextFactory)
|
2018-10-12 20:49:38 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
type apexKey struct {
|
|
|
|
android.ModuleBase
|
|
|
|
|
|
|
|
properties apexKeyProperties
|
|
|
|
|
|
|
|
public_key_file android.Path
|
|
|
|
private_key_file android.Path
|
2019-03-15 01:13:21 +08:00
|
|
|
installDir android.OutputPath
|
2018-10-12 20:49:38 +08:00
|
|
|
|
|
|
|
keyName string
|
|
|
|
}
|
|
|
|
|
|
|
|
type apexKeyProperties struct {
|
|
|
|
// Path to the public key file in avbpubkey format. Installed to the device.
|
|
|
|
// Base name of the file is used as the ID for the key.
|
|
|
|
Public_key *string
|
|
|
|
// Path to the private key file in pem format. Used to sign APEXs.
|
|
|
|
Private_key *string
|
2018-12-27 12:32:34 +08:00
|
|
|
|
|
|
|
// Whether this key is installable to one of the partitions. Defualt: true.
|
|
|
|
Installable *bool
|
2018-10-12 20:49:38 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
func apexKeyFactory() android.Module {
|
|
|
|
module := &apexKey{}
|
|
|
|
module.AddProperties(&module.properties)
|
2019-03-15 01:13:21 +08:00
|
|
|
// This module is device-only
|
|
|
|
android.InitAndroidArchModule(module, android.DeviceSupported, android.MultilibCommon)
|
2018-10-12 20:49:38 +08:00
|
|
|
return module
|
|
|
|
}
|
|
|
|
|
2018-12-27 12:32:34 +08:00
|
|
|
func (m *apexKey) installable() bool {
|
|
|
|
return m.properties.Installable == nil || proptools.Bool(m.properties.Installable)
|
|
|
|
}
|
|
|
|
|
2018-10-12 20:49:38 +08:00
|
|
|
func (m *apexKey) GenerateAndroidBuildActions(ctx android.ModuleContext) {
|
2018-12-24 10:31:58 +08:00
|
|
|
m.public_key_file = ctx.Config().ApexKeyDir(ctx).Join(ctx, String(m.properties.Public_key))
|
|
|
|
m.private_key_file = ctx.Config().ApexKeyDir(ctx).Join(ctx, String(m.properties.Private_key))
|
|
|
|
|
|
|
|
// If not found, fall back to the local key pairs
|
|
|
|
if !android.ExistentPathForSource(ctx, m.public_key_file.String()).Valid() {
|
|
|
|
m.public_key_file = android.PathForModuleSrc(ctx, String(m.properties.Public_key))
|
|
|
|
}
|
|
|
|
if !android.ExistentPathForSource(ctx, m.private_key_file.String()).Valid() {
|
|
|
|
m.private_key_file = android.PathForModuleSrc(ctx, String(m.properties.Private_key))
|
|
|
|
}
|
2018-10-12 20:49:38 +08:00
|
|
|
|
|
|
|
pubKeyName := m.public_key_file.Base()[0 : len(m.public_key_file.Base())-len(m.public_key_file.Ext())]
|
|
|
|
privKeyName := m.private_key_file.Base()[0 : len(m.private_key_file.Base())-len(m.private_key_file.Ext())]
|
|
|
|
|
|
|
|
if pubKeyName != privKeyName {
|
|
|
|
ctx.ModuleErrorf("public_key %q (keyname:%q) and private_key %q (keyname:%q) do not have same keyname",
|
|
|
|
m.public_key_file.String(), pubKeyName, m.private_key_file, privKeyName)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
m.keyName = pubKeyName
|
|
|
|
|
2019-03-15 01:13:21 +08:00
|
|
|
m.installDir = android.PathForModuleInstall(ctx, "etc/security/apex")
|
2018-12-27 12:32:34 +08:00
|
|
|
if m.installable() {
|
2019-03-15 01:13:21 +08:00
|
|
|
ctx.InstallFile(m.installDir, m.keyName, m.public_key_file)
|
2018-12-27 12:32:34 +08:00
|
|
|
}
|
2018-10-12 20:49:38 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
func (m *apexKey) AndroidMk() android.AndroidMkData {
|
|
|
|
return android.AndroidMkData{
|
|
|
|
Class: "ETC",
|
|
|
|
OutputFile: android.OptionalPathForPath(m.public_key_file),
|
|
|
|
Extra: []android.AndroidMkExtraFunc{
|
|
|
|
func(w io.Writer, outputFile android.Path) {
|
2019-03-15 01:13:21 +08:00
|
|
|
fmt.Fprintln(w, "LOCAL_MODULE_PATH :=", filepath.Join("$(OUT_DIR)", m.installDir.RelPathString()))
|
2018-10-12 20:49:38 +08:00
|
|
|
fmt.Fprintln(w, "LOCAL_INSTALLED_MODULE_STEM :=", m.keyName)
|
2018-12-27 12:32:34 +08:00
|
|
|
fmt.Fprintln(w, "LOCAL_UNINSTALLABLE_MODULE :=", !m.installable())
|
2018-10-12 20:49:38 +08:00
|
|
|
},
|
|
|
|
},
|
|
|
|
}
|
|
|
|
}
|
2019-02-18 14:25:04 +08:00
|
|
|
|
|
|
|
////////////////////////////////////////////////////////////////////////
|
|
|
|
// apex_keys_text
|
2019-02-20 21:23:29 +08:00
|
|
|
type apexKeysText struct {
|
|
|
|
output android.OutputPath
|
|
|
|
}
|
2019-02-18 14:25:04 +08:00
|
|
|
|
|
|
|
func (s *apexKeysText) GenerateBuildActions(ctx android.SingletonContext) {
|
2019-02-20 21:23:29 +08:00
|
|
|
s.output = android.PathForOutput(ctx, "apexkeys.txt")
|
2019-02-18 14:25:04 +08:00
|
|
|
var filecontent strings.Builder
|
|
|
|
ctx.VisitAllModules(func(module android.Module) {
|
|
|
|
if m, ok := module.(android.Module); ok && !m.Enabled() {
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
if m, ok := module.(*apexBundle); ok {
|
|
|
|
fmt.Fprintf(&filecontent,
|
|
|
|
"name=%q public_key=%q private_key=%q container_certificate=%q container_private_key=%q\\n",
|
|
|
|
m.Name()+".apex",
|
|
|
|
m.public_key_file.String(),
|
|
|
|
m.private_key_file.String(),
|
|
|
|
m.container_certificate_file.String(),
|
|
|
|
m.container_private_key_file.String())
|
|
|
|
}
|
|
|
|
})
|
|
|
|
ctx.Build(pctx, android.BuildParams{
|
|
|
|
Rule: android.WriteFile,
|
2019-02-20 21:23:29 +08:00
|
|
|
Description: "apexkeys.txt",
|
|
|
|
Output: s.output,
|
2019-02-18 14:25:04 +08:00
|
|
|
Args: map[string]string{
|
|
|
|
"content": filecontent.String(),
|
|
|
|
},
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
func apexKeysTextFactory() android.Singleton {
|
|
|
|
return &apexKeysText{}
|
|
|
|
}
|
|
|
|
|
2019-02-20 21:23:29 +08:00
|
|
|
func (s *apexKeysText) MakeVars(ctx android.MakeVarsContext) {
|
|
|
|
ctx.Strict("SOONG_APEX_KEYS_FILE", s.output.String())
|
2019-02-18 14:25:04 +08:00
|
|
|
}
|