| commit | 6106a4ead530549c3570f682846ba731b97f81ab | [log] [tgz] |
|---|---|---|
| author | Vishwath Mohan <vishwath@google.com> | Thu May 24 18:04:25 2018 -0700 |
| committer | Vishwath Mohan <vishwath@google.com> | Thu May 24 22:14:03 2018 -0700 |
| tree | fd4f11a82681c11446ed81e74bd9ff8087d05729 | |
| parent | 2dcba6fed754c9c1ff145660386f0485aa062949 [diff] |
Enable CFI by default but restrict CFI_INCLUDE_PATHS This CL enables CFI on security sensitive components for product configs that inherit core_64_bit.mk (and core_64_bit_only.mk). Note that this only requests the build system to do so. Internal build logic will dictate if this is actually enabled on the build or not (CFI is currently disabled for ARM32 and MIPS for example). In addition, this also restricts CFI_INCLUDE_PATHS and PRODUCT_CFI_INCLUDE_PATHS to Arm64 architectures only. This helps narrow which targets enable CFI out of the box. Bug: 66301104 Test: CFI is enabled on aosp_* targets Change-Id: I52af499dc34cd4b42fbfb1175f6a37aaf17b65dd
This is the Makefile-based portion of the Android Build System.
For documentation on how to run a build, see Usage.txt
For a list of behavioral changes useful for Android.mk writers see Changes.md
For an outdated reference on Android.mk files, see build-system.html. Our Android.mk files look similar, but are entirely different from the Android.mk files used by the NDK build system. When searching for documentation elsewhere, ensure that it is for the platform build system -- most are not.
This Makefile-based system is in the process of being replaced with Soong, a new build system written in Go. During the transition, all of these makefiles are read by Kati, and generate a ninja file instead of being executed directly. That's combined with a ninja file read by Soong so that the build graph of the two systems can be combined and run as one.