本博客参考下面2017年的博客,分段分析android P的开机日志,并加点相关备注
高通平台启动log概述(PBL log、sbl1 log、kernel log)_成为真正的程序员的博客-CSDN博客_高通pbl.
MP部分是不管的,有兴趣可以看看包括MP的启动流程
高通Android设备启动流程分析(从power-on上电到Home Lanucher启动)_Super Jang的博客-CSDN博客_android preloaded-classed.
下篇是android启动流程系列,比较赞,有描述aboot和kernel的程序入口汇编代码,看完还想了解aboot与boot的反汇编可以再看看android镜像分析
Android启动流程简析(一) - 简书.
某方案商各个分区作用,但是没有描述较新的vbmeta和dtbo分区(更新的是android Q的super动态分区,这里不涉及)
Android烧录镜像文件介绍_TseJung的博客-CSDN博客_km41.mbm.
下面是P的启动日志,格式尽量参照第一篇博客。红色部分是PBL log,绿色部分是sbl1 log,紫色部分为lk log,蓝色部分是kernel 启动log,深蓝色部分init启动阶段log。日志体现很多内容,android的模式有紧急下载模式,fastboot刷机模式,recovery/system模式;安全相关的会有Secure boot,verify boot,DM-verity,防止回滚,SELinux;一些设备硬件信息。这些日志内容中有加“//***”备注。
Format: Log Type - Time(microsec) - Message - Optional Info
Log Type: B - Since Boot(Power On Reset), D - Delta, S - Statistic
S - QC_IMAGE_VERSION_STRING=BOOT.BF.3.3.2-00075
S - IMAGE_VARIANT_STRING=JAAIANAZA
S - OEM_IMAGE_VERSION_STRING=mp-server
S - Secure Boot: Off //Secure Boot开关信息
S - JTAG ID @ 0x000a4120 = 0x5480009a //设备板级信息
S - Serial Number @ 0x000a4128 = 0xf5936e5c
S - OEM Config Row 0 @ 0x000a4150 = 0x000000002c000000
S - OEM Config Row 1 @ 0x000a4158 = 0x0000000000000000
S - Feature Config Row 0 @ 0x000a4160 = 0x0107a04000100100
S - Feature Config Row 1 @ 0x000a4168 = 0x02c2f80305000805
S - Boot Config, 0x000000e1
B - 269 - PBL, Start
B - 3144 - bootable_media_detect_entry, Start
B - 44017 - bootable_media_detect_success, Start
B - 44023 - elf_loader_entry, Start
B - 45627 - auth_hash_seg_entry, Start
B - 45920 - auth_hash_seg_exit, Start
B - 80241 - elf_segs_hash_verify_entry, Start
B - 231894 - PBL, End
B - 242536 - SBL1, Start
B - 326990 - pm_device_init, Start
B - 330071 - BOOT_DUMP: PMi8950_PON_FSM =0x20895 :DATA=0x9
B - 332602 - PON REASON: PM0=0x200000020 PM1=0x200000020
B - 337818 - pm_sbl_pre_config:Done
B - 361669 - PM_SET_VAL:Skip
D - 36081 - pm_device_init, Delta
B - 363133 - usb: hs_phy_nondrive_start //虚拟出9006端口(用于设备dump)
B - 365847 - usb: hs_phy_nondrive_finish
B - 369294 - boot_flash_init, Start
D - 0 - boot_flash_init, Delta
B - 376278 - boot_config_data_table_init, Start
D - 5093 - boot_config_data_table_init, Delta - (0 Bytes)
B - 386191 - CDT version:3,Platform ID:8,Major ID:1,Minor ID:0,Subtype:0
B - 393175 - sbl1_ddr_set_params, Start
B - 397476 - cpr_init, Start
D - 1128 - cpr_init, Delta
B - 402508 - Pre_DDR_clock_init, Start
D - 213 - Pre_DDR_clock_init, Delta
D - 0 - sbl1_ddr_set_params, Delta
B - 415349 - do ddr sanity test, Start //9008端口,紧急下载模式停住位置
D - 335 - do ddr sanity test, Delta
B - 421296 - pm_driver_init, Start
B - 427854 - PM: INFO: pm_sbl_chg_init
B - 428494 - Manually set to USB500 mode
B - 432398 - raw vbat: 4017, gain: -16
B - 435997 - vbat: 3856 //电池电压
B - 438468 - Battery good, bootup
D - 17141 - pm_driver_init, Delta
B - 448716 - DDR Training restore, Start
B - 450942 - DDR Training restore, End
B - 460611 - clock_init, Start
D - 488 - clock_init, Delta
B - 461160 - Image Load, Start
D - 64294 - QSEE Image Loaded, Delta - (1519024 Bytes) //modem部分
B - 525454 - Image Load, Start
D - 213 - SEC Image Loaded, Delta - (2048 Bytes) //sec 与 secure boot相关
B - 532530 - PM0: PON1=0x20:PON1 | POFF1=0x2:PS_HOLD
B - 537257 - PM1: PON1=0x20:PON1 | POFF1=0x2:PS_HOLD
B - 542168 - sbl1_efs_handle_cookies, Start
D - 366 - sbl1_efs_handle_cookies, Delta
B - 550403 - Image Load, Start
D - 8357 - DEVCFG Image Loaded, Delta - (33900 Bytes)//设备配置,会控制芯片硬件资源
B - 559065 - Image Load, Start
D - 15189 - RPM Image Loaded, Delta - (169748 Bytes) //Resource Power Manager
B - 574284 - Image Load, Start
D - 38888 - APPSBL Image Loaded, Delta - (706652 Bytes)//lk
B - 613172 - QSEE Execution, Start
D - 30 - QSEE Execution, Delta
B - 618906 - USB D+ check, Start
B - 774273 - usb:: cdp
D - 152225 - USB D+ check, Delta
B - 774334 - SBL1, End
D - 533231 - SBL1, Delta
S - Flash Throughput, 40000 KB/s (2434468 Bytes, 59527 us)
S - DDR Frequency, 931 MHz
S - Core 0 Frequency, 1804 MHz
Android Bootloader - UART_DM Initialized!!!
[0] welcome to lk
[10] platform_init()
[10] target_init()
[30] SDHC Running in HS400 mode
[40] Done initialization of the card
[40] pm8x41_get_is_cold_boot: cold boot
[40] Qseecom Init Done in Appsbl version is 0x1001000
//Appsbl指的就是aboot
[50] secure app region addr=0x85b00000 size=0x800000[50] TZ App region notif returned with status:0 addr:85b00000 size:8388608
[60] TZ App log region register returned with status:0 addr:8f77f000 size:4096
[60] Qseecom TZ Init Done in Appsbl
[80] Loading cmnlib done
[90] Loading cmnlib64 done
[90] qseecom_start_app: Loading app keymaster for the first time'
//某方案商涉及安全模块有TZ, CMNLIB, RPMB, LKSECAPP, KEYMASETER .
[110] <8>keymaster64: KEYMASTER Init //keymaster启动
[110] Waiting for the RPM to populate smd channel table // Resource Power Manager
[120] Active Slot: (_a) //a分区
[120] Not able to search the panel:
[130] ------------- panel_*****_video.h --------------------- //显示屏
[130] panel_operating_mode=0x0
[800] ERROR: Splash image header invalid //无效开机画面头,使用默认的开机画面
[810] Config MIPI_VIDEO_PANEL.
[810] Turn on MIPI_VIDEO_PANEL.
[830] Video lane tested successfully
[830] pm8x41_get_is_cold_boot: cold boot
//下面是开始内核启动,bootloader模式是在这执行fastboot_init
[840] Unable to locate /bootselect partition
[840] BootImage Header: 1
[840] Loading boot image (67108864) active_slot(_a): start
[1050] Loading boot image (67108864) active_slot(_a): done
[1060] use_signed_kernel=1, is_unlocked=1, is_tampered=0 //设备锁状态
[1090] MultiSlot true, partition name boot_a
[1090] AVB version 2 //AVB验证
[1090] avb_slot_verify.c[1090] :[1100] 417[1100] : DEBUG: [1100] Loading vbmeta struct from partition '[1100] vbmeta_a[1100] '.
[1110] ValidateVbmetaPublicKey PublicKeyLength 1032, PublicKeyMetadataLength 0
[1110] ValidateVbmetaPublicKey OutIsTrusted 1, UserKey 0
[1120] ReadRollbackIndex Location 0, RollbackIndex 0
[1120] avb_slot_verify.c[1130] :[1130] 417[1130] : DEBUG: [1130] Loading vbmeta struct from partition '[1130] system_a[1130] '.
[1130] negative Offset (-64) converted to (0x987fffc0)
[1140] read from system_a, 0x40 bytes at Offset 0x987fffc0, partition size 2415919104
[1150] StartBlock 0x4c3fff, ReadOffset 0x1c0, read_size 0x40
[1150] read from system_a, 0x740 bytes at Offset 0x9877a000, partition size 2415919104
[1160] LastBlock 0x4c3bd3, ReadOffset 0x0, read_size 0x140
[1170] ReadRollbackIndex Location 2, RollbackIndex 0
[1170] avb_slot_verify.c[1170] :[1170] 157[1170] : DEBUG: [1180] boot_a[1180] : Loading entire partition.
[1310] avb_slot_verify.c[1310] :[1310] 236[1310] : DEBUG: [1310] boot_a[1310] : success: Image verification completed.
[1310] avb_slot_verify.c[1320] :[1320] 157[1320] : DEBUG: [1320] dtbo_a[1320] : Loading entire partition.
[1320] avb_slot_verify.c[1330] :[1330] 236[1330] : DEBUG: [1330] dtbo_a[1330] : success: Image verification completed.
[1330] system_a uuid: 1301d1c2-456f-1c8f-e1c1-1b435756052c
[1340] boot_a uuid: a7a1da89-605d-d46c-8caa-3ac3cbc8462d
[1340] vbmeta_a uuid: 88b216e2-034a-fcbc-d3a5-6e06f26402da
[1350] State: Unlocked, AvbSlotVerify returned OK, continue boot
[1360] Requested Partition: boot
[1360] Loaded Partition: boot
[1360] Requested Partition: dtbo
[1360] Loaded Partition: boot
[1370] Loaded Partition: dtbo
[1370] Total loaded partition 3
[1370] boot_verifier: Device is in ORANGE boot state.
[1380] Device is unlocked! Skipping verification...
[1380] LK SEC APP Handle: 0x1
[1380] <8>keymaster64: cmd_id=SET_ROT begin
[1390] <8>keymaster64: Error: qsee_cfg_getpropval in get_enable_set_bandwidth failed for enable_set_bandwidth, ret_size = 0
[1400] <8>keymaster64: rot.data_length: 32
[1400] <8>keymaster64: cmd_id=SET_ROT done with ret: 0 time taken: 0
[1410] LK SEC APP Handle: 0x1
[1410] <8>keymaster64: cmd_id=GET_VERSION begin
[1420] Authentication Key not yet programmed
[1430] <8>keymaster64: qsee_stor_device_init error ret: -14
[1430] <8>keymaster64: cmd_id=GET_VERSION done with ret: 0 time taken: 13
[1440] <8>keymaster64: cmd_id=SET_BOOT_STATE begin
[1440] <8>keymaster64: is_unlocked: 1
[1440] <8>keymaster64: color: 1
[1450] <8>keymaster64: system_version: 90000 //android系统版本9
[1450] <8>keymaster64: system_security_level 201903 //补丁等级
[1460] <8>keymaster64: cmd_id=SET_BOOT_STATE done with ret: 0 time taken: 0
[1460] Sending Root of Trust to trustzone: end
[1470] LK SEC APP Handle: 0x1
[1470] <8>keymaster64: cmd_id=KEYMASTER_SET_VBH begin
[1470] <8>keymaster64: cmd_id=KEYMASTER_SET_VBH done with ret: 0 time taken: 0
[1480] VB2: Authenticate complete! boot state is: orange
[1490] VB2: boot state: orange(1) //Verify Boot结果
[1490] Boot State is : 1
[1500] creating boot verify keys detect thread //verify boot thread
[6560] ERROR: Splash image header invalid
[6570] decompressing kernel image: start
[6870] decompressing kernel image: done
[6890] DTBO Overlay count start: 254669
[6920] DTB overlay is successful
[6920] DTBO Overlay count done: 255738 //merge设备树叠加层成功
[6930] UpdateCmdLine vbcmdline present len 814
[6930] pm8x41_get_is_cold_boot: cold boot
[6940] target_pause_for_battery_charge : pon_reason is:0x20 cold_boot:1 usb_sts:0
[6940] display kernel cmdline: mdss_mdp.panel=1:dsi:0:qcom,mdss_dsi_st7701s_tn_400p_video:1:none:cfg:single_dsi
[6950] cmdline: console=ttyMSM0,115200,n8 androidboot.console=ttyMSM0 androidboot.hardware=qcom msm_rtb.filter=0x237 ehci-hcd.park=3 lpm_levels.sleep_disabled=1 androidboot.bootdevice=7824900.sdhci earlycon=msm_serial_dm,0x78af000 firmware_class.path=/vendor/fir[6980] Updating device tree: start
[7160] kaslr-Seed is added to chosen node
[7200] Updating device tree: done //更新设备树
[7200] Turn off MIPI_VIDEO_PANEL.
[7200] Continuous splash enabled, keeping panel alive.
[7210] <8>keymaster64: cmd_id=MILESTONE_CALL begin
[7210] <8>keymaster64: cmd_id=MILESTONE_CALL done with ret: 0 time taken: 0
[7220] Success [7220] Qseecom De-Init Done in Appsbl //LK结束
[7230] free_verified_boot_resource //释放verify boot资源
[7230] booting linux @ 0x80080000, ramdisk @ 0x83600000 (6618913), tags/device tree @ 0x83400000
//内核程序地址,根文件系统地址,设备树地址
[7240] Jumping to kernel via monitor
[ 0.000000] Booting Linux on physical CPU 0x0
[ 0.000000] Linux version 4.9.112+ (sw430@T430) (gcc version 4.9.x 20150123 (prerelease) (GCC) ) #2 SMP PREEMPT Tue May 28 18:59:24 CST 2019
[ 0.000000] Boot CPU: AArch64 Processor [410fd034]
[ 0.000000] Machine: Qualcomm Technologies, Inc. SDM450 PMI8950 MTP
[ 0.000000] core_ctl: disable_cpumask=0-7
[ 0.000000] earlycon: msm_serial_dm0 at MMIO 0x00000000078af000 (options '')
[ 0.000000] bootconsole [msm_serial_dm0] enabled
[ 0.000000] efi: Getting EFI parameters from FDT:
[ 0.000000] efi: UEFI not found.
[ 0.000000] Reserved memory: created CMA memory pool at 0x00000000ffc00000, size 4 MiB
[ 0.000000] OF: reserved mem: initialized node adsp_region@0, compatible id shared-dma-pool
[ 0.000000] Reserved memory: created CMA memory pool at 0x000000008f800000, size 8 MiB
[ 0.000000] OF: reserved mem: initialized node gpu_region@0, compatible id shared-dma-pool
[ 0.000000] Reserved memory: created CMA memory pool at 0x000000008f000000, size 8 MiB
[ 0.000000] OF: reserved mem: initialized node venus_region@0, compatible id shared-dma-pool
[ 0.000000] OF: reserved mem: invalid size property in 'mem_dump_region' node.
[ 0.000000] Reserved memory: created CMA memory pool at 0x00000000f4800000, size 180 MiB
[ 0.000000] OF: reserved mem: initialized node secure_region@0, compatible id shared-dma-pool
[ 0.000000] Reserved memory: created CMA memory pool at 0x00000000f3800000, size 16 MiB
[ 0.000000] OF: reserved mem: initialized node qseecom_region@0, compatible id shared-dma-pool
[ 0.000000] Reserved memory: created CMA memory pool at 0x00000000f3400000, size 4 MiB
[ 0.000000] OF: reserved mem: initialized node qseecom_ta_region, compatible id shared-dma-pool
[ 0.000000] Removed memory: created DMA memory pool at 0x0000000085b00000, size 13 MiB
[ 0.000000] OF: reserved mem: initialized node other_ext_region@0, compatible id removed-dma-pool
[ 0.000000] Removed memory: created DMA memory pool at 0x0000000086c00000, size 106 MiB
[ 0.000000] OF: reserved mem: initialized node modem_region@0, compatible id removed-dma-pool
[ 0.000000] Removed memory: created DMA memory pool at 0x000000008d600000, size 17 MiB
[ 0.000000] OF: reserved mem: initialized node adsp_fw_region@0, compatible id removed-dma-pool
[ 0.000000] Removed memory: created DMA memory pool at 0x000000008e700000, size 7 MiB
[ 0.000000] OF: reserved mem: initialized node wcnss_fw_region@0, compatible id removed-dma-pool
[ 0.000000] cma: Reserved 16 MiB at 0x00000000f2400000
[ 0.000000] psci: probing for conduit method from DT.
[ 0.000000] psci: PSCIv1.0 detected in firmware.
[ 0.000000] psci: Using standard PSCI v0.2 function IDs
[ 0.000000] psci: MIGRATE_INFO_TYPE not supported.
[ 0.000000] psci: SMC Calling Convention v1.0
[ 0.000000] Did not receive the expected number of bytes from PRNG: 0
[ 0.000000] percpu: Embedded 23 pages/cpu @ffffffcc31df6000 s56104 r8192 d29912 u94208
[ 0.000000] CPU features: enabling workaround for ARM erratum 845719
[ 0.000000] Built 1 zonelists in Zone order, mobility grouping on. Total pages: 480060
[ 0.000000] Kernel command line: core_ctl_disable_cpumask=0-7 kpti=0 console=ttyMSM0,115200,n8 androidboot.console=ttyMSM0 androidboot.hardware=qcom msm_rtb.filter=0x237 ehci-hcd.park=3 lpm_levels.sleep_disabled=1 androidboot.bootdevice=7824900.sdhci earlycon=msm_serial_dm,0x78af000 firmware_class.path=/vendor/firmware_mnt/image androidboot.usbconfigfs=true loop.max_part=7 buildvariant=userdebug androidboot.emmc=true androidboot.verifiedbootstate=orange androidboot.keymaster=1 dm="1 vroot none ro 1,0 4918112 verity 1 PARTUUID=1301d1c2-456f-1c8f-e1c1-1b435756052c PARTUUID=1301d1c2-456f-1c8f-e1c1-1b435756052c 4096 4096 614764 614764 sha1 2d97a9989b5bf9c8ae5263f2d88c40e34254210d 7e61282c660bf96ef462600a73a88471b5edab47 10 restart_on_corruption ignore_zero_blocks use_fec_from_device PARTUUID=1301d1c2-456f-1c8f-e1c1-1b435756052c fec_roots 2 fec_blocks 619606 fec_start 619606" root=/dev/dm-0 androidboot.vbmeta.device=PARTUUID=88b216e2-034a-fcbc-d3a5-6e06f26402da androidboot.vbmeta.avb_version //cmdline
[ 0.000000] device-mapper: init: will configure 1 devices
[ 0.000000] log_buf_len individual max cpu contribution: 131072 bytes
[ 0.000000] log_buf_len total cpu_extra contributions: 917504 bytes
[ 0.000000] log_buf_len min size: 131072 bytes
***
***
***
[ 5.752084] IPA SSR support = True
[ 5.756461] IPA ipa-loaduC = True
[ 5.759672] IPA SG support = True
[ 5.763076] IPA Napi Enable = False
[ 5.766358] using default for wan-rx-desc-size = 1024
[ 5.773317] CHRDEV "wwan_ioctl" major number 222 goes below the dynamic allocation range
[ 5.776647] ipa ipa_sps_irq_control_all:963 EP (5) not allocated.
[ 5.783055] ipa ipa2_uc_state_check:302 uC is not loaded
[ 5.790146] rmnet_ipa completed initialization
[ 5.795265] RNDIS_IPA module is loaded.[ 5.798669] clock_late_init: Removing enables held for handed-off clocks
[ 5.810001] apc_mem_acc_corner: disabling
[ 5.810057] gfx_mem_acc_corner: disabling
[ 5.813272] ALSA devic䙠 5.820447] device-mapper: init: attempting early device configuration.
[ 5.822490] device-mapper: init: adding target '0 4918112 verity 1 PARTUUID=1301d1c2-456f-1c8f-e1c1-1b435756052c PARTUUID=1301d1c2-456f-1c8f-e1c1-1b435756052c 4096 4096 614764 614764 sha1 2d97a9989b5bf9c8ae5263f2d88c40e34254210d 7e61282c660bf96ef462600a73a88471b5edab47 10 restart_on_corruption ignore_zero_blocks use_fec_from_device PARTUUID=1301d1c2-456f-1c8f-e1c1-1b435756052c fec_roots 2 fec_blocks 619606 fec_start 619606'
[ 5.844628] device-mapper: init: dm-0 is ready
[ 5.877194] EXT4-fs (dm-0): couldn't mount as ext3 due to feature incompatibilities
[ 5.877932] EXT4-fs (dm-0): couldn't mount as ext2 due to feature incompatibilities
[ 5.889916] EXT4-fs (dm-0): mounted filesystem without journal. Opts: (null)
[ 5.891480] VFS: Mounted root (ext4 filesystem) readonly on device 253:0.
[ 5.905672] Freeing unused kernel memory: 6464K
[ 5.994975] init: init first stage started! //init 第一阶段
[ 5.996901] init: Using Android DT directory /proc/device-tree/firmware/android/ //设备树目录
[ 6.003783] init: [libfs_mgr]fs_mgr_read_fstab_default(): failed to find device default fstab //挂载
[ 6.252545] IPC_RTR: msm_ipc_router_smd_driver_register Already driver registered IPCRTR
[ 6.252620] IPC_RTR: msm_ipc_router_smd_driver_register Already driver registered IPCRTR
[ 6.267444] init: [libfs_mgr]Returning avb_handle with status: 0
[ 6.270260] init: [libfs_mgr]Loading verity table: '1 /dev/block/platform/soc/7824900.sdhci/by-name/vendor_a /dev/block/platform/soc/7824900.sdhci/by-name/vendor_a 4096 4096 188951 188951 sha1 6fb3a79fadbdafa02160a45a3b014a5c8fe628e3 dd870854ca8dacfd1546be2ddad069fac3752145 10 use_fec_from_device /dev/block/platform/soc/7824900.sdhci/by-name/vendor_a fec_roots 2 fec_blocks 190441 fec_start 190441 restart_on_corruption ignore_zero_blocks'
[ 6.308940] EXT4-fs (dm-1): mounting with "discard" option, but the device does not support discard
[ 6.312656] EXT4-fs (dm-1): mounted filesystem without journal. Opts: barrier=1,discard
[ 6.321497] init: [libfs_mgr]__mount(source=/dev/block/dm-1,target=/vendor,type=ext4)=0: Success
[ 6.329605] init: Skipped setting INIT_AVB_VERSION (not in recovery mode) //非recovery模式,即进入system。
[ 6.338617] init: Loading SELinux policy //SELinux 规则
[ 6.772450] audit: type=1403 audit(145.569:2): policy loaded auid=4294967295 ses=4294967295
[ 6.773531] selinux: SELinux: Loaded policy from /vendor/etc/selinux/precompiled_sepolicy //规则文件
[ 6.773531]
[ 6.780419] audit: type=1404 audit(145.569:3): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295
[ 6.826438] selinux: SELinux: Loaded file_contexts //第一次load
[ 6.826438]
[ 6.832680] init: init second stage started! //init第二阶段
[ 6.887590] init: Using Android DT directory /proc/device-tree/firmware/android/ //设备树转换成目录与节点
[ 6.896248] selinux: SELinux: Loaded file_contexts //第二次load
[ 6.896248]
[ 6.896326] init: Running restorecon...
[ 6.923926] init: waitid failed: No child processes
[ 6.928767] init: Couldn't load property file '/odm/default.prop': open() failed: No such file or directory: No such file or directory
[ 6.935678] init: Created socket '/dev/socket/property_service', mode 666, user 0, group 0
[ 6.942112] init: Forked subcontext for 'u:r:vendor_init:s0' with pid 432
[ 6.949911] init: Forked subcontext for 'u:r:vendor_init:s0' with pid 433
[ 6.955279] init: Parsing file /init.rc...
[ 7.088831] ueventd: ueventd started! //这个用于创建/dev/下面的节点
[ 7.095770] selinux: SELinux: Loaded file_contexts //第三次load
[ 7.095770]
[ 7.096287] ueventd: Parsing file /ueventd.rc...
[ 7.103413] ueventd: Parsing file /vendor/ueventd.rc...
[ 7.121935] ueventd: Parsing file /odm/ueventd.rc...
[ 7.122053] ueventd: Unable to read config file '/odm/ueventd.rc': open() failed: No such file or directory
[ 7.126064] ueventd: Parsing file /ueventd.qcom.rc...
[ 7.135594] ueventd: Unable to read config file '/ueventd.qcom.rc': open() failed: No such file or directory
[ 7.314765] modprobe (435) used greatest stack depth: 11120 bytes left
[END] 2019/12/9 15:52:42
本想简单贴点日志,弄的时候才发现,日志内容很多东西,并且每次读都有新发现。
recovery/system模式通过挂载不同的文件系统来区别,具有不同的cmdline参数(skip_initramfs)。一般cmdline很长,很难完整打印,可以读取proc/cmdline来获取全部内容。设备树信息位置/proc/device-tree/
dm-verity是在挂载时候判断,厂商控制回滚是判断补丁等级。SELinux规则文件/vendor/etc/selinux/precompiled_sepolicy
总在叙述,加点陈词吧。
对整个开机流程PBL->sbl1->bootloader->kernel->system来说:1、PBL是板载程序。2、芯片方案商通过sbl1来控制流程和安全(启动modem、senser、dsp、rpm、devcfg等,一些安全验证,硬件信息)。3、厂商通过bootloader来控制android加载流程(cmdline包含部分硬件信息,设备树信息,安全验证信息,recovery/system模式信息等)。4、kernel挂载system后启动android。
安全上验证流程是secure boot-> verify boot->dm-verity。 1、secure boot相当于硬件验证MP和aboot。2、aboot的verify boot验证的dtbo、boot和vbmeta。3、boot的dm-verity功能与vbmeta存储的哈希树值来验证systen和vendor。4、到系统再有SELinux,userdata加密,系统签名等来保护设备。这样一条线验证过来可以保证设备内关键分区为厂商自己发布的镜像。了解更多看看后面的刷机相关的Android的安全。
细节请跟代码或搜索。
广告:
底层开发经常碰到android系统安全的问题,同时厂商与用户越来越重视安全,有兴趣可以了解一下,了解的可以深入,并互相探讨。相信能帮助大家更上层楼。
目前定价¥99,会持续更新,内容增多后根据情况加价。知识付费,物超所值。
https://blog.csdn.net/dongyi1988/article/details/128798626
600
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
