tequilaOS/platform_system_core
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
platform_system_core/init/Android.bp

279 lines
6.9 KiB
Text
Raw Normal View History

init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
//
// Copyright (C) 2017 The Android Open Source Project
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
cc_defaults {
name: "init_defaults",
cpp_std: "experimental",
sanitize: {
init: only use signed-integer-overflow sanitizer We've blown up twice in init due to the unsigned integer overflow sanitizer despite the overflows in question being both defined and intentional. Test: boot Change-Id: I08effe3202ac1367d858982ff5478b3a088bab37
2017-07-26 23:17:09 +02:00
misc_undefined: ["signed-integer-overflow"],
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
},
Use -Werror in system/core * Move -Wall -Werror from cppflags to cflags. * Fix/suppress warning on unused variables. Bug: 66996870 Test: build with WITH_TIDY=1 Change-Id: I1e05e96a1d0bcb2ccef1ce456504b3af57167cc5
2017-10-03 00:20:07 +02:00
cflags: [
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"-DLOG_UEVENTS=0",
"-Wall",
"-Wextra",
"-Wno-unused-parameter",
"-Werror",
"-DALLOW_LOCAL_PROP_OVERRIDE=0",
"-DALLOW_PERMISSIVE_SELINUX=0",
"-DREBOOT_BOOTLOADER_ON_PANIC=0",
"-DWORLD_WRITABLE_KMSG=0",
"-DDUMP_ON_UMOUNT_FAILURE=0",
"-DSHUTDOWN_ZERO_TIMEOUT=0",
],
product_variables: {
debuggable: {
cppflags: [
"-UALLOW_LOCAL_PROP_OVERRIDE",
"-DALLOW_LOCAL_PROP_OVERRIDE=1",
"-UALLOW_PERMISSIVE_SELINUX",
"-DALLOW_PERMISSIVE_SELINUX=1",
"-UREBOOT_BOOTLOADER_ON_PANIC",
"-DREBOOT_BOOTLOADER_ON_PANIC=1",
"-UWORLD_WRITABLE_KMSG",
"-DWORLD_WRITABLE_KMSG=1",
"-UDUMP_ON_UMOUNT_FAILURE",
"-DDUMP_ON_UMOUNT_FAILURE=1",
],
},
eng: {
cppflags: [
"-USHUTDOWN_ZERO_TIMEOUT",
"-DSHUTDOWN_ZERO_TIMEOUT=1",
],
},
init: Fix -DUSER_MODE_LINUX compilation Bug: 64985489 Test: Manual Change-Id: Ib37d2b9affe500b66b9243fb24a7dee23b7730f2 Signed-off-by: Dmitry Shmidt <dimitrysh@google.com>
2017-08-23 23:57:07 +02:00
uml: {
cppflags: ["-DUSER_MODE_LINUX"],
bpfmt. Bug: N/A Test: builds Change-Id: I89ad00e1c4c7e0767bc80a7ac7935a4d55e090ac
2018-02-17 02:58:14 +01:00
},
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
},
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
static_libs: [
"libseccomp_policy",
"libavb",
"libprotobuf-cpp-lite",
"libpropertyinfoserializer",
"libpropertyinfoparser",
Build init with shared libraries recovery partition now supports shared librarys. Therefore, init can now be built as a dynamic executable both for normal and recovery modes. To save save in the recovery mode, not all libs are dynamically linked. Libs that are only used by init in the recovery mode are still statically linked. Note: init is still a static executable for legacy devices where system-as-root is not on, because the dynamic linker and shared libs which are in /system are not available when init starts. Bug: 63673171 Test: `adb reboot recovery; adb devices` shows the device ID Test: device boots to the UI in normal mode. Test: do that for both walleye (system-as-root) and bullhead (legacy ramdisk). Change-Id: I30c84ae6a8e507e507ad0bb71acad281316d9e90
2018-06-01 12:26:42 +02:00
],
shared_libs: [
"libbase",
init: Allow restricted use of binder. Allow init to use binder, but in a restricted way: - No binder threadpool - Other processes can't initiate calls to init - No death recipients This change adds libbinder/libutils and calls into ProcessState, which also calls into the kernel driver and sets up state there. No other binder calls are made, so that we can let this soak for a while to see if there any bad side effects of just loading these libraries and initializing the kernel driver. This introduces about 120kB of additional memory usage (PSS), mostly due to pulling in libbinder and libutils and the private state they have. We also don't include these libraries in the recovery version of init, because space on the recovery partition is limited. Bug: 112684055 Test: device still boots, /d/binder/proc/1 shows init state Change-Id: I972b1eebdb16337f52e20d1f614e3a0dce0f06d2
2018-09-04 06:29:14 +02:00
"libbinder",
init: init_defaults uses more shared libraries. This CL switches init_defaults and thus init_second_stage to depend on commonly used shared libraries. In particular, use the following shared libs that have been available on device (under both of normal boot and recovery): - libbootloader_message - libext4_utils - libfs_mgr - libhidl-gen-utils - libkeyutils - liblogwrap The following transitive dependencies have been dropped. They were only needed when including the above libs statically. Dropping them doesn't further affect the size though. - libfec - libfec_rs - libsquashfs_utils With the change, the second stage init size has been reduced from 1094328 to 627992 bytes (aosp_taimen-userdebug), with no new shared libs installed. Also evaluated the impact of using `libprotobuf-cpp-lite.so` and `libseccomp_policy.so`. It doesn't look beneficial -- at least not right now with `init` as the singler user. - statically linked them both: 627992-byte - with libprotobuf-cpp-lite.so: 605880 (init) + 262624 (.so) - with libseccomp_policy.so: 605848 (init) + 32208 (.so) Bug: 112494634 Test: `mmma -j system/core/init` with aosp_marlin-userdebug Test: Flash the marlin build on device. Run init_test. Test: Boot into recovery successfully. Change-Id: I49debe9066ff36dfda55b08266862e29e2bfc96b
2018-07-26 07:35:45 +02:00
"libbootloader_message",
"libcutils",
Run BoringSSL self test during startup NIAP certification requires that all cryptographic functions undergo a self-test during startup to demonstrate correct operation. This change adds such a check. If the check fails, it will prevent the device from booting by rebooting into the bootloader. Bug: 119826244 Test: Built for walleye. After device booted examined dmesg and observed logs from init showing that the new task did start. Further, when BoringSSL is built to fail its self check the device did stop during a normal boot and enter the bootloader, and did so before the boot animation stopped. Change-Id: I07a5dc73a314502c87de566bb26f4d73499d2675
2018-11-15 17:43:48 +01:00
"libcrypto",
Build init with shared libraries recovery partition now supports shared librarys. Therefore, init can now be built as a dynamic executable both for normal and recovery modes. To save save in the recovery mode, not all libs are dynamically linked. Libs that are only used by init in the recovery mode are still statically linked. Note: init is still a static executable for legacy devices where system-as-root is not on, because the dynamic linker and shared libs which are in /system are not available when init starts. Bug: 63673171 Test: `adb reboot recovery; adb devices` shows the device ID Test: device boots to the UI in normal mode. Test: do that for both walleye (system-as-root) and bullhead (legacy ramdisk). Change-Id: I30c84ae6a8e507e507ad0bb71acad281316d9e90
2018-06-01 12:26:42 +02:00
"libdl",
init: init_defaults uses more shared libraries. This CL switches init_defaults and thus init_second_stage to depend on commonly used shared libraries. In particular, use the following shared libs that have been available on device (under both of normal boot and recovery): - libbootloader_message - libext4_utils - libfs_mgr - libhidl-gen-utils - libkeyutils - liblogwrap The following transitive dependencies have been dropped. They were only needed when including the above libs statically. Dropping them doesn't further affect the size though. - libfec - libfec_rs - libsquashfs_utils With the change, the second stage init size has been reduced from 1094328 to 627992 bytes (aosp_taimen-userdebug), with no new shared libs installed. Also evaluated the impact of using `libprotobuf-cpp-lite.so` and `libseccomp_policy.so`. It doesn't look beneficial -- at least not right now with `init` as the singler user. - statically linked them both: 627992-byte - with libprotobuf-cpp-lite.so: 605880 (init) + 262624 (.so) - with libseccomp_policy.so: 605848 (init) + 32208 (.so) Bug: 112494634 Test: `mmma -j system/core/init` with aosp_marlin-userdebug Test: Flash the marlin build on device. Run init_test. Test: Boot into recovery successfully. Change-Id: I49debe9066ff36dfda55b08266862e29e2bfc96b
2018-07-26 07:35:45 +02:00
"libext4_utils",
"libfs_mgr",
init: use libfscrypt for file-based encryption setup The file-based encryption setup code is being refactored into its own library because it applies to both ext4 and f2fs, not just ext4. Update init to use the new location. For fs_mgr, just remove the include of ext4_crypt_init_extensions.h since it was unneeded. Test: built, booted device with f2fs encryption Change-Id: I392a763e3349f001bdbc09eb9ca975aa3451fd68
2018-10-23 22:10:33 +02:00
"libfscrypt",
init: Add support for GSI installations in first-stage mount. Bug: 121209697 Test: gsi boots Change-Id: I69db0f8e999da366e46728b1008602f543cd79f6
2019-01-04 03:16:56 +01:00
"libgsi",
init: init_defaults uses more shared libraries. This CL switches init_defaults and thus init_second_stage to depend on commonly used shared libraries. In particular, use the following shared libs that have been available on device (under both of normal boot and recovery): - libbootloader_message - libext4_utils - libfs_mgr - libhidl-gen-utils - libkeyutils - liblogwrap The following transitive dependencies have been dropped. They were only needed when including the above libs statically. Dropping them doesn't further affect the size though. - libfec - libfec_rs - libsquashfs_utils With the change, the second stage init size has been reduced from 1094328 to 627992 bytes (aosp_taimen-userdebug), with no new shared libs installed. Also evaluated the impact of using `libprotobuf-cpp-lite.so` and `libseccomp_policy.so`. It doesn't look beneficial -- at least not right now with `init` as the singler user. - statically linked them both: 627992-byte - with libprotobuf-cpp-lite.so: 605880 (init) + 262624 (.so) - with libseccomp_policy.so: 605848 (init) + 32208 (.so) Bug: 112494634 Test: `mmma -j system/core/init` with aosp_marlin-userdebug Test: Flash the marlin build on device. Run init_test. Test: Boot into recovery successfully. Change-Id: I49debe9066ff36dfda55b08266862e29e2bfc96b
2018-07-26 07:35:45 +02:00
"libhidl-gen-utils",
"libkeyutils",
"liblog",
"liblogwrap",
init: clean up the 1st/2nd stage init split The first split of 1st/2nd stage init went a bit overboard, since it split these even in the case of the recovery image and system-as-root, which don't actually need the split. This change simplifies this a bit: system-as-root and recovery have a single combined /system/bin/init and a symlink from /init to it. non-system-as-root has a separate first stage init at /init on the first stage ramdisk and a combined /system/bin/init on system.img. Two particular benefits from this: 1) Removal of the rsync of TARGET_RAMDISK_OUT to the recovery image 2) Decrease of overall space on the recovery image since it won't have a statically linked first stage init This also unified the various entry points of init to depend entirely on the arguments passed to it, instead of the hybrid of arguments and environment variable used previously. Bug: 80395578 Test: boot both system-as-root and non-system-as-root Change-Id: Ic2f29b6f56b7defc80eaa0e7cd0c9107e978816f
2018-11-06 23:12:05 +01:00
"liblp",
libprocessgroup: Add support for task profiles Abstract usage of cgroups into task profiles that allows for changes in cgroup hierarchy and version without affecting framework codebase. Rework current processgroup and sched_policy API function implementations to use task profiles instead of hardcoded paths and attributes. Mount cgroups using information from cgroups.json rather than from init.rc Exempt-From-Owner-Approval: already approved in internal master Bug: 111307099 Test: builds, boots Change-Id: If5532d6dc570add825cebd5b5148e00c7d688e32 Merged-In: If5532d6dc570add825cebd5b5148e00c7d688e32 Signed-off-by: Suren Baghdasaryan <surenb@google.com>
2018-12-21 20:41:50 +01:00
"libprocessgroup",
libselinux is dynamically linked from init init is now dynamically linked to libselinux. This gives us about 100KB extra space, which is valuable in the recovery partition. Bug: 63673171 Test: m -j Test: adb reboot recovery Change-Id: I72c4f886cbbb9ce54f8221f05547f5b9f0e1adb0
2018-06-19 09:55:05 +02:00
"libselinux",
init: Allow restricted use of binder. Allow init to use binder, but in a restricted way: - No binder threadpool - Other processes can't initiate calls to init - No death recipients This change adds libbinder/libutils and calls into ProcessState, which also calls into the kernel driver and sets up state there. No other binder calls are made, so that we can let this soak for a while to see if there any bad side effects of just loading these libraries and initializing the kernel driver. This introduces about 120kB of additional memory usage (PSS), mostly due to pulling in libbinder and libutils and the private state they have. We also don't include these libraries in the recovery version of init, because space on the recovery partition is limited. Bug: 112684055 Test: device still boots, /d/binder/proc/1 shows init state Change-Id: I972b1eebdb16337f52e20d1f614e3a0dce0f06d2
2018-09-04 06:29:14 +02:00
"libutils",
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
],
Build init with the bootstrap bionic libs As bionic libs are moved from /system to the runtime APEX, anything that is outside of the runtime APEX cannot use private symbols from the bionic libs. init is not included in the runtime APEX but is using private bionic APIs: __system_property_[add|area_init|update|...]. So, it was required to publicize the private symbols for init. However, since init is started before the runtime APEX is activated, it actually cannot use the bionic libs from the runtime APEX, but will use the bootstrap bionic libs left in /system/bootstrap/lib[64]. Because init and the bootstrap libs are in the same partition, init doesn't need to link against the stubs of bionic libs. In order to make this possible, the new property 'bootstrap' is set to true allow init to use the bootstrap bionic. Bug: 120266448 Test: m with https://android-review.googlesource.com/c/platform/bionic/+/849044 Change-Id: If61f25faf9aed4968bf2922859ceb94276ba03fb
2018-12-26 09:34:39 +01:00
bootstrap: true,
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
}
cc_library_static {
name: "libinit",
split first stage init into a separate executable In the future, systems with dm-linear will require a ramdisk to set up the mount for system. In this world, first stage init will be a part of this ramdisk and handle setting up dm-linear, mounting the necessary partitions, then pivoting to the system image, which will become the root partition. This also enables previous devices without system-as-root, to be unified with system-as-root devices for all aspects of boot after the pivot_root. Bug: 79758715 Test: boot hikey Test: boot sailfish, boot sailfish into recovery Change-Id: Iefa88a3ec5994e7989aa9f26f2de0351ffa5468b
2018-07-20 23:57:00 +02:00
recovery_available: true,
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
defaults: ["init_defaults"],
srcs: [
"action.cpp",
Move ActionManager to its own file Bug: 36970783 Test: build Change-Id: I08fa39052236b462249f79de1d02bf02bdbf4c84
2018-02-14 00:36:14 +01:00
"action_manager.cpp",
Move ActionParser to its own file Bug: 36970783 Test: build Change-Id: Idd5b923e4789760bb9ef67c10982b2642bc6a31a
2018-02-14 00:25:29 +01:00
"action_parser.cpp",
Run BoringSSL self test during startup NIAP certification requires that all cryptographic functions undergo a self-test during startup to demonstrate correct operation. This change adds such a check. If the check fails, it will prevent the device from booting by rebooting into the bootloader. Bug: 119826244 Test: Built for walleye. After device booted examined dmesg and observed logs from init showing that the new task did start. Further, when BoringSSL is built to fail its self check the device did stop during a normal boot and enter the bootloader, and did so before the boot animation stopped. Change-Id: I07a5dc73a314502c87de566bb26f4d73499d2675
2018-11-15 17:43:48 +01:00
"boringssl_self_test.cpp",
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
"bootchart.cpp",
"builtins.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"capabilities.cpp",
"descriptors.cpp",
"devices.cpp",
init: separate out epoll into a class Test: init_tests Bug: 64114943 Change-Id: I5f03314773b02b9e30e8e21895b6bdcfd4909e88
2015-10-25 01:20:18 +02:00
"epoll.cpp",
ueventd: Break devices.cpp into discrete classes devices.cpp handles too many things for creating one class. This change breaks it up into various files and classes. * Parsing is moved to ueventd_parser.cpp * Reading from the uevent socket and Cold booting is moved to a UeventListener class, in uevent_listener.cpp * Firmware handling is moved to firmware_handler.cpp * The remaining contents form a DeviceHandler class within devices.cpp Bug: 33785894 Test: boot bullhead x40, observe no major differences in /dev and /sys Test: boot sailfish x40, observe no major differences in /dev and /sys Test: init unit tests Change-Id: I846a2e5995fbb344c7a8e349065c18a934fa6aba
2017-05-26 00:58:59 +02:00
"firmware_handler.cpp",
init: clean up the 1st/2nd stage init split The first split of 1st/2nd stage init went a bit overboard, since it split these even in the case of the recovery image and system-as-root, which don't actually need the split. This change simplifies this a bit: system-as-root and recovery have a single combined /system/bin/init and a symlink from /init to it. non-system-as-root has a separate first stage init at /init on the first stage ramdisk and a combined /system/bin/init on system.img. Two particular benefits from this: 1) Removal of the rsync of TARGET_RAMDISK_OUT to the recovery image 2) Decrease of overall space on the recovery image since it won't have a statically linked first stage init This also unified the various entry points of init to depend entirely on the arguments passed to it, instead of the hybrid of arguments and environment variable used previously. Bug: 80395578 Test: boot both system-as-root and non-system-as-root Change-Id: Ic2f29b6f56b7defc80eaa0e7cd0c9107e978816f
2018-11-06 23:12:05 +01:00
"first_stage_init.cpp",
init: rename init_first_stage In preparation for splitting first stage init from the rest of the init executable, rename these files which are specifically involved in first stage mount operations to a more appropriate name. Test: builds Change-Id: I8a2d4e8c7e1deea1bab45cc8e738727bc2ceb3e5
2018-07-21 00:18:04 +02:00
"first_stage_mount.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"import_parser.cpp",
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
"init.cpp",
"keychords.cpp",
ueventd: Add dynamic kernel module loading For some platforms it is not known at build time what devices will be attached at runtime. Building into the kernel or pre-loading at init all the modules that could be needed would unnecessary bloat the kernel. The solution is dynamic kernel module loading. The kernel will generate uevents when devices are added, userspace should monitor for these events and load the compatible modules. The init process already monitors for uevents, add here the ability to respond to modalias events and preform the correct action. Adding this to init is preferred over an external program as we can read and process the module alias and dependency files once, instead of for each module needing to be loaded. Test: Run on Beagle-X15, check all needed modules are loaded (lsmod) Change-Id: I1b57d9aeb0a9770f309207183dc4bc2b7b905f14 Signed-off-by: Andrew F. Davis <afd@ti.com> Reviewed-by: Sam Protsenko <semen.protsenko@linaro.org>
2018-07-09 20:12:00 +02:00
"modalias_handler.cpp",
Proper mount namespace configuration for bionic This CL fixes the design problem of the previous mechanism for providing the bootstrap bionic and the runtime bionic to the same path. Previously, bootstrap bionic was self-bind-mounted; i.e. /system/bin/libc.so is bind-mounted to itself. And the runtime bionic was bind-mounted on top of the bootstrap bionic. This has not only caused problems like `adb sync` not working(b/122737045), but also is quite difficult to understand due to the double-and-self mounting. This is the new design: Most importantly, these four are all distinct: 1) bootstrap bionic (/system/lib/bootstrap/libc.so) 2) runtime bionic (/apex/com.android.runtime/lib/bionic/libc.so) 3) mount point for 1) and 2) (/bionic/lib/libc.so) 4) symlink for 3) (/system/lib/libc.so -> /bionic/lib/libc.so) Inside the mount namespace of the pre-apexd processes, 1) is bind-mounted to 3). Likewise, inside the mount namespace of the post-apexd processes, 2) is bind-mounted to 3). In other words, there is no self-mount, and no double-mount. Another change is that mount points are under /bionic and the legacy paths become symlinks to the mount points. This is to make sure that there is no bind mounts under /system, which is breaking some apps. Finally, code for creating mount namespaces, mounting bionic, etc are refactored to mount_namespace.cpp Bug: 120266448 Bug: 123275379 Test: m, device boots, adb sync/push/pull works, especially with following paths: /bionic/lib64/libc.so /bionic/bin/linker64 /system/lib64/bootstrap/libc.so /system/bin/bootstrap/linker64 Change-Id: Icdfbdcc1efca540ac854d4df79e07ee61fca559f
2019-01-16 15:00:59 +01:00
"mount_namespace.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"parser.cpp",
use a single file for storing persistent properties We have seen that storing persistent properties in separate files causes increased boot latency compared to if they were stored in a single contiguous file. This change creates a simple format for a contiguously stored property file, and adds the support for arbitrary characters in the names of persistent properties, which previously had been restricted. It has a mechanism for converting older devices to the new format as well. Bug: 64392887 Test: boot bullhead with new properties Test: boot bullhead and verify old properties are converted to the new property file Test: corrupt property file and ensure that it gets recovered from memory Test: new unit tests Change-Id: I60d8201d655ce5c97b33faae81d5ca8dbbb21a14
2017-08-05 00:59:03 +02:00
"persistent_properties.cpp",
init: use protobuf for serialization of persistent properties I probably should have done this from the start... There's a shim to convert my manually serialized format to protobuf, and since that has not yet shipped, it'll be reverted in a short period of time. Test: init unit tests Test: upgrade from legacy and intermediate property formats successfully Change-Id: Iad25f6c30d0b44d294230a53dd6876222d1c785b
2017-09-16 00:44:04 +02:00
"persistent_properties.proto",
init: move property_service.cpp to libinit service.cpp, which is part of libinit, references symbols in property_service.cpp, which causes the linker to complain when linking libinit.a in some situations. Therefore, we move property_service.cpp to libinit. Separately, this will make it easier to write tests for property_service.cpp, which we will want to do in the future. Test: build, init unit tests Change-Id: If1cffa8510b97e9436efed3c8ea0724272383eba
2017-08-10 02:13:21 +02:00
"property_service.cpp",
Introduce property types Properties right now can take any format, but that makes it hard to specify an API for these properties as Treble intends to do. Therefore this change introduces the idea of property types, described below. 1) 'string' this is the default type and allows any property to be set. 2) 'bool' this allows only boolean values (true|false|1|0) 3) 'int' and 'uint' these allow signed and unsigned integer values respectively. 4) 'double' this allows floating point numbers with double precision. 5) 'size' this allows for strings matching [0-9]+[gkm]. 6) 'enum' this allows only a specific set of space deliminated values to be set, e.g. 'enum allow these strings' only allows one of 'allow', 'these', or 'strings' to be set. Bug: 70858511 Test: unit tests, test that properties are only set if their type matches Change-Id: I7a6b00fb43ec630d1f56c9e9a1f1b61d3914f603
2017-12-11 10:40:07 +01:00
"property_type.cpp",
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
"reboot.cpp",
Split init's source files init first stage and second stage This is a baseline for splitting init first and second stage into their own executables. Bug: 79758715 Test: sailfish boots Change-Id: I549ad4502893b3a5e4c2a9886f66850f6d31b619
2018-08-03 22:36:18 +02:00
"reboot_utils.cpp",
init: split security functions out of init.cpp This change splits out the selinux initialization and supporting functionality into selinux.cpp and splits the security related initialization of the rng, etc to security.cpp. It also provides additional documentation for SEPolicy loading as this has been requested by some teams. It additionally cleans up sehandle and sehandle_prop. The former is static within selinux.cpp and new wrapper functions are created around selabel_lookup*() to better serve the users. The latter is moved to property_service.cpp as it is isolated to that file for its usage. Test: boot bullhead Merged-In: Idc95d493cebc681fbe686b5160502f36af149f60 Change-Id: Idc95d493cebc681fbe686b5160502f36af149f60
2017-08-10 21:22:44 +02:00
"security.cpp",
"selinux.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"service.cpp",
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
"sigchld_handler.cpp",
init: run vendor commands in a separate SELinux context One of the major aspects of treble is the compartmentalization of system and vendor components, however init leaves a huge gap here, as vendor init scripts run in the same context as system init scripts and thus can access and modify the same properties, files, etc as the system can. This change is meant to close that gap. It forks a separate 'subcontext' init that runs in a different SELinux context with permissions that match what vendors should have access to. Commands get sent over a socket to this 'subcontext' init that then runs them in this SELinux context and returns the result. Note that not all commands run in the subcontext; some commands such as those dealing with services only make sense in the context of the main init process. Bug: 62875318 Test: init unit tests, boot bullhead, boot sailfish Change-Id: Idf4a4ebf98842d27b8627f901f961ab9eb412aee
2017-09-13 00:58:47 +02:00
"subcontext.cpp",
"subcontext.proto",
init: clean up the 1st/2nd stage init split The first split of 1st/2nd stage init went a bit overboard, since it split these even in the case of the recovery image and system-as-root, which don't actually need the split. This change simplifies this a bit: system-as-root and recovery have a single combined /system/bin/init and a symlink from /init to it. non-system-as-root has a separate first stage init at /init on the first stage ramdisk and a combined /system/bin/init on system.img. Two particular benefits from this: 1) Removal of the rsync of TARGET_RAMDISK_OUT to the recovery image 2) Decrease of overall space on the recovery image since it won't have a statically linked first stage init This also unified the various entry points of init to depend entirely on the arguments passed to it, instead of the hybrid of arguments and environment variable used previously. Bug: 80395578 Test: boot both system-as-root and non-system-as-root Change-Id: Ic2f29b6f56b7defc80eaa0e7cd0c9107e978816f
2018-11-06 23:12:05 +01:00
"switch_root.cpp",
init: support setting rlimits per service Add a new service option, `rlimit` that allows a given rlimit to be set for a specific service instead of globally. Use the same parsing, now allowing text such as 'cpu' or 'rtprio' instead of relying on the enum value for the `setrlimit` builtin command as well. Bug: 63882119 Bug: 64894637 Test: boot bullhead, run a test app that attempts to set its rtprio to 95, see that the priority set fails normally but passes when `rlimit rtprio 99 99` is used as its service option. See that this fails when `rlimit rtprio 50 50` is used as well. Test: new unit tests Change-Id: I4a13ca20e8529937d8b4bc11718ffaaf77523a52
2017-08-25 19:39:25 +02:00
"rlimit_parser.cpp",
init: remove Parser singleton and related cleanup * Remove the Parser singleton (Hooray!) * Rename parser.* to tokenizer.* as this is actually a tokenizer * Rename init_parser.* to parser.* as this is a generic parser * Move contents of init_parser_test.cpp to service_test.cpp as this actually is a test of the parsing in MakeExecOneshotService() and nothing related to (init_)parser.cpp Test: boot bullhead Test: bool sailfish Test: init unit tests Change-Id: I4fe39e6483f58ebd3ce5ee715a45dbba0acf5d91
2017-07-27 21:54:48 +02:00
"tokenizer.cpp",
ueventd: Break devices.cpp into discrete classes devices.cpp handles too many things for creating one class. This change breaks it up into various files and classes. * Parsing is moved to ueventd_parser.cpp * Reading from the uevent socket and Cold booting is moved to a UeventListener class, in uevent_listener.cpp * Firmware handling is moved to firmware_handler.cpp * The remaining contents form a DeviceHandler class within devices.cpp Bug: 33785894 Test: boot bullhead x40, observe no major differences in /dev and /sys Test: boot sailfish x40, observe no major differences in /dev and /sys Test: init unit tests Change-Id: I846a2e5995fbb344c7a8e349065c18a934fa6aba
2017-05-26 00:58:59 +02:00
"uevent_listener.cpp",
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
"ueventd.cpp",
ueventd: Break devices.cpp into discrete classes devices.cpp handles too many things for creating one class. This change breaks it up into various files and classes. * Parsing is moved to ueventd_parser.cpp * Reading from the uevent socket and Cold booting is moved to a UeventListener class, in uevent_listener.cpp * Firmware handling is moved to firmware_handler.cpp * The remaining contents form a DeviceHandler class within devices.cpp Bug: 33785894 Test: boot bullhead x40, observe no major differences in /dev and /sys Test: boot sailfish x40, observe no major differences in /dev and /sys Test: init unit tests Change-Id: I846a2e5995fbb344c7a8e349065c18a934fa6aba
2017-05-26 00:58:59 +02:00
"ueventd_parser.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"util.cpp",
],
Access apex sysprops via the generated API Bug: 125549215 Test: m Change-Id: Ie9b0aa5eec5931da3512d77613b034e5bd760f3e
2019-02-25 14:18:37 +01:00
whole_static_libs: ["libcap", "com.android.sysprop.apex"],
Add dummy vndk library libmkbootimg to enable abi checks on boot_img_hdr. Bug: 74763691 Test: m -j libmkbootimg creates libmkbootimg.so.lsdump. Test: make -j64 Change-Id: I8d716c560467aaf090f4f7ee9cfbc53a9405f05d (cherry picked from commit 4cc755dce527434dc4b79c1734185faeab084bac)
2018-03-29 03:45:35 +02:00
header_libs: ["bootimg_headers"],
init: use protobuf for serialization of persistent properties I probably should have done this from the start... There's a shim to convert my manually serialized format to protobuf, and since that has not yet shipped, it'll be reverted in a short period of time. Test: init unit tests Test: upgrade from legacy and intermediate property formats successfully Change-Id: Iad25f6c30d0b44d294230a53dd6876222d1c785b
2017-09-16 00:44:04 +02:00
proto: {
type: "lite",
export_proto_headers: true,
},
init: Allow restricted use of binder. Allow init to use binder, but in a restricted way: - No binder threadpool - Other processes can't initiate calls to init - No death recipients This change adds libbinder/libutils and calls into ProcessState, which also calls into the kernel driver and sets up state there. No other binder calls are made, so that we can let this soak for a while to see if there any bad side effects of just loading these libraries and initializing the kernel driver. This introduces about 120kB of additional memory usage (PSS), mostly due to pulling in libbinder and libutils and the private state they have. We also don't include these libraries in the recovery version of init, because space on the recovery partition is limited. Bug: 112684055 Test: device still boots, /d/binder/proc/1 shows init state Change-Id: I972b1eebdb16337f52e20d1f614e3a0dce0f06d2
2018-09-04 06:29:14 +02:00
target: {
recovery: {
cflags: ["-DRECOVERY"],
exclude_shared_libs: ["libbinder", "libutils"],
},
},
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
}
cc_binary {
split first stage init into a separate executable In the future, systems with dm-linear will require a ramdisk to set up the mount for system. In this world, first stage init will be a part of this ramdisk and handle setting up dm-linear, mounting the necessary partitions, then pivoting to the system image, which will become the root partition. This also enables previous devices without system-as-root, to be unified with system-as-root devices for all aspects of boot after the pivot_root. Bug: 79758715 Test: boot hikey Test: boot sailfish, boot sailfish into recovery Change-Id: Iefa88a3ec5994e7989aa9f26f2de0351ffa5468b
2018-07-20 23:57:00 +02:00
name: "init_second_stage",
recovery_available: true,
stem: "init",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
defaults: ["init_defaults"],
split first stage init into a separate executable In the future, systems with dm-linear will require a ramdisk to set up the mount for system. In this world, first stage init will be a part of this ramdisk and handle setting up dm-linear, mounting the necessary partitions, then pivoting to the system image, which will become the root partition. This also enables previous devices without system-as-root, to be unified with system-as-root devices for all aspects of boot after the pivot_root. Bug: 79758715 Test: boot hikey Test: boot sailfish, boot sailfish into recovery Change-Id: Iefa88a3ec5994e7989aa9f26f2de0351ffa5468b
2018-07-20 23:57:00 +02:00
static_libs: ["libinit"],
init: require e2fsdroid and mke2fs when building init init calls fs_mgr to format ext4 partitions. This requires e2fsdroid and mke2fs in /system/bin/ Bug: 35219933 Change-Id: Ia32fe438cd9b9332f8e18e0cbe7f61bd050adcb1 (cherry picked from commit 041f849548397803e2f458fd08d5e7b98909c8e4)
2017-07-06 20:43:45 +02:00
required: [
"e2fsdroid",
"mke2fs",
fastboot/fs_mgr/init: add sload_f2fs Change-Id: Iab1e4037cbb835aba97f941c8840b8971caf38e7 Signed-off-by: Jaegeuk Kim <jaegeuk@google.com>
2017-11-29 04:26:34 +01:00
"sload_f2fs",
"make_f2fs",
init: require e2fsdroid and mke2fs when building init init calls fs_mgr to format ext4 partitions. This requires e2fsdroid and mke2fs in /system/bin/ Bug: 35219933 Change-Id: Ia32fe438cd9b9332f8e18e0cbe7f61bd050adcb1 (cherry picked from commit 041f849548397803e2f458fd08d5e7b98909c8e4)
2017-07-06 20:43:45 +02:00
],
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
srcs: ["main.cpp"],
split first stage init into a separate executable In the future, systems with dm-linear will require a ramdisk to set up the mount for system. In this world, first stage init will be a part of this ramdisk and handle setting up dm-linear, mounting the necessary partitions, then pivoting to the system image, which will become the root partition. This also enables previous devices without system-as-root, to be unified with system-as-root devices for all aspects of boot after the pivot_root. Bug: 79758715 Test: boot hikey Test: boot sailfish, boot sailfish into recovery Change-Id: Iefa88a3ec5994e7989aa9f26f2de0351ffa5468b
2018-07-20 23:57:00 +02:00
symlinks: ["ueventd"],
init: Allow restricted use of binder. Allow init to use binder, but in a restricted way: - No binder threadpool - Other processes can't initiate calls to init - No death recipients This change adds libbinder/libutils and calls into ProcessState, which also calls into the kernel driver and sets up state there. No other binder calls are made, so that we can let this soak for a while to see if there any bad side effects of just loading these libraries and initializing the kernel driver. This introduces about 120kB of additional memory usage (PSS), mostly due to pulling in libbinder and libutils and the private state they have. We also don't include these libraries in the recovery version of init, because space on the recovery partition is limited. Bug: 112684055 Test: device still boots, /d/binder/proc/1 shows init state Change-Id: I972b1eebdb16337f52e20d1f614e3a0dce0f06d2
2018-09-04 06:29:14 +02:00
target: {
recovery: {
cflags: ["-DRECOVERY"],
exclude_shared_libs: ["libbinder", "libutils"],
},
},
Proper mount namespace configuration for bionic This CL fixes the design problem of the previous mechanism for providing the bootstrap bionic and the runtime bionic to the same path. Previously, bootstrap bionic was self-bind-mounted; i.e. /system/bin/libc.so is bind-mounted to itself. And the runtime bionic was bind-mounted on top of the bootstrap bionic. This has not only caused problems like `adb sync` not working(b/122737045), but also is quite difficult to understand due to the double-and-self mounting. This is the new design: Most importantly, these four are all distinct: 1) bootstrap bionic (/system/lib/bootstrap/libc.so) 2) runtime bionic (/apex/com.android.runtime/lib/bionic/libc.so) 3) mount point for 1) and 2) (/bionic/lib/libc.so) 4) symlink for 3) (/system/lib/libc.so -> /bionic/lib/libc.so) Inside the mount namespace of the pre-apexd processes, 1) is bind-mounted to 3). Likewise, inside the mount namespace of the post-apexd processes, 2) is bind-mounted to 3). In other words, there is no self-mount, and no double-mount. Another change is that mount points are under /bionic and the legacy paths become symlinks to the mount points. This is to make sure that there is no bind mounts under /system, which is breaking some apps. Finally, code for creating mount namespaces, mounting bionic, etc are refactored to mount_namespace.cpp Bug: 120266448 Bug: 123275379 Test: m, device boots, adb sync/push/pull works, especially with following paths: /bionic/lib64/libc.so /bionic/bin/linker64 /system/lib64/bootstrap/libc.so /system/bin/bootstrap/linker64 Change-Id: Icdfbdcc1efca540ac854d4df79e07ee61fca559f
2019-01-16 15:00:59 +01:00
ldflags: ["-Wl,--rpath,/system/${LIB}/bootstrap"],
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
}
// Tests
// ------------------------------------------------------------------------------
cc_test {
name: "init_tests",
defaults: ["init_defaults"],
init: Build init_tests only for the first arch. Not all the dependent shared libs are installed on device with both arches. For example, we don't have 32-bit `libfs_mgr.so` or `libbootloader_message.so` on marlin, which would cause 32-bit `init_tests` to fail. Bug: 112494634 Test: Run (64-bit) init_tests on marlin. Test: `m -j continuous_native_tests` with aosp_marlin-userdebug. Check that only 64-bit init_tests is included in `continuous_native_tests.zip`. Change-Id: I999d58750d48c34df7dbabccf8863a6ccaf0b83c
2018-08-24 18:40:04 +02:00
compile_multilib: "first",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
srcs: [
"devices_test.cpp",
"init_test.cpp",
init: add keychords_test Test: init_tests --gtest_filter=keychords.* Bug: 64114943 Change-Id: I357d0c1bd56660ac28bc02b76d5632ef1b9328b7
2018-05-15 20:19:43 +02:00
"keychords_test.cpp",
use a single file for storing persistent properties We have seen that storing persistent properties in separate files causes increased boot latency compared to if they were stored in a single contiguous file. This change creates a simple format for a contiguously stored property file, and adds the support for arbitrary characters in the names of persistent properties, which previously had been restricted. It has a mechanism for converting older devices to the new format as well. Bug: 64392887 Test: boot bullhead with new properties Test: boot bullhead and verify old properties are converted to the new property file Test: corrupt property file and ensure that it gets recovered from memory Test: new unit tests Change-Id: I60d8201d655ce5c97b33faae81d5ca8dbbb21a14
2017-08-05 00:59:03 +02:00
"persistent_properties_test.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"property_service_test.cpp",
Introduce property types Properties right now can take any format, but that makes it hard to specify an API for these properties as Treble intends to do. Therefore this change introduces the idea of property types, described below. 1) 'string' this is the default type and allows any property to be set. 2) 'bool' this allows only boolean values (true|false|1|0) 3) 'int' and 'uint' these allow signed and unsigned integer values respectively. 4) 'double' this allows floating point numbers with double precision. 5) 'size' this allows for strings matching [0-9]+[gkm]. 6) 'enum' this allows only a specific set of space deliminated values to be set, e.g. 'enum allow these strings' only allows one of 'allow', 'these', or 'strings' to be set. Bug: 70858511 Test: unit tests, test that properties are only set if their type matches Change-Id: I7a6b00fb43ec630d1f56c9e9a1f1b61d3914f603
2017-12-11 10:40:07 +01:00
"property_type_test.cpp",
init: introduce Result<T> for return values and error handling init tries to propagate error information up to build context before logging errors. This is a good thing, however too often init has the overly verbose paradigm for error handling, below: bool CalculateResult(const T& input, U* output, std::string* err) bool CalculateAndUseResult(const T& input, std::string* err) { U output; std::string calculate_result_err; if (!CalculateResult(input, &output, &calculate_result_err)) { *err = "CalculateResult " + input + " failed: " + calculate_result_err; return false; } UseResult(output); return true; } Even more common are functions that return only true/false but also require passing a std::string* err in order to see the error message. This change introduces a Result<T> that is use to either hold a successful return value of type T or to hold an error message as a std::string. If the functional only returns success or a failure with an error message, Result<Success> may be used. The classes Error and ErrnoError are used to indicate a failed Result<T>. A successful Result<T> is constructed implicitly from any type that can be implicitly converted to T or from the constructor arguments for T. This allows you to return a type T directly from a function that returns Result<T>. Error and ErrnoError are used to construct a Result<T> has failed. Each of these classes take an ostream as an input and are implicitly cast to a Result<T> containing that failure. ErrnoError() additionally appends ": " + strerror(errno) to the end of the failure string to aid in interacting with C APIs. The end result is that the above code snippet is turned into the much clearer example below: Result<U> CalculateResult(const T& input); Result<Success> CalculateAndUseResult(const T& input) { auto output = CalculateResult(input); if (!output) { return Error() << "CalculateResult " << input << " failed: " << output.error(); } UseResult(*output); return Success(); } This change also makes this conversion for some of the util.cpp functions that used the old paradigm. Test: boot bullhead, init unit tests Merged-In: I1e7d3a8820a79362245041251057fbeed2f7979b Change-Id: I1e7d3a8820a79362245041251057fbeed2f7979b
2017-08-03 21:54:07 +02:00
"result_test.cpp",
init: support setting rlimits per service Add a new service option, `rlimit` that allows a given rlimit to be set for a specific service instead of globally. Use the same parsing, now allowing text such as 'cpu' or 'rtprio' instead of relying on the enum value for the `setrlimit` builtin command as well. Bug: 63882119 Bug: 64894637 Test: boot bullhead, run a test app that attempts to set its rtprio to 95, see that the priority set fails normally but passes when `rlimit rtprio 99 99` is used as its service option. See that this fails when `rlimit rtprio 50 50` is used as well. Test: new unit tests Change-Id: I4a13ca20e8529937d8b4bc11718ffaaf77523a52
2017-08-25 19:39:25 +02:00
"rlimit_parser_test.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"service_test.cpp",
init: run vendor commands in a separate SELinux context One of the major aspects of treble is the compartmentalization of system and vendor components, however init leaves a huge gap here, as vendor init scripts run in the same context as system init scripts and thus can access and modify the same properties, files, etc as the system can. This change is meant to close that gap. It forks a separate 'subcontext' init that runs in a different SELinux context with permissions that match what vendors should have access to. Commands get sent over a socket to this 'subcontext' init that then runs them in this SELinux context and returns the result. Note that not all commands run in the subcontext; some commands such as those dealing with services only make sense in the context of the main init process. Bug: 62875318 Test: init unit tests, boot bullhead, boot sailfish Change-Id: Idf4a4ebf98842d27b8627f901f961ab9eb412aee
2017-09-13 00:58:47 +02:00
"subcontext_test.cpp",
init: add unit tests for tokenizer.cpp Test: this unit test Change-Id: Iae24f3bf7850dd4b298281f6608bce195096d60a
2018-06-26 22:56:34 +02:00
"tokenizer_test.cpp",
ueventd: add a test for ueventd_parser.cpp Test: this unit test Change-Id: Ib23f23ea5b362bb458adf8208573e5dc80ad6cf0
2018-07-18 00:28:16 +02:00
"ueventd_parser_test.cpp",
ueventd: add tests for setegid()/setfscreatecon() and threads setegid() and setfscreatecon() on Android both operate on a per-thread basis, not a per-process basis. Ueventd may take advantage of this in the future, so this CL introduces tests that ensure that this functionality remains consistent. Bug: 63441941 Test: newly added unit tests Change-Id: I8b1c62cc322b6fe44b748550a4cea8658d9efd88
2017-07-15 01:29:23 +02:00
"ueventd_test.cpp",
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
"util_test.cpp",
],
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
static_libs: ["libinit"],
Add test_suites lines. Bug: N/A Test: builds Change-Id: Ic5e2b9206bcfcb53c774989013b5db6aab462e42
2018-04-28 01:12:06 +02:00
test_suites: ["device-tests"],
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
}
init: run vendor commands in a separate SELinux context One of the major aspects of treble is the compartmentalization of system and vendor components, however init leaves a huge gap here, as vendor init scripts run in the same context as system init scripts and thus can access and modify the same properties, files, etc as the system can. This change is meant to close that gap. It forks a separate 'subcontext' init that runs in a different SELinux context with permissions that match what vendors should have access to. Commands get sent over a socket to this 'subcontext' init that then runs them in this SELinux context and returns the result. Note that not all commands run in the subcontext; some commands such as those dealing with services only make sense in the context of the main init process. Bug: 62875318 Test: init unit tests, boot bullhead, boot sailfish Change-Id: Idf4a4ebf98842d27b8627f901f961ab9eb412aee
2017-09-13 00:58:47 +02:00
cc_benchmark {
name: "init_benchmarks",
defaults: ["init_defaults"],
srcs: [
"subcontext_benchmark.cpp",
],
Move all of init to libinit I'd be not doing this for a while since some of this code doesn't compile on host and libinit previously did. But after realizing the property_service.cpp (libinit) references symbols in init.cpp (init) and seeing a new linker error crop up due to that, it's time to make the fix. My only hold out previously was that libinit compiled on host bionic and some of init (builtins.cpp, etc) do not, however given that we don't actually have host bionic support or host bionic init tests, that isn't a good reason. We can and should mock out the libraries that aren't available with host bionic when ready. Test: build, unit tests, boot Change-Id: Ie49362ddb637924efc272540a4f32b693643fcdc
2018-01-19 23:25:48 +01:00
static_libs: ["libinit"],
init: run vendor commands in a separate SELinux context One of the major aspects of treble is the compartmentalization of system and vendor components, however init leaves a huge gap here, as vendor init scripts run in the same context as system init scripts and thus can access and modify the same properties, files, etc as the system can. This change is meant to close that gap. It forks a separate 'subcontext' init that runs in a different SELinux context with permissions that match what vendors should have access to. Commands get sent over a socket to this 'subcontext' init that then runs them in this SELinux context and returns the result. Note that not all commands run in the subcontext; some commands such as those dealing with services only make sense in the context of the main init process. Bug: 62875318 Test: init unit tests, boot bullhead, boot sailfish Change-Id: Idf4a4ebf98842d27b8627f901f961ab9eb412aee
2017-09-13 00:58:47 +02:00
}
init: add host side parser for init Create a host side parser for init such that init rc files can be verified for syntax correctness before being used on the device. Bug: 36970783 Test: run the parser on init files on host Change-Id: I7e8772e278ebaff727057308596ebacf28b6fdda
2018-02-14 01:50:08 +01:00
// Host Verifier
// ------------------------------------------------------------------------------
genrule {
name: "generated_stub_builtin_function_map",
out: ["generated_stub_builtin_function_map.h"],
srcs: ["builtins.cpp"],
Don't build host_init_verifier on Android either Also fixes another mac build issue... Test: linux builds still work... Change-Id: I549891c7e38729bd5fbe79f79b7345dabd9b4b28
2018-03-01 06:40:46 +01:00
cmd: "sed -n '/Builtin-function-map start/{:a;n;/Builtin-function-map end/q;p;ba}' $(in) | sed -e 's/do_[^}]*/do_stub/g' > $(out)",
init: add host side parser for init Create a host side parser for init such that init rc files can be verified for syntax correctness before being used on the device. Bug: 36970783 Test: run the parser on init files on host Change-Id: I7e8772e278ebaff727057308596ebacf28b6fdda
2018-02-14 01:50:08 +01:00
}
cc_binary {
name: "host_init_verifier",
host_supported: true,
cpp_std: "experimental",
cflags: [
"-Wall",
"-Wextra",
"-Wno-unused-parameter",
"-Werror",
],
static_libs: [
"libbase",
"libselinux",
],
whole_static_libs: ["libcap"],
shared_libs: [
"libprotobuf-cpp-lite",
"libhidl-gen-utils",
"libprocessgroup",
"liblog",
"libcutils",
],
Revert "init: dummy host_init_verifier for mac" This reverts commit f567367584aaa8eb5f3b701e0548876de1cad2d0. Reason for revert: mac build Change-Id: Icd5d08206c50854d6645e07c4fb29705222bd226
2018-06-21 00:49:48 +02:00
srcs: [
"action.cpp",
"action_manager.cpp",
"action_parser.cpp",
"capabilities.cpp",
"descriptors.cpp",
"epoll.cpp",
"keychords.cpp",
"import_parser.cpp",
"host_import_parser.cpp",
"host_init_verifier.cpp",
"host_init_stubs.cpp",
"parser.cpp",
"rlimit_parser.cpp",
"tokenizer.cpp",
"service.cpp",
"subcontext.cpp",
"subcontext.proto",
"util.cpp",
],
init: add host side parser for init Create a host side parser for init such that init rc files can be verified for syntax correctness before being used on the device. Bug: 36970783 Test: run the parser on init files on host Change-Id: I7e8772e278ebaff727057308596ebacf28b6fdda
2018-02-14 01:50:08 +01:00
proto: {
type: "lite",
},
Revert "init: dummy host_init_verifier for mac" This reverts commit f567367584aaa8eb5f3b701e0548876de1cad2d0. Reason for revert: mac build Change-Id: Icd5d08206c50854d6645e07c4fb29705222bd226
2018-06-21 00:49:48 +02:00
generated_headers: [
"generated_stub_builtin_function_map",
"generated_android_ids"
],
Don't build host_init_verifier for darwin And therefore fix the mac build break. Test: none Change-Id: Ice28780abc62fc3e46119497d23bcbc124354159
2018-03-01 02:20:27 +01:00
target: {
Don't build host_init_verifier on Android either Also fixes another mac build issue... Test: linux builds still work... Change-Id: I549891c7e38729bd5fbe79f79b7345dabd9b4b28
2018-03-01 06:40:46 +01:00
android: {
enabled: false,
},
Don't build host_init_verifier for darwin And therefore fix the mac build break. Test: none Change-Id: Ice28780abc62fc3e46119497d23bcbc124354159
2018-03-01 02:20:27 +01:00
darwin: {
Revert "init: dummy host_init_verifier for mac" This reverts commit f567367584aaa8eb5f3b701e0548876de1cad2d0. Reason for revert: mac build Change-Id: Icd5d08206c50854d6645e07c4fb29705222bd226
2018-06-21 00:49:48 +02:00
enabled: false,
Don't build host_init_verifier for darwin And therefore fix the mac build break. Test: none Change-Id: Ice28780abc62fc3e46119497d23bcbc124354159
2018-03-01 02:20:27 +01:00
},
},
init: add host side parser for init Create a host side parser for init such that init rc files can be verified for syntax correctness before being used on the device. Bug: 36970783 Test: run the parser on init files on host Change-Id: I7e8772e278ebaff727057308596ebacf28b6fdda
2018-02-14 01:50:08 +01:00
}
init: start move to Android.bp Move libinit, init_tests, and test_service to Android.bp Leave init in Android.mk as it has unfulfilled dependencies, but create a comment in Android.bp for future use. Remove libinit_parser and init_parser_tests as that code was never used in init. Bug: 36970783 Bug: 37512442 Test: Build, boot bullhead, init unit tests Change-Id: Id81cd10ea09453a5fd762ba9189276aad79d5444
2017-05-10 02:11:57 +02:00
subdirs = ["*"]
Reference in a new issue Copy permalink