Gitiles
Code Review Sign In
gerrit.omnirom.org / android_system_core / 0095e35fddaea58ebfdca3afcd0616dad894f8e5 / . / rootdir / etc / ld.config.legacy.txt
blob: 3356d4e88acb3b2815bab88b91f5a5e14a6e4c5a [file] [log] [blame]
Jiyong Park450cff42017-04-05 14:24:14 +0900[diff] [blame]1# Copyright (C) 2017 The Android Open Source Project
2#
3# Bionic loader config file.
4# This gives the exactly the same namespace setup in pre-O.
5#
6
7# All binaries gets the same configuration 'legacy'
8dir.legacy = /system
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]9dir.legacy = /product
Jiyong Park450cff42017-04-05 14:24:14 +0900[diff] [blame]10dir.legacy = /vendor
Alin Jerpeleafa7958e2017-09-27 09:40:59 +0200[diff] [blame]11dir.legacy = /odm
Jiyong Park450cff42017-04-05 14:24:14 +0900[diff] [blame]12dir.legacy = /sbin
13
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]14# Except for /postinstall, where only /system and /product are searched
Jiyong Parkd7e6cb22018-03-20 01:12:31 +0900[diff] [blame]15dir.postinstall = /postinstall
16
Jiyong Park450cff42017-04-05 14:24:14 +0900[diff] [blame]17[legacy]
18namespace.default.isolated = false
Jiyong Park2498e1b2017-12-12 22:11:47 +0900[diff] [blame]19
20namespace.default.search.paths = /system/${LIB}
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]21namespace.default.search.paths += /product/${LIB}
Jiyong Park2498e1b2017-12-12 22:11:47 +0900[diff] [blame]22namespace.default.search.paths += /vendor/${LIB}
23namespace.default.search.paths += /odm/${LIB}
24
25namespace.default.asan.search.paths = /data/asan/system/${LIB}
26namespace.default.asan.search.paths += /system/${LIB}
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]27namespace.default.asan.search.paths += /data/asan/product/${LIB}
28namespace.default.asan.search.paths += /product/${LIB}
Jiyong Park2498e1b2017-12-12 22:11:47 +0900[diff] [blame]29namespace.default.asan.search.paths += /data/asan/vendor/${LIB}
30namespace.default.asan.search.paths += /vendor/${LIB}
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]31namespace.default.asan.search.paths += /data/asan/odm/${LIB}
32namespace.default.asan.search.paths += /odm/${LIB}
Jiyong Parkd7e6cb22018-03-20 01:12:31 +0900[diff] [blame]33
34###############################################################################
Nicolas Geoffrayad125602019-01-24 21:20:20 +0000[diff] [blame]35# APEX related namespaces.
36###############################################################################
37
38additional.namespaces = runtime,conscrypt,media
39namespace.default.asan.permitted.paths += /apex/com.android.resolv/${LIB}
40
41# Keep in sync with ld.config.txt in the com.android.runtime APEX.
42namespace.default.links = runtime
43namespace.default.asan.links = runtime
44# Visible because some libraries are dlopen'ed, e.g. libopenjdk is dlopen'ed by
45# libart.
46namespace.default.visible = true
47namespace.default.link.runtime.shared_libs = libart.so:libartd.so
48namespace.default.link.runtime.shared_libs += libdexfile_external.so
49namespace.default.link.runtime.shared_libs += libnativebridge.so
50namespace.default.link.runtime.shared_libs += libnativehelper.so
51namespace.default.link.runtime.shared_libs += libnativeloader.so
52
53###############################################################################
54# "runtime" APEX namespace
55#
56# This namespace exposes externally accessible libraries from the Runtime APEX.
57###############################################################################
58namespace.runtime.isolated = true
59
60# Keep in sync with ld.config.txt in the com.android.runtime APEX.
61namespace.runtime.search.paths = /apex/com.android.runtime/${LIB}
62namespace.runtime.asan.search.paths = /apex/com.android.runtime/${LIB}
63namespace.runtime.links = default
64# TODO(b/119867084): Restrict to Bionic dlopen dependencies and PALette library
65# when it exists.
66namespace.runtime.link.default.allow_all_shared_libs = true
67
68###############################################################################
69# "media" APEX namespace
70#
71# This namespace is for libraries within the media APEX.
72###############################################################################
73namespace.media.isolated = true
74namespace.media.visible = true
75
76namespace.media.search.paths = /apex/com.android.media/${LIB}
77namespace.media.asan.search.paths = /apex/com.android.media/${LIB}
78
79namespace.media.links = default
80namespace.media.link.default.shared_libs = %LLNDK_LIBRARIES%
81namespace.media.link.default.shared_libs += libandroid.so
82namespace.media.link.default.shared_libs += libbinder_ndk.so
Dongwon Kang0095e352019-01-25 09:26:17 -0800[diff] [blame^]83namespace.media.link.default.shared_libs += libmediametrics.so
Nicolas Geoffrayad125602019-01-24 21:20:20 +0000[diff] [blame]84namespace.media.link.default.shared_libs += %SANITIZER_RUNTIME_LIBRARIES%
85
86###############################################################################
87# "conscrypt" APEX namespace
88#
89# This namespace is for libraries within the conscrypt APEX.
90###############################################################################
91namespace.conscrypt.isolated = true
92namespace.conscrypt.visible = true
93
94# Keep in sync with ld.config.txt in the com.android.runtime APEX.
95namespace.conscrypt.search.paths = /apex/com.android.conscrypt/${LIB}
96namespace.conscrypt.asan.search.paths = /apex/com.android.conscrypt/${LIB}
97namespace.conscrypt.links = default
98namespace.conscrypt.link.default.shared_libs = libc.so
99namespace.conscrypt.link.default.shared_libs += libm.so
100namespace.conscrypt.link.default.shared_libs += libdl.so
101
102###############################################################################
Jiyong Parkd7e6cb22018-03-20 01:12:31 +0900[diff] [blame]103# Namespace config for binaries under /postinstall.
104# Only one default namespace is defined and it has no directories other than
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]105# /system/lib and /product/lib in the search paths. This is because linker
106# calls realpath on the search paths and this causes selinux denial if the
107# paths (/vendor, /odm) are not allowed to the poinstall binaries.
108# There is no reason to allow the binaries to access the paths.
Jiyong Parkd7e6cb22018-03-20 01:12:31 +0900[diff] [blame]109###############################################################################
110[postinstall]
111namespace.default.isolated = false
changho.shin715b1aa2018-11-28 15:15:16 +0900[diff] [blame]112namespace.default.search.paths = /system/${LIB}
113namespace.default.search.paths += /product/${LIB}