From da88e1815337acc2a6df0867ffd5105294ff44fa Mon Sep 17 00:00:00 2001 From: althafvly Date: Fri, 26 Sep 2025 11:42:31 +0530 Subject: [PATCH 1/3] Revert "make: Use aosp test key for trichrome" This reverts commit 89ceab3d4aa45c78b710b9a53a19c6366f367883. --- tools/chromium_trichrome_patcher.py | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/tools/chromium_trichrome_patcher.py b/tools/chromium_trichrome_patcher.py index 5c8964a26a..bda96b3fa6 100755 --- a/tools/chromium_trichrome_patcher.py +++ b/tools/chromium_trichrome_patcher.py @@ -13,7 +13,7 @@ def ExtractFingerprint(cert): return proc.stdout.decode('utf-8').split('=')[1].replace(':', '') def patch_trichrome(infilename, sign_key): - orig_certdigest = "c8a2e9bccf597c2fb6dc66bee293fc13f2fc47ec77bc6b2b0d52c11f51192ab8" + orig_certdigest = "32a2fc74d731105859e5a85df16d95f102d85b22099b8064c5d8915c61dad1e0" new_certdigest = ExtractFingerprint(sign_key).lower().rstrip() with zipfile.ZipFile(infilename, 'r') as zin, zipfile.ZipFile(infilename + ".patched", 'w') as zout: -- GitLab From b77cb83e2b47bc9e48e403616a42524a4d0c1b64 Mon Sep 17 00:00:00 2001 From: althafvly Date: Fri, 26 Sep 2025 11:42:32 +0530 Subject: [PATCH 2/3] Revert "make: Catch exception for no certdigest" This reverts commit 7a72356d9e362c8faf05f6428f2584ed477d92d6. --- tools/chromium_trichrome_patcher.py | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) diff --git a/tools/chromium_trichrome_patcher.py b/tools/chromium_trichrome_patcher.py index bda96b3fa6..06cdea0448 100755 --- a/tools/chromium_trichrome_patcher.py +++ b/tools/chromium_trichrome_patcher.py @@ -21,10 +21,7 @@ def patch_trichrome(infilename, sign_key): data = zin.read(info.filename) if info.filename == 'AndroidManifest.xml': # Make sure we can find the certdigest - try: - data.rindex(orig_certdigest.encode('utf-16-le')) - except: - pass + data.rindex(orig_certdigest.encode('utf-16-le')) # Replace it data = data.replace(orig_certdigest.encode('utf-16-le'), new_certdigest.encode('utf-16-le')) zout.writestr(info, data) -- GitLab From 603ea1376f3903b259fbfd83c58e73bb4f77bc0f Mon Sep 17 00:00:00 2001 From: althafvly Date: Fri, 26 Sep 2025 11:42:32 +0530 Subject: [PATCH 3/3] Revert "make: Add Patch Trichrome script" This reverts commit 84a488bf2b585301f431b95494cfde37eea14d14. --- core/app_prebuilt_internal.mk | 1 - core/config.mk | 2 -- core/definitions.mk | 5 ---- tools/chromium_trichrome_patcher.py | 36 ----------------------------- 4 files changed, 44 deletions(-) delete mode 100755 tools/chromium_trichrome_patcher.py diff --git a/core/app_prebuilt_internal.mk b/core/app_prebuilt_internal.mk index d7fc5e2770..2671956c7a 100644 --- a/core/app_prebuilt_internal.mk +++ b/core/app_prebuilt_internal.mk @@ -245,7 +245,6 @@ ifeq ($(module_run_appcompat),true) $(call appcompat-header, aapt2) $(run-appcompat) endif # module_run_appcompat - $(patch-trichrome) $(sign-package) # No need for align-package because sign-package takes care of alignment else # LOCAL_CERTIFICATE == PRESIGNED diff --git a/core/config.mk b/core/config.mk index 2bc2896bd9..a8a5e5f711 100644 --- a/core/config.mk +++ b/core/config.mk @@ -749,8 +749,6 @@ JETIFIER := prebuilts/sdk/tools/jetifier/jetifier-standalone/bin/jetifier-standa EXTRACT_KERNEL := build/make/tools/extract_kernel.py -PATCH_TRICHROME := build/make/tools/chromium_trichrome_patcher.py - # Path to tools.jar HOST_JDK_TOOLS_JAR := $(ANDROID_JAVA8_HOME)/lib/tools.jar diff --git a/core/definitions.mk b/core/definitions.mk index 4cf34a2e89..8a781e9982 100644 --- a/core/definitions.mk +++ b/core/definitions.mk @@ -4024,8 +4024,3 @@ define use_soong_sdk_libraries $(foreach l,$(1),$(if $(filter $(l),$(SOONG_SDK_VARIANT_MODULES)),\ $(l).sdk,$(l))) endef - -# Patch Trichrome to add cert digest at buildtime -define patch-trichrome -$(hide) $(PATCH_TRICHROME) $@ $(PRIVATE_CERTIFICATE) -endef diff --git a/tools/chromium_trichrome_patcher.py b/tools/chromium_trichrome_patcher.py deleted file mode 100755 index 06cdea0448..0000000000 --- a/tools/chromium_trichrome_patcher.py +++ /dev/null @@ -1,36 +0,0 @@ -#!/usr/bin/env python3 - -import os -import subprocess -import sys -import zipfile - -infilename, sign_key = sys.argv[1:] - -def ExtractFingerprint(cert): - cmd = ['openssl', 'x509', '-sha256', '-fingerprint', '-noout', '-in', cert] - proc = subprocess.run(cmd, stdout=subprocess.PIPE) - return proc.stdout.decode('utf-8').split('=')[1].replace(':', '') - -def patch_trichrome(infilename, sign_key): - orig_certdigest = "32a2fc74d731105859e5a85df16d95f102d85b22099b8064c5d8915c61dad1e0" - new_certdigest = ExtractFingerprint(sign_key).lower().rstrip() - - with zipfile.ZipFile(infilename, 'r') as zin, zipfile.ZipFile(infilename + ".patched", 'w') as zout: - for info in zin.infolist(): - data = zin.read(info.filename) - if info.filename == 'AndroidManifest.xml': - # Make sure we can find the certdigest - data.rindex(orig_certdigest.encode('utf-16-le')) - # Replace it - data = data.replace(orig_certdigest.encode('utf-16-le'), new_certdigest.encode('utf-16-le')) - zout.writestr(info, data) - - # Delete the original file - os.remove(infilename) - - # Rename the output file to the original file name - os.rename(infilename + ".patched", infilename) - -if "Browser_" in infilename or "BrowserWebView_" in infilename: - patch_trichrome(infilename, sign_key) -- GitLab