1 /*
2 * Copyright (C) 2019 The Android Open Source Project
3 *
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
7 *
8 * http://www.apache.org/licenses/LICENSE-2.0
9 *
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
15 */
16
17 #define LOG_TAG "nativeloader"
18
19 #include "public_libraries.h"
20
21 #include <dirent.h>
22
23 #include <algorithm>
24 #include <map>
25 #include <memory>
26 #include <regex>
27 #include <string>
28
29 #include <android-base/file.h>
30 #include <android-base/logging.h>
31 #include <android-base/properties.h>
32 #include <android-base/result.h>
33 #include <android-base/strings.h>
34 #include <log/log.h>
35
36 #if defined(ART_TARGET_ANDROID)
37 #include <android/sysprop/VndkProperties.sysprop.h>
38 #endif
39
40 #include "utils.h"
41
42 namespace android::nativeloader {
43
44 using android::base::ErrnoError;
45 using android::base::Result;
46 using internal::ConfigEntry;
47 using internal::ParseConfig;
48 using internal::ParseApexLibrariesConfig;
49
50 namespace {
51
52 constexpr const char* kDefaultPublicLibrariesFile = "/etc/public.libraries.txt";
53 constexpr const char* kExtendedPublicLibrariesFilePrefix = "public.libraries-";
54 constexpr const char* kExtendedPublicLibrariesFileSuffix = ".txt";
55 constexpr const char* kApexLibrariesConfigFile = "/linkerconfig/apex.libraries.config.txt";
56 constexpr const char* kVendorPublicLibrariesFile = "/vendor/etc/public.libraries.txt";
57 constexpr const char* kLlndkLibrariesFile = "/apex/com.android.vndk.v{}/etc/llndk.libraries.{}.txt";
58 constexpr const char* kVndkLibrariesFile = "/apex/com.android.vndk.v{}/etc/vndksp.libraries.{}.txt";
59
60
61 // TODO(b/130388701): do we need this?
root_dir()62 std::string root_dir() {
63 static const char* android_root_env = getenv("ANDROID_ROOT");
64 return android_root_env != nullptr ? android_root_env : "/system";
65 }
66
vndk_version_str(bool use_product_vndk)67 std::string vndk_version_str(bool use_product_vndk) {
68 if (use_product_vndk) {
69 static std::string product_vndk_version = get_vndk_version(true);
70 return product_vndk_version;
71 } else {
72 static std::string vendor_vndk_version = get_vndk_version(false);
73 return vendor_vndk_version;
74 }
75 }
76
77 // insert vndk version in every {} placeholder
InsertVndkVersionStr(std::string * file_name,bool use_product_vndk)78 void InsertVndkVersionStr(std::string* file_name, bool use_product_vndk) {
79 CHECK(file_name != nullptr);
80 auto version = vndk_version_str(use_product_vndk);
81 size_t pos = file_name->find("{}");
82 while (pos != std::string::npos) {
83 file_name->replace(pos, 2, version);
84 pos = file_name->find("{}", pos + version.size());
85 }
86 }
87
88 const std::function<Result<bool>(const struct ConfigEntry&)> always_true =
__anon17bad18a0202(const struct ConfigEntry&) 89 [](const struct ConfigEntry&) -> Result<bool> { return true; };
90
ReadConfig(const std::string & configFile,const std::function<Result<bool> (const ConfigEntry &)> & filter_fn)91 Result<std::vector<std::string>> ReadConfig(
92 const std::string& configFile,
93 const std::function<Result<bool>(const ConfigEntry& /* entry */)>& filter_fn) {
94 std::string file_content;
95 if (!base::ReadFileToString(configFile, &file_content)) {
96 return ErrnoError();
97 }
98 Result<std::vector<std::string>> result = ParseConfig(file_content, filter_fn);
99 if (!result.ok()) {
100 return Errorf("Cannot parse {}: {}", configFile, result.error().message());
101 }
102 return result;
103 }
104
ReadExtensionLibraries(const char * dirname,std::vector<std::string> * sonames)105 void ReadExtensionLibraries(const char* dirname, std::vector<std::string>* sonames) {
106 std::unique_ptr<DIR, decltype(&closedir)> dir(opendir(dirname), closedir);
107 if (dir != nullptr) {
108 // Failing to opening the dir is not an error, which can happen in
109 // webview_zygote.
110 while (struct dirent* ent = readdir(dir.get())) {
111 if (ent->d_type != DT_REG && ent->d_type != DT_LNK) {
112 continue;
113 }
114 const std::string filename(ent->d_name);
115 std::string_view fn = filename;
116 if (android::base::ConsumePrefix(&fn, kExtendedPublicLibrariesFilePrefix) &&
117 android::base::ConsumeSuffix(&fn, kExtendedPublicLibrariesFileSuffix)) {
118 const std::string company_name(fn);
119 const std::string config_file_path = std::string(dirname) + std::string("/") + filename;
120 LOG_ALWAYS_FATAL_IF(
121 company_name.empty(),
122 "Error extracting company name from public native library list file path \"%s\"",
123 config_file_path.c_str());
124
125 auto ret = ReadConfig(
126 config_file_path, [&company_name](const struct ConfigEntry& entry) -> Result<bool> {
127 if (android::base::StartsWith(entry.soname, "lib") &&
128 android::base::EndsWith(entry.soname, "." + company_name + ".so")) {
129 return true;
130 } else {
131 return Errorf(
132 "Library name \"{}\" does not start with \"lib\" and/or "
133 "does not end with the company name \"{}\".",
134 entry.soname,
135 company_name);
136 }
137 });
138 if (ret.ok()) {
139 sonames->insert(sonames->end(), ret->begin(), ret->end());
140 } else {
141 LOG_ALWAYS_FATAL("Error reading public native library list from \"%s\": %s",
142 config_file_path.c_str(), ret.error().message().c_str());
143 }
144 }
145 }
146 }
147 }
148
InitDefaultPublicLibraries(bool for_preload)149 static std::string InitDefaultPublicLibraries(bool for_preload) {
150 std::string config_file = root_dir() + kDefaultPublicLibrariesFile;
151 auto sonames =
152 ReadConfig(config_file, [&for_preload](const struct ConfigEntry& entry) -> Result<bool> {
153 if (for_preload) {
154 return !entry.nopreload;
155 } else {
156 return true;
157 }
158 });
159 if (!sonames.ok()) {
160 LOG_ALWAYS_FATAL("Error reading public native library list from \"%s\": %s",
161 config_file.c_str(), sonames.error().message().c_str());
162 return "";
163 }
164
165 // If this is for preloading libs, don't remove the libs from APEXes.
166 if (!for_preload) {
167 // Remove the public libs provided by apexes because these libs are available
168 // from apex namespaces.
169 for (const auto& p : apex_public_libraries()) {
170 auto public_libs = base::Split(p.second, ":");
171 sonames->erase(std::remove_if(sonames->begin(),
172 sonames->end(),
173 [&public_libs](const std::string& v) {
174 return std::find(public_libs.begin(), public_libs.end(), v) !=
175 public_libs.end();
176 }),
177 sonames->end());
178 }
179 }
180
181 std::string libs = android::base::Join(*sonames, ':');
182 ALOGD("InitDefaultPublicLibraries for_preload=%d: %s", for_preload, libs.c_str());
183 return libs;
184 }
185
InitVendorPublicLibraries()186 static std::string InitVendorPublicLibraries() {
187 // This file is optional, quietly ignore if the file does not exist.
188 auto sonames = ReadConfig(kVendorPublicLibrariesFile, always_true);
189 if (!sonames.ok()) {
190 ALOGI("InitVendorPublicLibraries skipped: %s", sonames.error().message().c_str());
191 return "";
192 }
193 std::string libs = android::base::Join(*sonames, ':');
194 ALOGD("InitVendorPublicLibraries: %s", libs.c_str());
195 return libs;
196 }
197
198 // If ro.product.vndk.version is defined, /product/etc/public.libraries-<companyname>.txt contains
199 // the product public libraries that are loaded from the product namespace. Otherwise, the file
200 // contains the extended public libraries that are loaded from the system namespace.
InitProductPublicLibraries()201 static std::string InitProductPublicLibraries() {
202 std::vector<std::string> sonames;
203 if (is_product_vndk_version_defined()) {
204 ReadExtensionLibraries("/product/etc", &sonames);
205 }
206 std::string libs = android::base::Join(sonames, ':');
207 ALOGD("InitProductPublicLibraries: %s", libs.c_str());
208 return libs;
209 }
210
211 // read /system/etc/public.libraries-<companyname>.txt,
212 // /system_ext/etc/public.libraries-<companyname>.txt and
213 // /product/etc/public.libraries-<companyname>.txt which contain partner defined
214 // system libs that are exposed to apps. The libs in the txt files must be
215 // named as lib<name>.<companyname>.so.
InitExtendedPublicLibraries()216 static std::string InitExtendedPublicLibraries() {
217 std::vector<std::string> sonames;
218 ReadExtensionLibraries("/system/etc", &sonames);
219 ReadExtensionLibraries("/system_ext/etc", &sonames);
220 if (!is_product_vndk_version_defined()) {
221 ReadExtensionLibraries("/product/etc", &sonames);
222 }
223 std::string libs = android::base::Join(sonames, ':');
224 ALOGD("InitExtendedPublicLibraries: %s", libs.c_str());
225 return libs;
226 }
227
InitLlndkLibrariesVendor()228 static std::string InitLlndkLibrariesVendor() {
229 std::string config_file = kLlndkLibrariesFile;
230 InsertVndkVersionStr(&config_file, false);
231 auto sonames = ReadConfig(config_file, always_true);
232 if (!sonames.ok()) {
233 LOG_ALWAYS_FATAL("%s: %s", config_file.c_str(), sonames.error().message().c_str());
234 return "";
235 }
236 std::string libs = android::base::Join(*sonames, ':');
237 ALOGD("InitLlndkLibrariesVendor: %s", libs.c_str());
238 return libs;
239 }
240
InitLlndkLibrariesProduct()241 static std::string InitLlndkLibrariesProduct() {
242 if (!is_product_vndk_version_defined()) {
243 ALOGD("InitLlndkLibrariesProduct: No product VNDK version defined");
244 return "";
245 }
246 std::string config_file = kLlndkLibrariesFile;
247 InsertVndkVersionStr(&config_file, true);
248 auto sonames = ReadConfig(config_file, always_true);
249 if (!sonames.ok()) {
250 LOG_ALWAYS_FATAL("%s: %s", config_file.c_str(), sonames.error().message().c_str());
251 return "";
252 }
253 std::string libs = android::base::Join(*sonames, ':');
254 ALOGD("InitLlndkLibrariesProduct: %s", libs.c_str());
255 return libs;
256 }
257
InitVndkspLibrariesVendor()258 static std::string InitVndkspLibrariesVendor() {
259 std::string config_file = kVndkLibrariesFile;
260 InsertVndkVersionStr(&config_file, false);
261 auto sonames = ReadConfig(config_file, always_true);
262 if (!sonames.ok()) {
263 LOG_ALWAYS_FATAL("%s", sonames.error().message().c_str());
264 return "";
265 }
266 std::string libs = android::base::Join(*sonames, ':');
267 ALOGD("InitVndkspLibrariesVendor: %s", libs.c_str());
268 return libs;
269 }
270
InitVndkspLibrariesProduct()271 static std::string InitVndkspLibrariesProduct() {
272 if (!is_product_vndk_version_defined()) {
273 ALOGD("InitVndkspLibrariesProduct: No product VNDK version defined");
274 return "";
275 }
276 std::string config_file = kVndkLibrariesFile;
277 InsertVndkVersionStr(&config_file, true);
278 auto sonames = ReadConfig(config_file, always_true);
279 if (!sonames.ok()) {
280 LOG_ALWAYS_FATAL("%s", sonames.error().message().c_str());
281 return "";
282 }
283 std::string libs = android::base::Join(*sonames, ':');
284 ALOGD("InitVndkspLibrariesProduct: %s", libs.c_str());
285 return libs;
286 }
287
InitApexLibraries(const std::string & tag)288 static std::map<std::string, std::string> InitApexLibraries(const std::string& tag) {
289 std::string file_content;
290 if (!base::ReadFileToString(kApexLibrariesConfigFile, &file_content)) {
291 // config is optional
292 ALOGI("InitApexLibraries skipped: %s", strerror(errno));
293 return {};
294 }
295 Result<std::map<std::string, std::string>> config = ParseApexLibrariesConfig(file_content, tag);
296 if (!config.ok()) {
297 LOG_ALWAYS_FATAL("%s: %s", kApexLibrariesConfigFile, config.error().message().c_str());
298 return {};
299 }
300 ALOGD("InitApexLibraries:\n %s",
301 [&config]() {
302 std::vector<std::string> lib_list;
303 lib_list.reserve(config->size());
304 for (std::pair<std::string, std::string> elem : *config) {
305 lib_list.emplace_back(elem.first + ": " + elem.second);
306 }
307 return android::base::Join(lib_list, "\n ");
308 }()
309 .c_str());
310 return *config;
311 }
312
313 struct ApexLibrariesConfigLine {
314 std::string tag;
315 std::string apex_namespace;
316 std::string library_list;
317 };
318
319 const std::regex kApexNamespaceRegex("[0-9a-zA-Z_]+");
320 const std::regex kLibraryListRegex("[0-9a-zA-Z.:@+_-]+");
321
ParseApexLibrariesConfigLine(const std::string & line)322 Result<ApexLibrariesConfigLine> ParseApexLibrariesConfigLine(const std::string& line) {
323 std::vector<std::string> tokens = base::Split(line, " ");
324 if (tokens.size() != 3) {
325 return Errorf("Malformed line \"{}\"", line);
326 }
327 if (tokens[0] != "jni" && tokens[0] != "public") {
328 return Errorf("Invalid tag \"{}\"", line);
329 }
330 if (!std::regex_match(tokens[1], kApexNamespaceRegex)) {
331 return Errorf("Invalid apex_namespace \"{}\"", line);
332 }
333 if (!std::regex_match(tokens[2], kLibraryListRegex)) {
334 return Errorf("Invalid library_list \"{}\"", line);
335 }
336 return ApexLibrariesConfigLine{std::move(tokens[0]), std::move(tokens[1]), std::move(tokens[2])};
337 }
338
339 } // namespace
340
preloadable_public_libraries()341 const std::string& preloadable_public_libraries() {
342 static std::string list = InitDefaultPublicLibraries(/*for_preload*/ true);
343 return list;
344 }
345
default_public_libraries()346 const std::string& default_public_libraries() {
347 static std::string list = InitDefaultPublicLibraries(/*for_preload*/ false);
348 return list;
349 }
350
vendor_public_libraries()351 const std::string& vendor_public_libraries() {
352 static std::string list = InitVendorPublicLibraries();
353 return list;
354 }
355
product_public_libraries()356 const std::string& product_public_libraries() {
357 static std::string list = InitProductPublicLibraries();
358 return list;
359 }
360
extended_public_libraries()361 const std::string& extended_public_libraries() {
362 static std::string list = InitExtendedPublicLibraries();
363 return list;
364 }
365
llndk_libraries_product()366 const std::string& llndk_libraries_product() {
367 static std::string list = InitLlndkLibrariesProduct();
368 return list;
369 }
370
llndk_libraries_vendor()371 const std::string& llndk_libraries_vendor() {
372 static std::string list = InitLlndkLibrariesVendor();
373 return list;
374 }
375
vndksp_libraries_product()376 const std::string& vndksp_libraries_product() {
377 static std::string list = InitVndkspLibrariesProduct();
378 return list;
379 }
380
vndksp_libraries_vendor()381 const std::string& vndksp_libraries_vendor() {
382 static std::string list = InitVndkspLibrariesVendor();
383 return list;
384 }
385
apex_jni_libraries(const std::string & apex_ns_name)386 const std::string& apex_jni_libraries(const std::string& apex_ns_name) {
387 static std::map<std::string, std::string> jni_libraries = InitApexLibraries("jni");
388 return jni_libraries[apex_ns_name];
389 }
390
apex_public_libraries()391 const std::map<std::string, std::string>& apex_public_libraries() {
392 static std::map<std::string, std::string> public_libraries = InitApexLibraries("public");
393 return public_libraries;
394 }
395
is_product_vndk_version_defined()396 bool is_product_vndk_version_defined() {
397 #if defined(ART_TARGET_ANDROID)
398 return android::sysprop::VndkProperties::product_vndk_version().has_value();
399 #else
400 return false;
401 #endif
402 }
403
get_vndk_version(bool is_product_vndk)404 std::string get_vndk_version(bool is_product_vndk) {
405 #if defined(ART_TARGET_ANDROID)
406 if (is_product_vndk) {
407 return android::sysprop::VndkProperties::product_vndk_version().value_or("");
408 }
409 return android::sysprop::VndkProperties::vendor_vndk_version().value_or("");
410 #else
411 if (is_product_vndk) {
412 return android::base::GetProperty("ro.product.vndk.version", "");
413 }
414 return android::base::GetProperty("ro.vndk.version", "");
415 #endif
416 }
417
418 namespace internal {
419 // Exported for testing
ParseConfig(const std::string & file_content,const std::function<Result<bool> (const ConfigEntry &)> & filter_fn)420 Result<std::vector<std::string>> ParseConfig(
421 const std::string& file_content,
422 const std::function<Result<bool>(const ConfigEntry& /* entry */)>& filter_fn) {
423 std::vector<std::string> lines = base::Split(file_content, "\n");
424
425 std::vector<std::string> sonames;
426 for (auto& line : lines) {
427 auto trimmed_line = base::Trim(line);
428 if (trimmed_line[0] == '#' || trimmed_line.empty()) {
429 continue;
430 }
431
432 std::vector<std::string> tokens = android::base::Split(trimmed_line, " ");
433 if (tokens.size() < 1 || tokens.size() > 3) {
434 return Errorf("Malformed line \"{}\"", line);
435 }
436 struct ConfigEntry entry = {.soname = "", .nopreload = false, .bitness = ALL};
437 size_t i = tokens.size();
438 while (i-- > 0) {
439 if (tokens[i] == "nopreload") {
440 entry.nopreload = true;
441 } else if (tokens[i] == "32" || tokens[i] == "64") {
442 if (entry.bitness != ALL) {
443 return Errorf("Malformed line \"{}\": bitness can be specified only once", line);
444 }
445 entry.bitness = tokens[i] == "32" ? ONLY_32 : ONLY_64;
446 } else {
447 if (i != 0) {
448 return Errorf("Malformed line \"{}\"", line);
449 }
450 entry.soname = tokens[i];
451 }
452 }
453
454 // skip 32-bit lib on 64-bit process and vice versa
455 #if defined(__LP64__)
456 if (entry.bitness == ONLY_32) continue;
457 #else
458 if (entry.bitness == ONLY_64) continue;
459 #endif
460
461 // TODO(b/206676167): Remove this check when renderscript is officially removed.
462 #if defined(__riscv)
463 // skip renderscript lib on riscv target
464 if (entry.soname == "libRS.so") continue;
465 #endif
466
467 Result<bool> ret = filter_fn(entry);
468 if (!ret.ok()) {
469 return ret.error();
470 }
471 if (*ret) {
472 // filter_fn has returned true.
473 sonames.push_back(entry.soname);
474 }
475 }
476 return sonames;
477 }
478
479 // Parses apex.libraries.config.txt file generated by linkerconfig which looks like
480 // system/linkerconfig/testdata/golden_output/stages/apex.libraries.config.txt
481 // and returns mapping of <apex namespace> to <library list> which matches <tag>.
482 //
483 // The file is line-based and each line consists of "<tag> <apex namespace> <library list>".
484 //
485 // <tag> explains what <library list> is. (e.g "jni", "public")
486 // <library list> is colon-separated list of library names. (e.g "libfoo.so:libbar.so")
487 //
488 // If <tag> is "jni", <library list> is the list of JNI libraries exposed by <apex namespace>.
489 // If <tag> is "public", <library list> is the list of public libraries exposed by <apex namespace>.
490 // Public libraries are the libs listed in /system/etc/public.libraries.txt.
ParseApexLibrariesConfig(const std::string & file_content,const std::string & tag)491 Result<std::map<std::string, std::string>> ParseApexLibrariesConfig(const std::string& file_content, const std::string& tag) {
492 std::map<std::string, std::string> entries;
493 std::vector<std::string> lines = base::Split(file_content, "\n");
494 for (auto& line : lines) {
495 auto trimmed_line = base::Trim(line);
496 if (trimmed_line[0] == '#' || trimmed_line.empty()) {
497 continue;
498 }
499 auto config_line = ParseApexLibrariesConfigLine(trimmed_line);
500 if (!config_line.ok()) {
501 return config_line.error();
502 }
503 if (config_line->tag != tag) {
504 continue;
505 }
506 entries[config_line->apex_namespace] = config_line->library_list;
507 }
508 return entries;
509 }
510
511 } // namespace internal
512
513 } // namespace android::nativeloader
514