1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
|
/*
* Copyright (C) 2020 The Android Open Source Project
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include "host/commands/assemble_cvd/boot_image_utils.h"
#include "common/libs/fs/shared_fd.h"
#include "host/libs/config/cuttlefish_config.h"
#include <string.h>
#include <unistd.h>
#include <fstream>
#include <regex>
#include <sstream>
#include <string>
#include <android-base/logging.h>
#include <android-base/strings.h>
#include "common/libs/utils/files.h"
#include "common/libs/utils/result.h"
#include "common/libs/utils/subprocess.h"
#include "host/libs/avb/avb.cpp"
#include "host/libs/config/known_paths.h"
const char TMP_EXTENSION[] = ".tmp";
const char CPIO_EXT[] = ".cpio";
const char TMP_RD_DIR[] = "stripped_ramdisk_dir";
const char STRIPPED_RD[] = "stripped_ramdisk";
const char CONCATENATED_VENDOR_RAMDISK[] = "concatenated_vendor_ramdisk";
namespace cuttlefish {
namespace {
std::string ExtractValue(const std::string& dictionary, const std::string& key) {
std::size_t index = dictionary.find(key);
if (index != std::string::npos) {
std::size_t end_index = dictionary.find('\n', index + key.length());
if (end_index != std::string::npos) {
return dictionary.substr(index + key.length(),
end_index - index - key.length());
}
}
return "";
}
// Though it is just as fast to overwrite the existing boot images with the newly generated ones,
// the cuttlefish composite disk generator checks the age of each of the components and
// regenerates the disk outright IF any one of the components is younger/newer than the current
// composite disk. If this file overwrite occurs, that condition is fulfilled. This action then
// causes data in the userdata partition from previous boots to be lost (which is not expected by
// the user if they've been booting the same kernel/ramdisk combination repeatedly).
// Consequently, the file is checked for differences and ONLY overwritten if there is a diff.
bool DeleteTmpFileIfNotChanged(const std::string& tmp_file, const std::string& current_file) {
if (!FileExists(current_file) ||
ReadFile(current_file) != ReadFile(tmp_file)) {
if (!RenameFile(tmp_file, current_file).ok()) {
LOG(ERROR) << "Unable to delete " << current_file;
return false;
}
LOG(DEBUG) << "Updated " << current_file;
} else {
LOG(DEBUG) << "Didn't update " << current_file;
RemoveFile(tmp_file);
}
return true;
}
void RepackVendorRamdisk(const std::string& kernel_modules_ramdisk_path,
const std::string& original_ramdisk_path,
const std::string& new_ramdisk_path,
const std::string& build_dir) {
int success = 0;
const std::string ramdisk_stage_dir = build_dir + "/" + TMP_RD_DIR;
UnpackRamdisk(original_ramdisk_path, ramdisk_stage_dir);
success = Execute({"rm", "-rf", ramdisk_stage_dir + "/lib/modules"});
CHECK(success == 0) << "Could not rmdir \"lib/modules\" in TMP_RD_DIR. "
<< "Exited with status " << success;
const std::string stripped_ramdisk_path = build_dir + "/" + STRIPPED_RD;
success = Execute({"/bin/bash", "-c",
HostBinaryPath("mkbootfs") + " " + ramdisk_stage_dir +
" > " + stripped_ramdisk_path + CPIO_EXT});
CHECK(success == 0) << "Unable to run cd or cpio. Exited with status "
<< success;
success = Execute({"/bin/bash", "-c",
HostBinaryPath("lz4") + " -c -l -12 --favor-decSpeed " +
stripped_ramdisk_path + CPIO_EXT + " > " +
stripped_ramdisk_path});
CHECK(success == 0) << "Unable to run lz4. Exited with status " << success;
// Concatenates the stripped ramdisk and input ramdisk and places the result at new_ramdisk_path
std::ofstream final_rd(new_ramdisk_path, std::ios_base::binary | std::ios_base::trunc);
std::ifstream ramdisk_a(stripped_ramdisk_path, std::ios_base::binary);
std::ifstream ramdisk_b(kernel_modules_ramdisk_path, std::ios_base::binary);
final_rd << ramdisk_a.rdbuf() << ramdisk_b.rdbuf();
}
bool IsCpioArchive(const std::string& path) {
static constexpr std::string_view CPIO_MAGIC = "070701";
auto fd = SharedFD::Open(path, O_RDONLY);
std::array<char, CPIO_MAGIC.size()> buf{};
if (fd->Read(buf.data(), buf.size()) != CPIO_MAGIC.size()) {
return false;
}
return memcmp(buf.data(), CPIO_MAGIC.data(), CPIO_MAGIC.size()) == 0;
}
} // namespace
void PackRamdisk(const std::string& ramdisk_stage_dir,
const std::string& output_ramdisk) {
int success = Execute({"/bin/bash", "-c",
HostBinaryPath("mkbootfs") + " " + ramdisk_stage_dir +
" > " + output_ramdisk + CPIO_EXT});
CHECK(success == 0) << "Unable to run cd or cpio. Exited with status "
<< success;
success = Execute({"/bin/bash", "-c",
HostBinaryPath("lz4") + " -c -l -12 --favor-decSpeed " +
output_ramdisk + CPIO_EXT + " > " + output_ramdisk});
CHECK(success == 0) << "Unable to run lz4. Exited with status " << success;
}
void UnpackRamdisk(const std::string& original_ramdisk_path,
const std::string& ramdisk_stage_dir) {
int success = 0;
if (IsCpioArchive(original_ramdisk_path)) {
CHECK(Copy(original_ramdisk_path, original_ramdisk_path + CPIO_EXT))
<< "failed to copy " << original_ramdisk_path << " to "
<< original_ramdisk_path + CPIO_EXT;
} else {
success =
Execute({"/bin/bash", "-c",
HostBinaryPath("lz4") + " -c -d -l " + original_ramdisk_path +
" > " + original_ramdisk_path + CPIO_EXT});
CHECK(success == 0) << "Unable to run lz4 on file " << original_ramdisk_path
<< " . Exited with status " << success;
}
const auto ret = EnsureDirectoryExists(ramdisk_stage_dir);
CHECK(ret.ok()) << ret.error().FormatForEnv();
success = Execute(
{"/bin/bash", "-c",
"(cd " + ramdisk_stage_dir + " && while " + HostBinaryPath("toybox") +
" cpio -idu; do :; done) < " + original_ramdisk_path + CPIO_EXT});
CHECK(success == 0) << "Unable to run cd or cpio. Exited with status "
<< success;
}
bool GetAvbMetadatFromBootImage(const std::string& boot_image_path,
const std::string& unpack_dir) {
auto avbtool_path = HostBinaryPath("avbtool");
Command avb_cmd(avbtool_path);
avb_cmd.AddParameter("info_image");
avb_cmd.AddParameter("--image");
avb_cmd.AddParameter(boot_image_path);
auto output_file = SharedFD::Creat(unpack_dir + "/boot_params", 0666);
if (!output_file->IsOpen()) {
LOG(ERROR) << "Unable to create intermediate boot params file: "
<< output_file->StrError();
return false;
}
avb_cmd.RedirectStdIO(Subprocess::StdIOChannel::kStdOut, output_file);
int success = avb_cmd.Start().Wait();
if (success != 0) {
LOG(ERROR) << "Unable to run avb command. Exited with status " << success;
return false;
}
return true;
}
bool UnpackBootImage(const std::string& boot_image_path,
const std::string& unpack_dir) {
auto unpack_path = HostBinaryPath("unpack_bootimg");
Command unpack_cmd(unpack_path);
unpack_cmd.AddParameter("--boot_img");
unpack_cmd.AddParameter(boot_image_path);
unpack_cmd.AddParameter("--out");
unpack_cmd.AddParameter(unpack_dir);
auto output_file = SharedFD::Creat(unpack_dir + "/boot_params", 0666);
if (!output_file->IsOpen()) {
LOG(ERROR) << "Unable to create intermediate boot params file: "
<< output_file->StrError();
return false;
}
unpack_cmd.RedirectStdIO(Subprocess::StdIOChannel::kStdOut, output_file);
int success = unpack_cmd.Start().Wait();
if (success != 0) {
LOG(ERROR) << "Unable to run unpack_bootimg. Exited with status "
<< success;
return false;
}
return true;
}
bool UnpackVendorBootImageIfNotUnpacked(
const std::string& vendor_boot_image_path, const std::string& unpack_dir) {
// the vendor boot params file is created during the first unpack. If it's
// already there, a unpack has occurred and there's no need to repeat the
// process.
if (FileExists(unpack_dir + "/vendor_boot_params")) {
return true;
}
auto unpack_path = HostBinaryPath("unpack_bootimg");
Command unpack_cmd(unpack_path);
unpack_cmd.AddParameter("--boot_img");
unpack_cmd.AddParameter(vendor_boot_image_path);
unpack_cmd.AddParameter("--out");
unpack_cmd.AddParameter(unpack_dir);
auto output_file = SharedFD::Creat(unpack_dir + "/vendor_boot_params", 0666);
if (!output_file->IsOpen()) {
LOG(ERROR) << "Unable to create intermediate vendor boot params file: "
<< output_file->StrError();
return false;
}
unpack_cmd.RedirectStdIO(Subprocess::StdIOChannel::kStdOut, output_file);
int success = unpack_cmd.Start().Wait();
if (success != 0) {
LOG(ERROR) << "Unable to run unpack_bootimg. Exited with status " << success;
return false;
}
// Concatenates all vendor ramdisk into one single ramdisk.
Command concat_cmd("/bin/bash");
concat_cmd.AddParameter("-c");
concat_cmd.AddParameter("cat " + unpack_dir + "/vendor_ramdisk*");
auto concat_file =
SharedFD::Creat(unpack_dir + "/" + CONCATENATED_VENDOR_RAMDISK, 0666);
if (!concat_file->IsOpen()) {
LOG(ERROR) << "Unable to create concatenated vendor ramdisk file: "
<< concat_file->StrError();
return false;
}
concat_cmd.RedirectStdIO(Subprocess::StdIOChannel::kStdOut, concat_file);
success = concat_cmd.Start().Wait();
if (success != 0) {
LOG(ERROR) << "Unable to run cat. Exited with status " << success;
return false;
}
return true;
}
Result<void> RepackBootImage(const Avb& avb,
const std::string& new_kernel_path,
const std::string& boot_image_path,
const std::string& new_boot_image_path,
const std::string& build_dir) {
CF_EXPECT(UnpackBootImage(boot_image_path, build_dir));
std::string boot_params = ReadFile(build_dir + "/boot_params");
auto kernel_cmdline = ExtractValue(boot_params, "command line args: ");
LOG(DEBUG) << "Cmdline from boot image is " << kernel_cmdline;
auto tmp_boot_image_path = new_boot_image_path + TMP_EXTENSION;
auto repack_path = HostBinaryPath("mkbootimg");
Command repack_cmd(repack_path);
repack_cmd.AddParameter("--kernel");
repack_cmd.AddParameter(new_kernel_path);
repack_cmd.AddParameter("--ramdisk");
repack_cmd.AddParameter(build_dir + "/ramdisk");
repack_cmd.AddParameter("--header_version");
repack_cmd.AddParameter("4");
repack_cmd.AddParameter("--cmdline");
repack_cmd.AddParameter(kernel_cmdline);
repack_cmd.AddParameter("-o");
repack_cmd.AddParameter(tmp_boot_image_path);
int result = repack_cmd.Start().Wait();
CF_EXPECT(result == 0, "Unable to run mkbootimg. Exited with status " << result);
CF_EXPECT(avb.AddHashFooter(tmp_boot_image_path, "boot", FileSize(boot_image_path)));
CF_EXPECT(DeleteTmpFileIfNotChanged(tmp_boot_image_path, new_boot_image_path));
return {};
}
bool RepackVendorBootImage(const std::string& new_ramdisk,
const std::string& vendor_boot_image_path,
const std::string& new_vendor_boot_image_path,
const std::string& unpack_dir,
bool bootconfig_supported) {
if (UnpackVendorBootImageIfNotUnpacked(vendor_boot_image_path, unpack_dir) ==
false) {
return false;
}
std::string ramdisk_path;
if (new_ramdisk.size()) {
ramdisk_path = unpack_dir + "/vendor_ramdisk_repacked";
if (!FileExists(ramdisk_path)) {
RepackVendorRamdisk(new_ramdisk,
unpack_dir + "/" + CONCATENATED_VENDOR_RAMDISK,
ramdisk_path, unpack_dir);
}
} else {
ramdisk_path = unpack_dir + "/" + CONCATENATED_VENDOR_RAMDISK;
}
std::string bootconfig = ReadFile(unpack_dir + "/bootconfig");
LOG(DEBUG) << "Bootconfig parameters from vendor boot image are "
<< bootconfig;
std::string vendor_boot_params = ReadFile(unpack_dir + "/vendor_boot_params");
auto kernel_cmdline =
ExtractValue(vendor_boot_params, "vendor command line args: ") +
(bootconfig_supported
? ""
: " " + android::base::StringReplace(bootconfig, "\n", " ", true));
if (!bootconfig_supported) {
// TODO(b/182417593): Until we pass the module parameters through
// modules.options, we pass them through bootconfig using
// 'kernel.<key>=<value>' But if we don't support bootconfig, we need to
// rename them back to the old cmdline version
kernel_cmdline = android::base::StringReplace(
kernel_cmdline, " kernel.", " ", true);
}
LOG(DEBUG) << "Cmdline from vendor boot image is " << kernel_cmdline;
auto tmp_vendor_boot_image_path = new_vendor_boot_image_path + TMP_EXTENSION;
auto repack_path = HostBinaryPath("mkbootimg");
Command repack_cmd(repack_path);
repack_cmd.AddParameter("--vendor_ramdisk");
repack_cmd.AddParameter(ramdisk_path);
repack_cmd.AddParameter("--header_version");
repack_cmd.AddParameter("4");
repack_cmd.AddParameter("--vendor_cmdline");
repack_cmd.AddParameter(kernel_cmdline);
repack_cmd.AddParameter("--vendor_boot");
repack_cmd.AddParameter(tmp_vendor_boot_image_path);
repack_cmd.AddParameter("--dtb");
repack_cmd.AddParameter(unpack_dir + "/dtb");
if (bootconfig_supported) {
repack_cmd.AddParameter("--vendor_bootconfig");
repack_cmd.AddParameter(unpack_dir + "/bootconfig");
}
int success = repack_cmd.Start().Wait();
if (success != 0) {
LOG(ERROR) << "Unable to run mkbootimg. Exited with status " << success;
return false;
}
auto avbtool = Avb(AvbToolBinary());
Result<void> result =
avbtool.AddHashFooter(tmp_vendor_boot_image_path, "vendor_boot",
FileSize(vendor_boot_image_path));
if (!result.ok()) {
LOG(ERROR) << result.error().Trace();
return false;
}
return DeleteTmpFileIfNotChanged(tmp_vendor_boot_image_path, new_vendor_boot_image_path);
}
bool RepackVendorBootImageWithEmptyRamdisk(
const std::string& vendor_boot_image_path,
const std::string& new_vendor_boot_image_path,
const std::string& unpack_dir, bool bootconfig_supported) {
auto empty_ramdisk_file =
SharedFD::Creat(unpack_dir + "/empty_ramdisk", 0666);
return RepackVendorBootImage(
unpack_dir + "/empty_ramdisk", vendor_boot_image_path,
new_vendor_boot_image_path, unpack_dir, bootconfig_supported);
}
void RepackGem5BootImage(const std::string& initrd_path,
const std::string& bootconfig_path,
const std::string& unpack_dir,
const std::string& input_ramdisk_path) {
// Simulate per-instance what the bootloader would usually do
// Since on other devices this runs every time, just do it here every time
std::ofstream final_rd(initrd_path,
std::ios_base::binary | std::ios_base::trunc);
std::ifstream boot_ramdisk(unpack_dir + "/ramdisk",
std::ios_base::binary);
std::string new_ramdisk_path = unpack_dir + "/vendor_ramdisk_repacked";
// Test to make sure new ramdisk hasn't already been repacked if input ramdisk is provided
if (FileExists(input_ramdisk_path) && !FileExists(new_ramdisk_path)) {
RepackVendorRamdisk(input_ramdisk_path,
unpack_dir + "/" + CONCATENATED_VENDOR_RAMDISK,
new_ramdisk_path, unpack_dir);
}
std::ifstream vendor_boot_ramdisk(FileExists(new_ramdisk_path) ? new_ramdisk_path : unpack_dir +
"/concatenated_vendor_ramdisk",
std::ios_base::binary);
std::ifstream vendor_boot_bootconfig(unpack_dir + "/bootconfig",
std::ios_base::binary |
std::ios_base::ate);
auto vb_size = vendor_boot_bootconfig.tellg();
vendor_boot_bootconfig.seekg(0);
std::ifstream persistent_bootconfig(bootconfig_path,
std::ios_base::binary |
std::ios_base::ate);
auto pb_size = persistent_bootconfig.tellg();
persistent_bootconfig.seekg(0);
// Build the bootconfig string, trim it, and write the length, checksum
// and trailer bytes
std::string bootconfig =
"androidboot.slot_suffix=_a\n"
"androidboot.force_normal_boot=1\n"
"androidboot.verifiedbootstate=orange\n";
auto bootconfig_size = bootconfig.size();
bootconfig.resize(bootconfig_size + (uint64_t)(vb_size + pb_size), '\0');
vendor_boot_bootconfig.read(&bootconfig[bootconfig_size], vb_size);
persistent_bootconfig.read(&bootconfig[bootconfig_size + vb_size], pb_size);
// Trim the block size padding from the persistent bootconfig
bootconfig.erase(bootconfig.find_last_not_of('\0'));
// Write out the ramdisks and bootconfig blocks
final_rd << boot_ramdisk.rdbuf() << vendor_boot_ramdisk.rdbuf()
<< bootconfig;
// Append bootconfig length
bootconfig_size = bootconfig.size();
final_rd.write(reinterpret_cast<const char *>(&bootconfig_size),
sizeof(uint32_t));
// Append bootconfig checksum
uint32_t bootconfig_csum = 0;
for (auto i = 0; i < bootconfig_size; i++) {
bootconfig_csum += bootconfig[i];
}
final_rd.write(reinterpret_cast<const char *>(&bootconfig_csum),
sizeof(uint32_t));
// Append bootconfig trailer
final_rd << "#BOOTCONFIG\n";
final_rd.close();
}
// TODO(290586882) switch this function to rely on avb footers instead of
// the os version field in the boot image header.
// https://source.android.com/docs/core/architecture/bootloader/boot-image-header
Result<std::string> ReadAndroidVersionFromBootImage(
const std::string& boot_image_path) {
// temp dir path length is chosen to be larger than sun_path_length (108)
char tmp_dir[200];
sprintf(tmp_dir, "%s/XXXXXX", StringFromEnv("TEMP", "/tmp").c_str());
char* unpack_dir = mkdtemp(tmp_dir);
if (!unpack_dir) {
return CF_ERR("boot image unpack dir could not be created");
}
bool unpack_status = GetAvbMetadatFromBootImage(boot_image_path, unpack_dir);
if (!unpack_status) {
RecursivelyRemoveDirectory(unpack_dir);
return CF_ERR("\"" + boot_image_path + "\" boot image unpack into \"" +
unpack_dir + "\" failed");
}
// dirty hack to read out boot params
size_t dir_path_len = strlen(tmp_dir);
std::string boot_params = ReadFile(strcat(unpack_dir, "/boot_params"));
unpack_dir[dir_path_len] = '\0';
RecursivelyRemoveDirectory(unpack_dir);
std::string os_version =
ExtractValue(boot_params, "Prop: com.android.build.boot.os_version -> ");
// if the OS version is "None", it wasn't set when the boot image was made.
if (os_version == "None") {
LOG(INFO) << "Could not extract os version from " << boot_image_path
<< ". Defaulting to 0.0.0.";
return "0.0.0";
}
// os_version returned above is surrounded by single quotes. Removing the
// single quotes.
os_version.erase(remove(os_version.begin(), os_version.end(), '\''),
os_version.end());
std::regex re("[1-9][0-9]*([.][0-9]+)*");
CF_EXPECT(std::regex_match(os_version, re), "Version string is not a valid version \"" + os_version + "\"");
return os_version;
}
} // namespace cuttlefish
|
