Documentation
Developer Guides
Build AXP.OS

Build AXP.OS

Caution

This guide is currently being revised

AXP.OS is build the “traditional” way, i.e. without docker and fully automated. Building AXP.OS without automation is not(!) supported.

Automation scheme 

   ┌────────────────────────────────────┐
   │     🚦 Semaphore (UI + Control)    │───.     . . . . . . . . . . . . . . . .
   │     🛠️ Ansible (same system)       │   '──▶ .       🗄️ Database           .
   │    . . . . . . . . . . . . . . .   │         .   (remote or on Semaphore)  .
   │    🏗️ Buildserver (can be local)   │         . . . . . . . . . . . . . . . . 
   └──────────────┬─────────────────────┘
                  │
                  ▼
   . . . . . . . . . . . . . .  . . . . .
   .         🏗️ Buildserver             .
   .  (remote or on Semaphore system)   .
   . . . . . . . . . . . . . .  . . . . .
                  │
                  ▼
   . . . . . . . . . . . . . .  . . . . .
   .      📦 Download + OTA Server      .
   .           (fully optional)         .
   . . . . . . . . . . . . . .  . . . . .

Legend:
─────────  = required  
. . . . .  = optional, can be a separate server or completely skipped

- Semaphore+Ansible require each other (single system).
- Buildserver and Database are optionally on a different server.
- Semaphore supports MariaDB, Postgres or a simple filebased DB (BoltDB).

Requirements

Control node

The control node holds the automation software:

  • Ansible 2.12 or later - see here
    • |+ ansible-galaxy collection install community.general
  • Semaphore UI 2.14 or later - see here

Recommended specs (standalone, i.e. when using a separate(!) Buildserver):

  • 4 CPU cores
  • 2 GB RAM
  • 20 GB free disk space
  • can run in LXC, docker, full VM, or even on your laptop/PC
  • OS: a recent Alma Linux (e.g. v9 or later), Ubuntu 24.04, Debian 12 or later are recommended

Ansible + Semaphore must run on the same machine while your Buildserver can be the same system or a complete different one. Ansible will connect by SSH to the build system or keeps everything local - depending on your config.

The following is a quick introduction on how you can setup your system after installing semaphore on a recent Alma Linux v9.

Installation

Install semaphore (see above).

Install and setup MariaDB:

dnf install mariadb-server ansible-core

systemctl enable --now mariadb
mysql_secure_installation
# (optional but recommended)

mysql

MariaDB [(none)]> CREATE DATABASE semaphoredb CHARACTER SET utf8mb4 COLLATE utf8mb4_general_ci;
MariaDB [(none)]> ALTER DATABASE semaphoredb DEFAULT CHARACTER SET utf8mb4 COLLATE utf8mb4_general_ci;

MariaDB [(none)]> CREATE user 'semaphore'@'localhost' identified by 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX';
MariaDB [(none)]> GRANT ALL PRIVILEGES ON semaphoredb.* TO 'semaphore'@'localhost';

if you have an existing database and not set the default character set this will convert it accordingly:

SELECT CONCAT('ALTER TABLE ', table_name, ' CONVERT TO CHARACTER SET utf8mb4 COLLATE utf8mb4_general_ci;') FROM information_schema.tables WHERE table_schema = 'semaphore';

Setup semaphore:

useradd -d /opt/semaphore -r -m -s /bin/false semaphore

mkdir /etc/semaphore
cd /etc/semaphore
chown semaphore:semaphore /etc/semaphore
chmod 750 /etc/semaphore

Configuration

Semaphore can be configured in different ways:

If you want to setup a systemd service (recommended), follow this or for a quick one:

echo > /etc/systemd/system/semaphore.service < _EOF
[Unit]
Description=Ansible Semaphore
Documentation=https://docs.ansible-semaphore.com/
Wants=network-online.target
After=network-online.target mariadb.service
Requires=mariadb.service
ConditionPathExists=/usr/bin/semaphore
ConditionPathExists=/etc/semaphore/config.json

[Service]
User=semaphore
Group=semaphore
ExecStart=/usr/bin/semaphore service --config /etc/semaphore/config.json
ExecReload=/bin/kill -HUP $MAINPID
Restart=always
RestartSec=20s
# to auto-upgrade python modules at service startup
ExecStartPre=/bin/bash -c 'python3 -m pip install --upgrade --user -r /etc/semaphore/python-requirements.txt'
# so the executables are found
Environment="PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:~/.local/bin"
# to fix "python module not found" issues, the following WorkingDirectory must point to the same
# directory as ` tmp_path`  variable in your semaphore config.json
# if using non-default ansible.cfg params, it also should contain your `.ansible.cfg` (yes, `dot`ansible.cfg)
WorkingDirectory=/opt/semaphore
# besides the WorkingDirectory we need to tell systemd where to find your pip installed libs:
# to find out the user's as $User exec: python -c "import site; print(site.USER_SITE)"
Environment="PYTHONPATH=/home/pors/.local/lib/python3.9/site-packages"

[Install]
WantedBy=multi-user.target
_EOF

systemctl enable --now semaphore

Buildserver

AXP.OS supports Ubuntu (22.04 LTS) only while others might work, too.

sudo apt update && sudo apt upgrade && sudo apt full-upgrade && sudo apt -f install && sudo apt autoremove
sudo ln -s /usr/include/asm-generic /usr/include/asm

sudo apt install libssl-dev libncurses5 aapt autoconf automake bc bison build-essential ccache curl expat flex g++ gawk gcc gcc-multilib git git-lfs g++-multilib gnupg gperf lib32ncurses-dev lib32z1-dev libc6-dev libc6-dev-i386 libcap-dev libexpat1-dev libgl1-mesa-dev libgmp-dev libmpc-dev libmpfr-dev libncurses5-dev libncurses-dev libsdl1.2-dev libtool libx11-dev libxml2 libxml2-utils lzop maven openjdk-8-jdk patch pkg-config pngcrush python-all-dev schedtool squashfs-tools subversion texinfo tmux unzip x11proto-core-dev xsltproc zip zlib1g-dev imagemagick repo firejail optipng jpegoptim openssl wget python3-colorama python3-pip python3-pyperclip bsdmainutils dos2unix tmux

it is not required nore recommended to build as root user:

sudo useradd -m <BUILD-USER>

Install Google’s repo tool:

$[BUILD-USER]> curl https://storage.googleapis.com/git-repo-downloads/repo > ~/.local/bin/repo

repo tool dependency:

pip install pygerrit2

ensure locale is as expected:

sudo dpkg-reconfigure locales

you can already start downloading the android sources to speed up your first build:

$[BUILD-USER]> mkdir -p /usr/src/aos/Build/LineageOS-20.0
$[BUILD-USER]> cd /usr/src/aos/Build/LineageOS-20.0
$[BUILD-USER]> repo init -u https://github.com/LineageOS/android.git -b lineage-20.0 --git-lfs

create a ssh key:

$[BUILD-USER]> ssh-keygen -a 500 -t ed25519 -C "some comment"

add it to your accounts (yes for both sites):

When building for Android 9 or 10 only

add the deprecated version 2 of python as a virtual environment (do not change any paths here as they are used within the automation process):

sudo apt-get install python2 virtualenv python2-pip-whl python2-setuptools-whl
mkdir -p ~/.venv/python2
virtualenv --python=$(which python2) ~/.venv/python2

Setup Semaphore

TODO: upload semaphore backup.json for a 1 second setup!

  1. create a new project
  2. Key Store:
    • name: NoKey
    • Type: None
  3. Repositories:
    • name: sfX-automation
    • URL: https://github.com/sfX-android/automation_scripts.git
    • branch: ansible
    • Access Key: NoKey
  4. Environment:
    • name: AXP-<model>-<Android-Version>
    • Extra Variables, depending on what you want to build:
{
  "ROM_FLAVOR": "axp",
  "target_model": "hotdog",
  "android_shortversion": "a13"
}
  1. Inventory

    • name: default

    • type: Static YAML
      use localhost here if you build on the same machine where Ansbile + Semaphore are running. otherwise Ansible will try to connect to this machine to actually start building. So if you use a different system ensure you can reach that one from your Automation server.

      This is how it should look like when using the same system as build server where Ansible+Semaphore are running:

---
# hint: do not change the group name as it is used in Ansible later
buildserver:
  hosts:
    builder:
     ansible_host: localhost
     #ansible_host: X.X.X.X
     #ansible_host: myserver.fqdn.local

# hint: do not change the group name as it is used in Ansible later
downloadserver:
  hosts:
   leechserver:
    ansible_port: 22

all:
  vars:
    just_git_push: False
    commit_push: False
    telegram_notifications: False
    use_secrets_yaml: False
    max_processes: 18         # max cpu count for building/checking out sources
    # max_processes_sync: 8   # max cpu count for repo sync cmds (be careful as u can get rate limited easily!)
    keep_build_logs: False
    axp_release_recovery: False

    # Buildserver paths    
    android_build_path: "/usr/src/aosp"   # root path of where you wanna place android sources
    zipdir_mntp: "{{ android_build_path }}/zips/{{ target_model }}" # target directory for the final OS zips
    BUILDHOME: "/home/<BUILD-USER>" # the home path of the buildserver user
    SRCPATH: "{{ DOSPATH }}/Build/LineageOS-{{ los_version }}"
    keys_base_path: "{{ BUILDHOME }}/keys" # signing keys goes here
    repo_bin: "{{ BUILDHOME }}/.local/bin/repo" # full path to your repo binary
    DOSPATH: "{{ android_build_path }}/axp"  # divest path (keep it like that if unsure)
    CCACHE_DIR: "{{ android_build_path }}/ccache/{{ android_shortversion }}"   # full path where to place ccache data
    #SEPARATE_OUT_DIR: "{{ android_build_path }}/out/{{ target_model }}/{{ ROM_FLAVOR }}-{{ android_shortversion }}"
    
    # Semaphore paths
    semaphore_lock_dir: "/opt/semaphore/run" # semaphore run files
    semaphore_work_dir: "/opt/semaphore" # must match semaphore's config.json
    gist_home_dir: /opt/semaphore
    semaphore_home_dir: /opt/semaphore
    ansible_home_dir: /opt/semaphore
# note: if semaphore_work_dir and BUILDHOME differ (like in the above example)
# you have to symlink the .ansible dirs like that:
#ln -s <semaphore_work_dir>/.ansible <BUILDHOME>/
#ln -s <semaphore_work_dir>/.ansible_async <BUILDHOME>/
#ln -s <semaphore_work_dir>/.gitconfig <BUILDHOME>/
  1. Task Templates:
    • name: AXP - A13 - hotdog
    • Playbook Filename: plays/build.yml
    • Inventory: default
    • Repository: sfX-automation
    • Environment: AXP-<model>-<Android-Version>

Optional:

Define Survey Variables to interactively change parts of the build process:

Task Template - Survey Variables

Dirty or clean build (overrides clean_out from your Environment)

  • name: override_clean_out
  • Title: Clean build?
  • Description: true | false

Build instructions

  1. Task Templates
  2. Click Build

Debugging

Ansible

check your Ansible log (https://github.com/sfX-android/automation_scripts/blob/ansible/ansible.cfg -> log_path)

Build

Every build once started(!) will generate a build log on the [buildserver] (see your inventory) in the home directory of the user in the format:

~/build_<model>_axp_<build-id>.log and a ~/build_<model>_axp_latest.log which points to the latest log

Example: ~/build_hotdog_axp_13.1.34.log <- build_hotdog_axp_latest.log

Last updated on
Device Encryption