Google Git
Sign in
android / kernel / build / refs/heads/main / . / kleaf / hermetic_tools.bzl
blob: 13aa70d40a994d09cce3b9c5fbe27ef0c5dc4444 [file] [log] [blame]
# Copyright (C) 2022 The Android Open Source Project
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
"""
Provide tools for a hermetic build.
"""
load("@bazel_skylib//lib:paths.bzl", "paths")
load("@bazel_skylib//rules:common_settings.bzl", "BuildSettingInfo")
load(
"//build/kernel/kleaf/impl:hermetic_exec.bzl",
_hermetic_exec = "hermetic_exec",
_hermetic_exec_test = "hermetic_exec_test",
)
load("//build/kernel/kleaf/impl:hermetic_genrule.bzl", _hermetic_genrule = "hermetic_genrule")
load("//build/kernel/kleaf/impl:hermetic_toolchain.bzl", _hermetic_toolchain = "hermetic_toolchain")
load("//build/kernel/kleaf/impl:utils.bzl", "utils")
# Re-export functions
hermetic_exec = _hermetic_exec
hermetic_exec_test = _hermetic_exec_test
hermetic_genrule = _hermetic_genrule
hermetic_toolchain = _hermetic_toolchain
_HermeticToolchainInfo = provider(
doc = "Toolchain information provided by [hermetic_tools](#hermetic_tools).",
fields = {
"deps": "a depset containing the hermetic tools",
"setup": "setup script to initialize the environment to only use the hermetic tools",
"run_setup": """**IMPLEMENTATION DETAIL; DO NOT USE.**
setup script to initialize the environment to only use the hermetic tools in
[execution phase](https://docs.bazel.build/versions/main/skylark/concepts.html#evaluation-model),
e.g. for generated executables and tests""",
"run_additional_setup": """**IMPLEMENTATION DETAIL; DO NOT USE.**
Like `run_setup` but preserves original `PATH`.""",
},
)
def _get_single_file(ctx, target):
files_list = target.files.to_list()
if len(files_list) != 1:
fail("{}: {} does not contain a single file".format(
ctx.label,
target.label,
))
return files_list[0]
def _handle_hermetic_symlinks(ctx):
hermetic_symlinks_dict = {}
for actual_target, tool_names in ctx.attr.symlinks.items():
for tool_name in tool_names.split(":"):
out = ctx.actions.declare_file("{}/{}".format(ctx.attr.name, tool_name))
target_file = _get_single_file(ctx, actual_target)
ctx.actions.symlink(
output = out,
target_file = target_file,
is_executable = True,
progress_message = "Creating symlinks to in-tree tools {}/{}".format(
ctx.label,
tool_name,
),
)
hermetic_symlinks_dict[tool_name] = out
return hermetic_symlinks_dict
def _hermetic_tools_impl(ctx):
deps = [] + ctx.files.deps
all_outputs = []
hermetic_outs_dict = _handle_hermetic_symlinks(ctx)
hermetic_outs = hermetic_outs_dict.values()
all_outputs += hermetic_outs
deps += hermetic_outs
if ctx.attr._disable_symlink_source[BuildSettingInfo].value:
transitive_deps = []
else:
transitive_deps = [target.files for target in ctx.attr.symlinks]
deps_depset = depset(deps, transitive = transitive_deps)
fail_hard = """
# error on failures
set -e
set -o pipefail
"""
hermetic_base = paths.join(
utils.package_bin_dir(ctx),
ctx.attr.name,
)
hermetic_base_short = paths.join(
ctx.label.workspace_root,
ctx.label.package,
ctx.attr.name,
)
hashbang = """#!/bin/bash -e
"""
setup = fail_hard + """
export PATH=$({path}/readlink -m {path})
# Ensure _setup_env.sh keeps the original items in PATH
export KLEAF_INTERNAL_BUILDTOOLS_PREBUILT_BIN={path}
""".format(path = hermetic_base)
run_setup = hashbang + fail_hard + """
export PATH=$({path}/readlink -m {path})
""".format(path = hermetic_base_short)
run_additional_setup = fail_hard + """
export PATH=$({path}/readlink -m {path}):$PATH
""".format(path = hermetic_base_short)
hermetic_toolchain_info = _HermeticToolchainInfo(
deps = deps_depset,
setup = setup,
run_setup = run_setup,
run_additional_setup = run_additional_setup,
)
default_info_files = [
file
for file in all_outputs
if "kleaf_internal_do_not_use" not in file.path
]
infos = [
DefaultInfo(files = depset(default_info_files)),
platform_common.ToolchainInfo(
hermetic_toolchain_info = hermetic_toolchain_info,
),
OutputGroupInfo(
**{file.basename: depset([file]) for file in all_outputs}
),
]
return infos
_hermetic_tools = rule(
implementation = _hermetic_tools_impl,
doc = "",
attrs = {
"deps": attr.label_list(doc = "Additional_deps", allow_files = True),
"symlinks": attr.label_keyed_string_dict(
doc = "symlinks to labels",
allow_files = True,
),
"_disable_symlink_source": attr.label(
default = "//build/kernel/kleaf:incompatible_disable_hermetic_tools_symlink_source",
),
},
)
def hermetic_tools(
name,
deps = None,
symlinks = None,
**kwargs):
"""Provide tools for a hermetic build.
Args:
name: Name of the target.
symlinks: A dictionary, where keys are labels to an executable, and
values are names to the tool, separated with `:`. e.g.
```
{"//label/to:toybox": "cp:realpath"}
```
deps: additional dependencies. These aren't added to the `PATH`.
**kwargs: Additional attributes to the internal rule, e.g.
[`visibility`](https://docs.bazel.build/versions/main/visibility.html).
See complete list
[here](https://docs.bazel.build/versions/main/be/common-definitions.html#common
"""
if symlinks == None:
symlinks = {}
if deps == None:
deps = []
_hermetic_tools(
name = name,
deps = deps,
symlinks = symlinks,
**kwargs
)