1# Copyright (c) 2023-2024 Huawei Device Co., Ltd. 2# Licensed under the Apache License, Version 2.0 (the "License"); 3# you may not use this file except in compliance with the License. 4# You may obtain a copy of the License at 5# 6# http://www.apache.org/licenses/LICENSE-2.0 7# 8# Unless required by applicable law or agreed to in writing, software 9# distributed under the License is distributed on an "AS IS" BASIS, 10# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 11# See the License for the specific language governing permissions and 12# limitations under the License. 13 14import("//build/ohos.gni") 15import("../../../code_signature.gni") 16 17config("public_local_code_sign_configs") { 18 include_dirs = [ "include" ] 19} 20 21ohos_shared_library("liblocal_code_sign_sdk") { 22 sanitize = { 23 cfi = true 24 cfi_cross_dso = true 25 debug = false 26 } 27 branch_protector_ret = "pac_ret" 28 sources = [ 29 "${code_signature_root_dir}/utils/src/cert_utils.cpp", 30 "${code_signature_root_dir}/utils/src/huks_attest_verifier.cpp", 31 "${code_signature_root_dir}/utils/src/openssl_utils.cpp", 32 "src/local_code_sign_client.cpp", 33 "src/local_code_sign_kit.cpp", 34 "src/local_code_sign_load_callback.cpp", 35 "src/local_code_sign_proxy.cpp", 36 ] 37 38 public_configs = [ 39 "${code_signature_root_dir}:common_public_config", 40 ":public_local_code_sign_configs", 41 ] 42 configs = [ "${code_signature_root_dir}:common_utils_config" ] 43 defines = [] 44 if (build_variant == "root") { 45 defines += [ "CODE_SIGNATURE_DEBUGGABLE" ] 46 } 47 if (code_signature_support_oh_code_sign) { 48 defines += [ "VERIFY_KEY_ATTEST_CERTCHAIN" ] 49 } 50 51 external_deps = [ 52 "c_utils:utils", 53 "hilog:libhilog", 54 "hisysevent:libhisysevent", 55 "huks:libhukssdk", 56 "ipc:ipc_core", 57 "openssl:libcrypto_shared", 58 "safwk:system_ability_fwk", 59 "samgr:samgr_proxy", 60 ] 61 62 part_name = "code_signature" 63 64 subsystem_name = "security" 65 66 install_images = [ "system" ] 67 68 install_enable = true 69} 70