f478e274b1
Microdroid [1] is a lightweight variant of Android for on-device VMs which are intended to serve security/privacy sensitive tasks. So far, Microdroid has used the GKI, which is for the full-fledged Android. This isn't ideal because Microdroid doesn't support many features that are built-in for Android: audio, bluetooth, gps, multiple filesystems, etc. Such features makes the kernel unnecessarily bigger and a bit slower for Microdroid. In addition, there has been a concern that such unused features could increase the potenal attack surfaces. Making GKI more modular is an option, however it is sub-optimal as there are some features that can't be modularized but contribute a lot to the kernel size (e.g. KALLSYMS_ALL, INET). Therefore, we decided to introduce a new config. This change introduces two arch-specific configs for Microdroid: build.config.microdroid.aarch64 and build.config.microdroid.x86_64. As the initial step, the two configs are identical to the corresponding GKI configs. Follow-up changes will gradually turn off unnecessary features. Implementation wise, the new config is implemented as a config fragment on top of the GKI config. The fragment will have `# CONFIG_XXX is not set` to turn the feature `XXX` that GKI enables. [1] https://android.googlesource.com/platform/packages/modules/Virtualization/+/HEAD/microdroid/README.md Bug: 231106934 Test: BUILD_CONFIG=common/build/config.microdroid.aarch64 build/build.sh Test: BUILD_CONFIG=common/build/config.microdroid.x86_64 build/build.sh Signed-off-by: Jiyong Park <jiyong@google.com> Change-Id: Iaf3654232b2d5eed0ffc1f52a2f96fa362e60cd7
4 lines
148 B
Plaintext
4 lines
148 B
Plaintext
. ${ROOT_DIR}/${KERNEL_DIR}/build.config.common
|
|
. ${ROOT_DIR}/${KERNEL_DIR}/build.config.x86_64
|
|
. ${ROOT_DIR}/${KERNEL_DIR}/build.config.microdroid
|