Go to file

cfig 1aeef725a7 AVB: decouple vbmeta.img from recovery.img for non-A/B devices For following cases: Case 1: A/B devices: no change Case 2: non-A/B devices, with unsigned recovery image: not allowed anymore by mandating BOARD_AVB_RECOVERY_KEY_PATH Case 3: non-A/B devices, with signed recovery image: vbmeta.img should not include ChainPartitionDescriptor of recovery.img, otherwise device can not even boot into normal mode if recovery partition is damaged This CL will cause a build break if BOARD_AVB_RECOVERY_KEY_PATH is not set for non-A/B targets with recovery.img The following is an example to fix the build break by specifying AVB signing configs for the recovery.img. BOARD_AVB_RECOVERY_KEY_PATH := external/avb/test/data/testkey_rsa2048.pem BOARD_AVB_RECOVERY_ALGORITHM := SHA256_RSA2048 BOARD_AVB_RECOVERY_ROLLBACK_INDEX := $(PLATFORM_SECURITY_PATCH_TIMESTAMP) BOARD_AVB_RECOVERY_ROLLBACK_INDEX_LOCATION := 2 Also note that libavb in bootloader needs an update to include this commit Iaa886037edb18c2ff6c60fa2a7f883ab7303ba1a, to support verifying recovery.img independently (not through vbmeta.img). Bug: 130351427 Test (Case 3): normal mode: avb_slot_verify(flags=AVB_SLOT_VERIFY_FLAGS_NONE) recovery mode: avb_slot_verify(flags=AVB_SLOT_VERIFY_FLAGS_NO_VBMETA_PARTITION) Test: PYTHONPATH=build/make/tools/releasetools \ python -m unittest test_validate_target_files Test: Use a lunch'd target. `atest --host releasetools_test releasetools_py3_test` Test: validate_target_files.py with Case-3 target files Change-Id: I2a73252b385fa463b4abd444923a8acc473df0b4		2019-10-10 14:28:34 +00:00
common	Move TOP/TOPDIR to build/make/common/core.mk	2019-08-08 10:58:09 -07:00
core	AVB: decouple vbmeta.img from recovery.img for non-A/B devices	2019-10-10 14:28:34 +00:00
packaging	Fix creating _dist_<goal> targets under !dist	2018-10-21 08:56:27 -07:00
target	Merge "Add IBootControl HAL 1.1."	2019-10-08 19:03:05 +00:00
tests	Only set TARGET_PLATFORM version in lunch when explicitly requested	2017-05-01 14:26:40 -07:00
tools	AVB: decouple vbmeta.img from recovery.img for non-A/B devices	2019-10-10 14:28:34 +00:00
.gitignore	Add build subprojects to .gitignore	2015-07-23 13:18:47 -07:00
Changes.md	Changes.md: Change OUT_DIR to PRODUCT_OUT	2019-06-04 20:49:51 +09:00
CleanSpec.mk	Re-submit "Make mainline device use apex"	2019-10-04 20:25:14 +08:00
Deprecation.md	Start the deprecation of BUILD_HOST_STATIC_LIBRARY	2019-06-14 09:37:42 -07:00
OWNERS	Add more OWNERS	2019-06-17 15:22:33 -07:00
README.md	Mark envsetup.sh vars as deprecated in makefiles	2017-11-28 14:19:50 -08:00
Usage.txt	Remove the PRODUCT-* goal	2019-07-29 14:27:04 -07:00
buildspec.mk.default	Add TARGET_PLATFORM_VERSION to lunch	2017-03-23 09:44:08 -07:00
envsetup.sh	Merge "Fix zsh compatibility issue in build/envsetup.sh"	2019-10-08 11:41:26 +00:00
help.sh	Rename product_services to system_ext	2019-07-09 08:57:19 +00:00
navbar.md	Mark envsetup.sh vars as deprecated in makefiles	2017-11-28 14:19:50 -08:00
tapasHelp.sh	Remove armv5te	2018-01-08 15:26:16 -08:00

README.md

Android Make Build System

This is the Makefile-based portion of the Android Build System.

For documentation on how to run a build, see Usage.txt

For a list of behavioral changes useful for Android.mk writers see Changes.md

For an outdated reference on Android.mk files, see build-system.html. Our Android.mk files look similar, but are entirely different from the Android.mk files used by the NDK build system. When searching for documentation elsewhere, ensure that it is for the platform build system -- most are not.

This Makefile-based system is in the process of being replaced with Soong, a new build system written in Go. During the transition, all of these makefiles are read by Kati, and generate a ninja file instead of being executed directly. That's combined with a ninja file read by Soong so that the build graph of the two systems can be combined and run as one.