Firefox OS/Performance/Modifying boot.img

From MozillaWiki
Jump to navigation Jump to search

Modifying boot.img

This page is meant to illustrate the general steps necessary to make changes to the ramdisk in the boot partition of the device. This may be desired for a number of reasons such as making changes to the init rc scripts or the init program itself, without changing the kernel.

Ideally, the build system would build the kernel and ramdisk, and then create a boot.img which one could then flash. In this case, it's simply a matter of making whatever changes are necessary (and of course init would be automatically included as well). On the flame however, it was not quite so easy.

Obtaining a boot.img

To retrieve the boot.img from the device one can simply find the boot partition in the filesystem, and use |adb pull|.

For the flame, for example: 

adb pull /dev/block/platform/msm_sdcc.1/by-name/boot .

Where the file specified above is a friendly symlink to |/dev/block/mmcblk0p7|. For certain other devices (such as the hamachi) the partitions lived under |/dev/mtd/| and the mappings could be found by executing |cat /proc/mtd| on the device.

Alternatively

If one already has an image from the OEM or elsewhere, pulling the boot partition from the device is not necessary.

Splitting the boot.img

The boot partition contains 2-3 distinct entities: The kernel, the ramdisk, and (optionally, based on how the kernel was configured) the device tree binary. The instructions outlined here for splitting a boot.img are only mostly sufficient on a flame. The tool specified only detects the kernel and ramdisk. For more information on the structure of this partition go here: https://github.com/xiaolu/mkbootimg_tools/blob/master/dtbtool.txt .

The device tree binary is the last section (after which is zero padding if image pulled from device), and it begins with the 4 byte magic |QCDT|. To extract this blob I simply used dd on the partition image skipping to whatever offset the magic was found at, and then trimming the trailing zeros similarly. A command such as this can be used to find the offset: 

strings -o boot.img | grep QCDT | awk '{print $1}'

And then one can use dd as such: 

dd if=boot.img of=dtblob skip='$DT_OFFSET' bs=1

This is not the most elegant of procedures, however I have not as of yet found a better way. (The correct solution I suppose would be extending the unmkbootimg utility appropriately).

If you are going through this procedure it is unlikely that you want to change the kernel, and especially unlikely to want to change the device tree blob, so it would be wise to keep those somewhere safe. The porting guide explains how to unpack the ramdisk and repackage it. This is where thing such as init and init.rc (and various other *.rc's) live.

Assuming one has run the unmkbootimg utility, a command to reconstruct the partition using mkbootimg such that it retains the same settings and kernel parameters should have been output. That is exactly the command necessary, except with the addition of |--dt dtblobname| if applicable. This utility can be built in the firefox os source tree by invoking |./build.sh mkbootimg| and the resulting binary is found at. 

$SRC_TOP/out/host/$HOST_NAME/bin


W.I.P

Retrieved from "https://wiki.allizom.org/index.php?title=Firefox_OS/Performance/Modifying_boot.img&oldid=996818"