1 /*
2 * Copyright (C) 2017 The Android Open Source Project
3 * All rights reserved.
4 *
5 * Redistribution and use in source and binary forms, with or without
6 * modification, are permitted provided that the following conditions
7 * are met:
8 * * Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * * Redistributions in binary form must reproduce the above copyright
11 * notice, this list of conditions and the following disclaimer in
12 * the documentation and/or other materials provided with the
13 * distribution.
14 *
15 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
16 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
17 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS
18 * FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
19 * COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
20 * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING,
21 * BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS
22 * OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED
23 * AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
24 * OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT
25 * OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
26 * SUCH DAMAGE.
27 */
28
29 #include <stdlib.h>
30 #include <string.h>
31 #include <sys/mman.h>
32
33 #include <gtest/gtest.h>
34
35 #include "linker_config.h"
36 #include "linker_utils.h"
37
38 #include <unistd.h>
39
40 #include <android-base/file.h>
41 #include <android-base/scopeguard.h>
42 #include <android-base/stringprintf.h>
43
44 #if defined(__LP64__)
45 #define ARCH_SUFFIX "64"
46 #else
47 #define ARCH_SUFFIX ""
48 #endif
49
50 static const char* config_str =
51 "# comment \n"
52 "dir.test = /data/local/tmp\n"
53 "\n"
54 "[test]\n"
55 "\n"
56 "enable.target.sdk.version = true\n"
57 "additional.namespaces=system\n"
58 "additional.namespaces+=vndk\n"
59 "additional.namespaces+=vndk_in_system\n"
60 "namespace.default.isolated = true\n"
61 "namespace.default.search.paths = /vendor/${LIB}\n"
62 "namespace.default.permitted.paths = /vendor/${LIB}\n"
63 "namespace.default.asan.search.paths = /data\n"
64 "namespace.default.asan.search.paths += /vendor/${LIB}\n"
65 "namespace.default.asan.permitted.paths = /data:/vendor\n"
66 "namespace.default.links = system\n"
67 "namespace.default.links += vndk\n"
68 // irregular whitespaces are added intentionally for testing purpose
69 "namespace.default.link.system.shared_libs= libc.so\n"
70 "namespace.default.link.system.shared_libs += libm.so:libdl.so\n"
71 "namespace.default.link.system.shared_libs +=libstdc++.so\n"
72 "namespace.default.link.vndk.shared_libs = libcutils.so:libbase.so\n"
73 "namespace.system.isolated = true\n"
74 "namespace.system.visible = true\n"
75 "namespace.system.search.paths = /system/${LIB}\n"
76 "namespace.system.permitted.paths = /system/${LIB}\n"
77 "namespace.system.asan.search.paths = /data:/system/${LIB}\n"
78 "namespace.system.asan.permitted.paths = /data:/system\n"
79 "namespace.vndk.isolated = tr\n"
80 "namespace.vndk.isolated += ue\n" // should be ignored and return as 'false'.
81 "namespace.vndk.search.paths = /system/${LIB}/vndk\n"
82 "namespace.vndk.asan.search.paths = /data\n"
83 "namespace.vndk.asan.search.paths += /system/${LIB}/vndk\n"
84 "namespace.vndk.links = default\n"
85 "namespace.vndk.link.default.allow_all_shared_libs = true\n"
86 "namespace.vndk.link.vndk_in_system.allow_all_shared_libs = true\n"
87 "namespace.vndk_in_system.isolated = true\n"
88 "namespace.vndk_in_system.visible = true\n"
89 "namespace.vndk_in_system.search.paths = /system/${LIB}\n"
90 "namespace.vndk_in_system.permitted.paths = /system/${LIB}\n"
91 "namespace.vndk_in_system.whitelisted = libz.so:libyuv.so:libtinyxml2.so\n"
92 "\n";
93
write_version(const std::string & path,uint32_t version)94 static bool write_version(const std::string& path, uint32_t version) {
95 std::string content = android::base::StringPrintf("%d", version);
96 return android::base::WriteStringToFile(content, path);
97 }
98
resolve_paths(std::vector<std::string> paths)99 static std::vector<std::string> resolve_paths(std::vector<std::string> paths) {
100 std::vector<std::string> resolved_paths;
101 resolve_paths(paths, &resolved_paths);
102 return resolved_paths;
103 }
104
run_linker_config_smoke_test(bool is_asan)105 static void run_linker_config_smoke_test(bool is_asan) {
106 const std::vector<std::string> kExpectedDefaultSearchPath =
107 resolve_paths(is_asan ? std::vector<std::string>({ "/data", "/vendor/lib" ARCH_SUFFIX }) :
108 std::vector<std::string>({ "/vendor/lib" ARCH_SUFFIX }));
109
110 const std::vector<std::string> kExpectedDefaultPermittedPath =
111 resolve_paths(is_asan ? std::vector<std::string>({ "/data", "/vendor" }) :
112 std::vector<std::string>({ "/vendor/lib" ARCH_SUFFIX }));
113
114 const std::vector<std::string> kExpectedSystemSearchPath =
115 resolve_paths(is_asan ? std::vector<std::string>({ "/data", "/system/lib" ARCH_SUFFIX }) :
116 std::vector<std::string>({ "/system/lib" ARCH_SUFFIX }));
117
118 const std::vector<std::string> kExpectedSystemPermittedPath =
119 resolve_paths(is_asan ? std::vector<std::string>({ "/data", "/system" }) :
120 std::vector<std::string>({ "/system/lib" ARCH_SUFFIX }));
121
122 const std::vector<std::string> kExpectedVndkSearchPath =
123 resolve_paths(is_asan ? std::vector<std::string>({ "/data", "/system/lib" ARCH_SUFFIX "/vndk"}) :
124 std::vector<std::string>({ "/system/lib" ARCH_SUFFIX "/vndk"}));
125
126 TemporaryFile tmp_file;
127 close(tmp_file.fd);
128 tmp_file.fd = -1;
129
130 android::base::WriteStringToFile(config_str, tmp_file.path);
131
132 TemporaryDir tmp_dir;
133
134 std::string executable_path = std::string(tmp_dir.path) + "/some-binary";
135 std::string version_file = std::string(tmp_dir.path) + "/.version";
136
137 auto file_guard =
138 android::base::make_scope_guard([&version_file] { unlink(version_file.c_str()); });
139
140 ASSERT_TRUE(write_version(version_file, 113U)) << strerror(errno);
141
142 // read config
143 const Config* config = nullptr;
144 std::string error_msg;
145 ASSERT_TRUE(Config::read_binary_config(tmp_file.path,
146 executable_path.c_str(),
147 is_asan,
148 &config,
149 &error_msg)) << error_msg;
150 ASSERT_TRUE(config != nullptr);
151 ASSERT_TRUE(error_msg.empty());
152
153 ASSERT_EQ(113, config->target_sdk_version());
154
155 const NamespaceConfig* default_ns_config = config->default_namespace_config();
156 ASSERT_TRUE(default_ns_config != nullptr);
157
158 ASSERT_TRUE(default_ns_config->isolated());
159 ASSERT_FALSE(default_ns_config->visible());
160 ASSERT_EQ(kExpectedDefaultSearchPath, default_ns_config->search_paths());
161 ASSERT_EQ(kExpectedDefaultPermittedPath, default_ns_config->permitted_paths());
162
163 const auto& default_ns_links = default_ns_config->links();
164 ASSERT_EQ(2U, default_ns_links.size());
165
166 ASSERT_EQ("system", default_ns_links[0].ns_name());
167 ASSERT_EQ("libc.so:libm.so:libdl.so:libstdc++.so", default_ns_links[0].shared_libs());
168 ASSERT_FALSE(default_ns_links[0].allow_all_shared_libs());
169
170 ASSERT_EQ("vndk", default_ns_links[1].ns_name());
171 ASSERT_EQ("libcutils.so:libbase.so", default_ns_links[1].shared_libs());
172 ASSERT_FALSE(default_ns_links[1].allow_all_shared_libs());
173
174 auto& ns_configs = config->namespace_configs();
175 ASSERT_EQ(4U, ns_configs.size());
176
177 // find second namespace
178 const NamespaceConfig* ns_system = nullptr;
179 const NamespaceConfig* ns_vndk = nullptr;
180 const NamespaceConfig* ns_vndk_in_system = nullptr;
181 for (auto& ns : ns_configs) {
182 std::string ns_name = ns->name();
183 ASSERT_TRUE(ns_name == "system" || ns_name == "default" ||
184 ns_name == "vndk" || ns_name == "vndk_in_system")
185 << "unexpected ns name: " << ns->name();
186
187 if (ns_name == "system") {
188 ns_system = ns.get();
189 } else if (ns_name == "vndk") {
190 ns_vndk = ns.get();
191 } else if (ns_name == "vndk_in_system") {
192 ns_vndk_in_system = ns.get();
193 }
194 }
195
196 ASSERT_TRUE(ns_system != nullptr) << "system namespace was not found";
197
198 ASSERT_TRUE(ns_system->isolated());
199 ASSERT_TRUE(ns_system->visible());
200 ASSERT_EQ(kExpectedSystemSearchPath, ns_system->search_paths());
201 ASSERT_EQ(kExpectedSystemPermittedPath, ns_system->permitted_paths());
202
203 ASSERT_TRUE(ns_vndk != nullptr) << "vndk namespace was not found";
204
205 ASSERT_FALSE(ns_vndk->isolated()); // malformed bool property
206 ASSERT_FALSE(ns_vndk->visible()); // undefined bool property
207 ASSERT_EQ(kExpectedVndkSearchPath, ns_vndk->search_paths());
208
209 const auto& ns_vndk_links = ns_vndk->links();
210 ASSERT_EQ(1U, ns_vndk_links.size());
211 ASSERT_EQ("default", ns_vndk_links[0].ns_name());
212 ASSERT_TRUE(ns_vndk_links[0].allow_all_shared_libs());
213
214 ASSERT_TRUE(ns_vndk_in_system != nullptr) << "vndk_in_system namespace was not found";
215 ASSERT_EQ(
216 std::vector<std::string>({"libz.so", "libyuv.so", "libtinyxml2.so"}),
217 ns_vndk_in_system->whitelisted_libs());
218 }
219
TEST(linker_config,smoke)220 TEST(linker_config, smoke) {
221 run_linker_config_smoke_test(false);
222 }
223
TEST(linker_config,asan_smoke)224 TEST(linker_config, asan_smoke) {
225 run_linker_config_smoke_test(true);
226 }
227
TEST(linker_config,ns_link_shared_libs_invalid_settings)228 TEST(linker_config, ns_link_shared_libs_invalid_settings) {
229 // This unit test ensures an error is emitted when a namespace link in ld.config.txt specifies
230 // both shared_libs and allow_all_shared_libs.
231
232 static const char config_str[] =
233 "dir.test = /data/local/tmp\n"
234 "\n"
235 "[test]\n"
236 "additional.namespaces = system\n"
237 "namespace.default.links = system\n"
238 "namespace.default.link.system.shared_libs = libc.so:libm.so\n"
239 "namespace.default.link.system.allow_all_shared_libs = true\n"
240 "\n";
241
242 TemporaryFile tmp_file;
243 close(tmp_file.fd);
244 tmp_file.fd = -1;
245
246 android::base::WriteStringToFile(config_str, tmp_file.path);
247
248 TemporaryDir tmp_dir;
249
250 std::string executable_path = std::string(tmp_dir.path) + "/some-binary";
251
252 const Config* config = nullptr;
253 std::string error_msg;
254 ASSERT_FALSE(Config::read_binary_config(tmp_file.path,
255 executable_path.c_str(),
256 false,
257 &config,
258 &error_msg));
259 ASSERT_TRUE(config == nullptr);
260 ASSERT_EQ(std::string(tmp_file.path) + ":6: "
261 "error: both shared_libs and allow_all_shared_libs are set for default->system link.",
262 error_msg);
263 }
264
TEST(linker_config,dir_path_resolve)265 TEST(linker_config, dir_path_resolve) {
266 // This unit test ensures the linker resolves paths of dir.${section}
267 // properties to real path.
268
269 TemporaryDir tmp_dir;
270
271 std::string sub_dir = std::string(tmp_dir.path) + "/subdir";
272 mkdir(sub_dir.c_str(), 0755);
273
274 auto subdir_guard =
275 android::base::make_scope_guard([&sub_dir] { rmdir(sub_dir.c_str()); });
276
277 std::string symlink_path = std::string(tmp_dir.path) + "/symlink";
278 symlink(sub_dir.c_str(), symlink_path.c_str());
279
280 auto symlink_guard =
281 android::base::make_scope_guard([&symlink_path] { unlink(symlink_path.c_str()); });
282
283 std::string config_str =
284 "dir.test = " + symlink_path + "\n"
285 "\n"
286 "[test]\n";
287
288 TemporaryFile tmp_file;
289 close(tmp_file.fd);
290 tmp_file.fd = -1;
291
292 android::base::WriteStringToFile(config_str, tmp_file.path);
293
294 std::string executable_path = sub_dir + "/some-binary";
295
296 const Config* config = nullptr;
297 std::string error_msg;
298
299 ASSERT_TRUE(Config::read_binary_config(tmp_file.path,
300 executable_path.c_str(),
301 false,
302 &config,
303 &error_msg)) << error_msg;
304
305 ASSERT_TRUE(config != nullptr) << error_msg;
306 ASSERT_TRUE(error_msg.empty()) << error_msg;
307 }
308