From 016059dd467753b0230394e513ff6e68628cacd9 Mon Sep 17 00:00:00 2001 From: Jiyong Park Date: Tue, 7 Jan 2020 19:50:45 +0900 Subject: [PATCH] Add /system/lib to the permitted paths for ns of APEXes With b/144533348, there will be symlinks from libs in APEXes to the libs in the system partition. This is to reduce the size of APEXes when the APEX is bundled with the platform. Adding the /system/lib to the permitted paths so that the realpaths of the symlinks are allowed for the namespaces. Note that this however does not open all libs in the system partition to the APEX namespaces, because searching of the libs are NOT done in /system/lib, but in /apex//lib directory. Bug: 144533348 Test: m Change-Id: I4bb1d6cb5dbf647ae669f49aa5ccb178f5488b5e --- adb/apex/ld.config.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/adb/apex/ld.config.txt b/adb/apex/ld.config.txt index 13d66b6d8..d1858a454 100644 --- a/adb/apex/ld.config.txt +++ b/adb/apex/ld.config.txt @@ -10,6 +10,8 @@ additional.namespaces = platform,art namespace.default.isolated = true namespace.default.search.paths = /apex/com.android.adbd/${LIB} namespace.default.asan.search.paths = /apex/com.android.adbd/${LIB} +namespace.default.permitted.paths = /system/${LIB} +namespace.default.asan.permitted.paths = /system/${LIB} namespace.default.links = art,platform namespace.default.link.art.shared_libs = libadbconnection_server.so namespace.default.link.platform.shared_libs = libc.so:libdl.so:libm.so:libclang_rt.hwasan-aarch64-android.so