OSDN Git Service
Ying Wang [Tue, 23 Jun 2015 19:59:56 +0000 (19:59 +0000)]
Merge "Don't include static executables when SANITIZE_TARGET=address"
Elliott Hughes [Tue, 23 Jun 2015 19:29:26 +0000 (19:29 +0000)]
Merge "Revert "Hide unwinder symbols in each binary.""
Bart Sears [Tue, 23 Jun 2015 19:23:13 +0000 (19:23 +0000)]
Revert "Hide unwinder symbols in each binary."
This reverts commit
dc30a16ba27c4a0de388696869cd1c518ecb3f3a.
Change-Id: Ib6af148bcaa3041b3040e525442a39b493852794
Dan Albert [Tue, 23 Jun 2015 18:00:36 +0000 (18:00 +0000)]
Merge "Hide unwinder symbols in each binary."
Ying Wang [Tue, 23 Jun 2015 01:35:35 +0000 (18:35 -0700)]
Don't include static executables when SANITIZE_TARGET=address
Also we can't build the ota package without these static executables.
Bug:
21785137
Change-Id: I11b35abebced4b0608378a072ece2ab2dbadeffb
Ying Wang [Tue, 23 Jun 2015 16:57:30 +0000 (16:57 +0000)]
Merge "Add variable ANDROID_NO_TEST_CHECK to not build all test modules"
Claes Elgemark [Thu, 11 Jun 2015 06:22:38 +0000 (08:22 +0200)]
Add variable ANDROID_NO_TEST_CHECK to not build all test modules
Introduce a way to speed up local builds. Don't build all test
modules if ANDROID_NO_TEST_CHECK is set to true.
On master branch this reduces what is built by more than
300 apps and 50 java libraries. Time for doing this on a
12 core machine running with -j13 is about 10 minutes.
Change-Id: I90feb108695ee60d0dbbf497644f767cc3748215
Bo Hu [Tue, 23 Jun 2015 06:37:53 +0000 (06:37 +0000)]
Merge "Add android.hardware.ethernet.xml for ranchu targets"
Dan Albert [Tue, 31 Mar 2015 23:47:09 +0000 (16:47 -0700)]
Hide unwinder symbols in each binary.
These symbols need to always be resolved for each binary. Making these
symbols hidden means that we will get a build breakage if this doesn't
happen, and should also prevent the situation where one unwinder's
symbols are visible to the other.
Bug:
18471342
Bug:
19958712
Change-Id: Ieff1f10dab254b60ed120410f45998cf75bb5b9b
Evgenii Stepanov [Fri, 19 Jun 2015 21:05:40 +0000 (21:05 +0000)]
Merge "Clean intermediate files if SANITIZE_TARGET has changed."
Evgenii Stepanov [Fri, 19 Jun 2015 21:05:31 +0000 (21:05 +0000)]
Merge "With SANITIZE_TARGET, move shared libraries to /data."
Evgenii Stepanov [Fri, 12 Jun 2015 00:36:06 +0000 (17:36 -0700)]
Clean intermediate files if SANITIZE_TARGET has changed.
Do not clean installed files, only intermediate files. This way, two
consequitive builds first without, then with SANITIZE_TARGET will
produce a frankenbuild with both sets of shared libraries.
Bug:
21785137
Change-Id: I231868b15331be942c783458cf36233c2e7740d3
Evgenii Stepanov [Fri, 12 Jun 2015 00:32:31 +0000 (17:32 -0700)]
With SANITIZE_TARGET, move shared libraries to /data.
A fully (or even mostly) asan-instrumented device will have 2 copies of each
shared library, which might not fit on system partition. Moving instrumented
libraries to /data.
Bug:
21785137
Change-Id: I64184261da2eb24a1382c67e4931c34a5a38b3c0
Evgenii Stepanov [Fri, 19 Jun 2015 18:15:07 +0000 (18:15 +0000)]
Merge "Enable SANITIZE_TARGET."
Dan Albert [Fri, 19 Jun 2015 17:51:10 +0000 (17:51 +0000)]
Merge "Add support for `LOCAL_SANITIZE := integer`."
Dan Albert [Wed, 17 Jun 2015 06:27:34 +0000 (23:27 -0700)]
Add support for `LOCAL_SANITIZE := integer`.
This also does a bit of cleanup in config_sanitizers.mk. The result is
that `LOCAL_SANITIZE := <any arbitrary ubsan group>` should function
fine for both host and target.
This is a superset of LOCAL_DETECT_INTEGER_OVERFLOWS, so remove that.
This also checks integer division by zero. It's supposed to cover
shifting undefined behaviors as well, but apparently it does not
(though `LOCAL_SANITIZE := shift` works fine).
Change-Id: I4ac99eafa6920a3f8cb82af37ce56ff0fdb95223
Dan Albert [Fri, 19 Jun 2015 17:27:41 +0000 (17:27 +0000)]
Merge "Cleanup unused clear_vars.mk entry."
Dan Albert [Fri, 19 Jun 2015 17:24:07 +0000 (10:24 -0700)]
Cleanup unused clear_vars.mk entry.
Change-Id: Ibd7b87d1364a60289609a267a287c4afa1d5e5cb
Miroslav Tisma [Mon, 15 Jun 2015 13:53:39 +0000 (15:53 +0200)]
Add android.hardware.ethernet.xml for ranchu targets
This commit adds android.hardware.ethernet.xml file for ethernet
permission to PRODUCT_COPY_FILES which will be copied to
/system/etc/permission folder on the target. Reason for adding
this permission file is for enabling the ethernet and having
functional networking until RIL backend support in ranchu is
implemented.
This requires dhcpcd_eth0 service definition in init.ranchu.rc.
Architectures that use goldfish emulator do not need ethernet
support, because networking is provided by RIL.
Change-Id: I7972f80cf78c0fdecf3fde45bf018230bbcefd38
Evgenii Stepanov [Thu, 11 Jun 2015 20:57:10 +0000 (13:57 -0700)]
Enable SANITIZE_TARGET.
The same as SANITIZE_HOST, but for the target.
Also, skip all LOCAL_FORCE_STATIC_EXECUTABLE targets, as ASan does not
support static linking.
Bug:
21785137
Change-Id: Ief53ff8de1fee18f230d6c7dd31845db5bbd415c
Ying Wang [Wed, 17 Jun 2015 21:18:47 +0000 (21:18 +0000)]
Merge "Really include drawables for all densities."
Ying Wang [Fri, 12 Jun 2015 17:33:59 +0000 (10:33 -0700)]
Really include drawables for all densities.
Previously with "PRODUCT_AAPT_CONFIG := normal" resource with modifier
"small" isn't included.
Bug:
21643610
Change-Id: I53940d716fb9705462b1abb882e04103e211f8af
Dan Albert [Wed, 17 Jun 2015 17:21:26 +0000 (17:21 +0000)]
Merge "Remove LOCAL_ADDRESS_SANITIZER."
Dan Albert [Wed, 17 Jun 2015 17:19:24 +0000 (17:19 +0000)]
Merge "Stop disallowing sanitizers."
Elliott Hughes [Wed, 17 Jun 2015 17:02:52 +0000 (17:02 +0000)]
Merge "Revert "[MIPS] Do not use compact branches until GDB supports them""
Nikola Veljkovic [Wed, 17 Jun 2015 15:22:26 +0000 (17:22 +0200)]
Revert "[MIPS] Do not use compact branches until GDB supports them"
This reverts commit
063ef3308992ce67c9a72c351978c3b7d2346e94.
Dan Albert [Tue, 16 Jun 2015 23:04:01 +0000 (16:04 -0700)]
Remove LOCAL_ADDRESS_SANITIZER.
I've migrated all users of this to the new option now, so we can drop
this.
Dropping `SANITIZE_HOST := true` will have to wait until the build
server configs have been updated.
Change-Id: I591436e197a6c6c079a6cd6a2decb702b574cd71
Dan Albert [Tue, 16 Jun 2015 21:14:43 +0000 (14:14 -0700)]
Stop disallowing sanitizers.
Change-Id: I641cb3fe998184f8926324e3365a7a99d87263df
Elliott Hughes [Tue, 16 Jun 2015 22:32:28 +0000 (22:32 +0000)]
Merge "Remove copy & paste cruft from the mips64 combo."
Elliott Hughes [Tue, 16 Jun 2015 22:22:52 +0000 (15:22 -0700)]
Remove copy & paste cruft from the mips64 combo.
libthread_db hasn't been in bionic for years.
Change-Id: Ibc036d894c6b6bf9ee4653f95ff7a000a223cb2e
Dan Albert [Tue, 16 Jun 2015 21:12:22 +0000 (21:12 +0000)]
Merge "Fix libdl inclusion for default-ub."
Nick Kralevich [Mon, 15 Jun 2015 21:54:30 +0000 (21:54 +0000)]
Merge "Add support for LOCAL_DETECT_INTEGER_OVERFLOWS"
Nick Kralevich [Sun, 14 Jun 2015 18:38:30 +0000 (11:38 -0700)]
Add support for LOCAL_DETECT_INTEGER_OVERFLOWS
Add build system support for LOCAL_DETECT_INTEGER_OVERFLOWS. When enabled,
an attempt to perform an integer arithmetic operation which overflows
will result in a call to abort(). This is intended for security
sensitive code, where integer overflow operations are not expected
nor desirable.
Two classes of underflows/overflows are detected and blocked:
1) Signed integer underflow/overflow.
2) Unsigned integer underflow/overflows.
Signed integer overflows are undefined behavior, according to the
C standard. Unsigned integer overflows are defined behavior, but
still undesirable in security sensitive code.
Only clang is supported today. gcc has -ftrapv for handling signed
integer overflow, but it's widely considered broken
(https://gcc.gnu.org/bugzilla/show_bug.cgi?id=35412) and we're
deliberately avoiding it's use here.
Change-Id: Ib4918dc84e37e83d4205e5035544545d91671e5f
Vaguely-Related-Bug:
11859726
Dan Albert [Mon, 15 Jun 2015 18:39:29 +0000 (11:39 -0700)]
Fix libdl inclusion for default-ub.
We shouldn't be using ldlibs for target libraries because it doesn't
add a real dependency.
Change-Id: Ib1ec40b95356feb521e95674b64d04d5ecc06332
Dan Albert [Fri, 12 Jun 2015 19:52:19 +0000 (19:52 +0000)]
Merge "Force some clang Werrors that *will* break things."
Jeff Vander Stoep [Fri, 12 Jun 2015 17:37:24 +0000 (17:37 +0000)]
Merge "selinux: add tools to dev path"
Jeff Vander Stoep [Fri, 12 Jun 2015 16:56:39 +0000 (09:56 -0700)]
selinux: add tools to dev path
Adds audit2allow to the path. No build required.
Bug:
21724977
Change-Id: Ide320a56b9cdbfa426b978443f6df07fa2a38fbc
Dan Albert [Wed, 10 Jun 2015 23:33:43 +0000 (16:33 -0700)]
Force some clang Werrors that *will* break things.
Clang is really aggressive at optimizing a handful of cases (read:
clang will ruin your day some if you write bad code). Fortunately, it
also emits a warning when it's about to do this.
To prevent anyone from suffering from these optimizations, make these
warnings errors and make them impossible to disable.
Change-Id: I5e10bb0fc2ca23190017da716b3b84635577a0bd
Ying Wang [Tue, 9 Jun 2015 16:20:49 +0000 (16:20 +0000)]
Merge "Add build_verity_metadata.py to dist-tools"
Narayan Kamath [Tue, 9 Jun 2015 10:03:16 +0000 (10:03 +0000)]
Merge "Remove duplicate CTS tests from libcore cts packages."
Narayan Kamath [Mon, 1 Jun 2015 13:45:55 +0000 (14:45 +0100)]
Remove duplicate CTS tests from libcore cts packages.
The catch all "org" package was catching several thousand
org.apache.harmony.tests.* tests that are already covered by
other packages. Replace the catch-all org.* with specific prefixes.
Needs additional support in CollectAllTests to handle multiple
prefixes. This is implemented in the companion change.
bug:
20862863
(cherry picked from commit
cf7fbcd03d9f13d1c2fe6e65f02247feadec136d)
Change-Id: I1d28f91cfca098ccdcd62e88bb486b433d9c29d8
Mark Salyzyn [Mon, 8 Jun 2015 23:51:32 +0000 (23:51 +0000)]
Merge "Add missing shared libraries to dist tools"
Ying Wang [Mon, 8 Jun 2015 23:39:24 +0000 (23:39 +0000)]
Merge "Strip path from verity_signer_cmd in the target-files meta data."
Ying Wang [Mon, 8 Jun 2015 19:00:59 +0000 (19:00 +0000)]
Merge "Remove the unnecessary full_x86_64 and full_mips64."
Ying Wang [Mon, 8 Jun 2015 18:57:26 +0000 (11:57 -0700)]
Remove the unnecessary full_x86_64 and full_mips64.
For historical reason, the aosp_* products were named full_*.
We keep the full, full_x86 and full_mips in case some tools still
reference these legacy names; But no reason the have the full_* product
names for the new 64-bit archs.
Change-Id: I240ed0c6ded0ded2d80603bd0c5ff24750999afc
Claes Elgemark [Thu, 4 Jun 2015 08:07:44 +0000 (10:07 +0200)]
Add build_verity_metadata.py to dist-tools
Preserve path as it is referenced by build_image.py.
Change-Id: Id6833d243b5a15b4ee5e0013340aeb2cd35f3578
Claes Elgemark [Wed, 3 Jun 2015 06:35:52 +0000 (08:35 +0200)]
Add missing shared libraries to dist tools
Add missing libraries used by e2fsck and build_verity_tree.
Change-Id: I8bf0341300863ef0090b395b2aba0b7a952f6b58
Ying Wang [Wed, 3 Jun 2015 16:59:01 +0000 (16:59 +0000)]
Merge "Add selinux and verity support to custom image generation."
Ying Wang [Wed, 3 Jun 2015 16:58:46 +0000 (16:58 +0000)]
Merge "Support to configure and build multiple custom images."
Ying Wang [Sat, 21 Mar 2015 00:43:02 +0000 (17:43 -0700)]
Add selinux and verity support to custom image generation.
New custom image configuration variables:
- CUSTOM_IMAGE_SELINUX, set to "true" if the image supports selinux.
- CUSTOM_IMAGE_SUPPORT_VERITY, set to "true" if the product supports verity.
- CUSTOM_IMAGE_VERITY_BLOCK_DEVICE
Also changed the staging directory name to the mount point, like we do
for other images built by the build system.
Bug:
19609718
Change-Id: I6bbf06b79eee63e4c77834f2e6f1d5a7f7e00a12
(cherry picked from commit
7d51a4029590b58e22071eed919d59a0ff205bef)
Ying Wang [Fri, 13 Mar 2015 01:30:39 +0000 (18:30 -0700)]
Support to configure and build multiple custom images.
Build additional images requested by the product makefile.
This script gives the ability to build multiple additional images and
you can configure what modules/files to include in each image.
1. Define PRODUCT_CUSTOM_IMAGE_MAKEFILES in your product makefile.
PRODUCT_CUSTOM_IMAGE_MAKEFILES is a list of makefiles.
Each makefile configures an image.
For image configuration makefile foo/bar/xyz.mk, the built image
file name
will be xyz.img. So make sure they won't conflict.
2. In each image's configuration makefile, you can define variables:
- CUSTOM_IMAGE_MOUNT_POINT, the mount point, such as "oem", "odm"
etc.
- CUSTOM_IMAGE_PARTITION_SIZE
- CUSTOM_IMAGE_FILE_SYSTEM_TYPE
- CUSTOM_IMAGE_DICT_FILE, a text file defining a dictionary
accepted by BuildImage() in tools/releasetools/build_image.py.
- CUSTOM_IMAGE_MODULES, a list of module names you want to include
in the image; Not only the module itself will be installed to proper
path in the image, you can also piggyback additional files/directories
with the module's LOCAL_PICKUP_FILES.
- CUSTOM_IMAGE_COPY_FILES, a list of "<src>:<dest>" to be copied to
the image. <dest> is relativ to the root of the image.
To build all those images, run "make custom_images".
Bug:
19609718
Change-Id: Ic73587e08503a251be27797c7b00329716051927
(cherry picked from commit
5fcf1094f9cf4d57c2598237f99621f254130d71)
Mark Salyzyn [Wed, 3 Jun 2015 16:45:26 +0000 (16:45 +0000)]
Merge "goldfish: rename goldfish_logcat.te to logd.te"
Ying Wang [Wed, 3 Jun 2015 16:42:17 +0000 (16:42 +0000)]
Merge "Add VeritySigner.jar to ota tools"
Claes Elgemark [Tue, 2 Jun 2015 09:59:32 +0000 (11:59 +0200)]
Add VeritySigner.jar to ota tools
Used by verity_signer
Change-Id: I6e2b654144b40573c3f3c0dc0d1c943889ffcd7d
Tao Bao [Wed, 3 Jun 2015 16:30:20 +0000 (16:30 +0000)]
Merge "Fix the wrong error message"
Tao Bao [Wed, 3 Jun 2015 16:24:08 +0000 (09:24 -0700)]
Fix the wrong error message
apply_patch_space() checks the free space on /cache, not /system.
Change-Id: I70996d5cd5a81fe4871ee738bddb1437e8df6fb9
Mark Salyzyn [Wed, 3 Jun 2015 16:00:14 +0000 (09:00 -0700)]
goldfish: rename goldfish_logcat.te to logd.te
Bug:
19608716
Change-Id: I5c76648a4bcbbb15a033465e8af66b12af6e0a18
Mark Salyzyn [Wed, 3 Jun 2015 15:47:18 +0000 (15:47 +0000)]
Merge "goldfish: logcat -Q in logd domain"
Mark Salyzyn [Wed, 3 Jun 2015 14:50:31 +0000 (07:50 -0700)]
goldfish: logcat -Q in logd domain
Deal with a build failure in conflict with cl/152105
Bug:
19608716
Change-Id: I1078046db3b159c1baf0a22435c3e777424453a1
Claes Elgemark [Tue, 2 Jun 2015 09:03:27 +0000 (11:03 +0200)]
Strip path from verity_signer_cmd in the target-files meta data.
Strip path to be able to use outside a build e.g.
when resigning using the dist tools zip.
Change-Id: I492dcfd5791b66c17ae2e751cc8f67127e97b800
Tao Bao [Tue, 2 Jun 2015 18:02:28 +0000 (18:02 +0000)]
Merge "Add post-install verification for BBOTAs"
Yohann Roussel [Tue, 2 Jun 2015 12:58:37 +0000 (12:58 +0000)]
Merge "[DO NOT MERGE] Add support for RMTYPEDEF with Jack"
Yohann Roussel [Wed, 20 May 2015 15:52:15 +0000 (17:52 +0200)]
[DO NOT MERGE] Add support for RMTYPEDEF with Jack
Bug:
21099584
(cherry-picked from commit
5b2c6e26dbda66a2245f987db0428c2bf2eb7c95)
Change-Id: I39aa1f24780c216e978ef743098ca7ac65b2962e
Tao Bao [Mon, 1 Jun 2015 20:40:49 +0000 (13:40 -0700)]
Add post-install verification for BBOTAs
Similar to the assertations in file-based OTA, we perform verification
for block-based OTAs (BBOTAs) after updating a partition, for both of
the incremental and full OTAs. It increases the update time (~20s on
Nexus 6), but will capture unnoticed errors right away.
Bug:
21500869
Change-Id: I89ac8fe623b855721b7affd07cf9426a23433ab0
Clay Murphy [Mon, 1 Jun 2015 19:04:56 +0000 (19:04 +0000)]
Merge "Docs: Update link to new Community page location"
Ying Wang [Mon, 1 Jun 2015 18:29:13 +0000 (18:29 +0000)]
Merge "Add $ORIGIN/lib[64] to host binary's rpath."
Ying Wang [Mon, 1 Jun 2015 17:43:29 +0000 (10:43 -0700)]
Add $ORIGIN/lib[64] to host binary's rpath.
Normally the binaries use the exsiting $ORIGIN/../lib[64] with binaries
in the bin subdirectory;
For historical reason the binaries in the SDK package don't have a bin
subdirectory. This workaround enables them to work in the existing SDK
directory structure.
Bug:
21301578
Change-Id: Ibebfbfb8b30e81e7bbaf13a21bb205f3f0282d24
(cherry-pick from commit
4fe7bfd373d99dedfd2e63135da5189478bb0138)
Chih-Hung Hsieh [Fri, 29 May 2015 20:16:23 +0000 (20:16 +0000)]
Merge "Remove gcc 4.9 workaround."
Chih-Hung Hsieh [Fri, 29 May 2015 17:23:15 +0000 (10:23 -0700)]
Remove gcc 4.9 workaround.
The gcc 4.9 devirtualization bug was fixed with a cherry pick of r212222.
BUG:
19872411
Change-Id: I6d9677f112402fe84d70da770f364392398e9cc9
(cherry picked from commit
ad2494bb79932c4f2fd55f51e9b0d58676502558)
Ying Wang [Fri, 29 May 2015 16:55:04 +0000 (16:55 +0000)]
Merge "Do not add 'adb' to persist.sys.usb.config if already there"
Oreste Salerno [Wed, 20 May 2015 16:44:48 +0000 (16:44 +0000)]
Do not add 'adb' to persist.sys.usb.config if already there
The 'adb' configuration might have already been added by a
device-specific Makefile, so add it only if it's not already there.
Change-Id: I6f96645f44c96f6f827cc8c842a8b769f92be13a
Elliott Hughes [Fri, 29 May 2015 04:41:26 +0000 (04:41 +0000)]
Merge "[MIPS] Do not use compact branches until GDB supports them"
Christopher Ferris [Thu, 28 May 2015 22:00:09 +0000 (22:00 +0000)]
Merge "Portable way to color"
David Srbecky [Thu, 28 May 2015 18:37:35 +0000 (18:37 +0000)]
Merge "Pass --no-generate-debug-info to dex2oat."
David Srbecky [Thu, 28 May 2015 15:32:55 +0000 (16:32 +0100)]
Pass --no-generate-debug-info to dex2oat.
The two flags have been merged and renamed in ART.
Change-Id: Iffc1dcc6764367239d6f45a3598cdb2c5d5d5013
Clay Murphy [Thu, 28 May 2015 01:37:02 +0000 (18:37 -0700)]
Docs: Update link to new Community page location
Bug:
21277510
Change-Id: I527e4efe264cbcf61bce997bed9086f1cb060c83
Tao Bao [Wed, 27 May 2015 16:12:31 +0000 (16:12 +0000)]
Merge "Use zipalign -p to page align .so files"
Brian Carlstrom [Fri, 22 May 2015 22:51:19 +0000 (15:51 -0700)]
Use zipalign -p to page align .so files
Bug:
21400810
Change-Id: Ie3adf26dd3a51acfdb0faa23dc8ca1b206fb3727
(cherry picked from commit
903186f938a447e459720f6825382470ebb77e37)
Nikola Veljkovic [Mon, 25 May 2015 09:16:10 +0000 (11:16 +0200)]
[MIPS] Do not use compact branches until GDB supports them
GDB does not yet have support for compact branches, and is unable to
set a breakpoint on them. Turn compact branch generation off, until
GDB is fixed.
Change-Id: Ie7d6fb891e9934f8fc645fe9cf8f706be15a5f77
Yohann Roussel [Thu, 21 May 2015 09:23:38 +0000 (09:23 +0000)]
Merge "[DO NOT MERGE] Compile using Jack."
Tao Bao [Wed, 20 May 2015 20:27:58 +0000 (20:27 +0000)]
Merge "Fix the permission setting in common.ZipWriteStr()"
Tao Bao [Wed, 20 May 2015 16:32:18 +0000 (09:32 -0700)]
Fix the permission setting in common.ZipWriteStr()
When passing a ZipInfo instance to common.ZipWriteStr(), the
external_attr attribute should not be overwritten unless specified.
We didn't have the issue previously because we were calling
ZipFile.writestr() directly until [1] merged.
[1] commit
2ed665a033c587b276b1615516e5354e2ace47cd.
Bug: http://b/
21309935
Change-Id: I374ccd40c174ff9259844f38bdbf187dfe82552d
Yohann Roussel [Mon, 8 Sep 2014 12:45:14 +0000 (14:45 +0200)]
Nick Kralevich [Tue, 19 May 2015 00:23:43 +0000 (00:23 +0000)]
Merge "Allow goldfish-setup to put the emulator in WiFi-only mode"
Yu Ning [Mon, 18 May 2015 09:11:37 +0000 (17:11 +0800)]
Allow goldfish-setup to put the emulator in WiFi-only mode
The goldfish-setup service (essentially /system/etc/init.goldfish.sh)
executes the following commands when certain conditions are met:
setprop ro.radio.noril yes
stop ril-daemon
so as to stop the RIL daemon and emulate a WiFi-only device. Both would
fail, though, because goldfish-setup does not have the permissions to
set relevant properties.
This CL modifies the emulator's SELinux policy to grant the necessary
permissions. It is a step towards fixing the ril-daemon-keeps-getting-
killed-and-restarted problem with the new ("ranchu") emulator, which
does not support telephony emulation yet. (The other step is to have
init start goldfish-setup, which will be done in a seperate CL.)
Change-Id: Ice7e7898804b7353ac4a8c49d871b1b2571d7a5f
Signed-off-by: Yu Ning <yu.ning@intel.com>
Nick Kralevich [Mon, 18 May 2015 16:51:18 +0000 (16:51 +0000)]
Merge "Label /dev/ttyGF* as serial_device"
Yu Ning [Mon, 18 May 2015 06:52:22 +0000 (14:52 +0800)]
Label /dev/ttyGF* as serial_device
In goldfish kernel 3.10, the goldfish_tty device instantiates virtual
serial ports as /dev/ttyGF* (e.g. /dev/ttyGF0), not as /dev/ttyS* as in
goldfish kernel 3.4. However, in the emulator's SELinux security policy,
there is no specific security context assigned to /dev/ttyGF*, and the
one inherited from /dev (u:object_r:device:s0) prevents services such as
qemud and goldfish-logcat from reading and writing ttyGF*. Consequently,
qemud terminates abnormally on the classic x86_64 emulator:
init: Service 'qemud' (pid XXX) exited with status 1
Fix this issue by assigning /dev/ttyGF* the same security context as
/dev/ttyS*.
Change-Id: Ia7394dc217bd82f566c4d1b7eda3cc8ce3ac612f
Signed-off-by: Yu Ning <yu.ning@intel.com>
Jacky Cao [Fri, 15 May 2015 14:12:53 +0000 (22:12 +0800)]
Portable way to color
Change-Id: I62ae1da772f4e3eb80ed26aca89ebe47aff8efa7
Elliott Hughes [Fri, 15 May 2015 20:52:55 +0000 (20:52 +0000)]
Merge "Explain __USE_MINGW_ANSI_STDIO."
Nick Kralevich [Fri, 15 May 2015 19:26:56 +0000 (19:26 +0000)]
Merge "Update device to use set_prop() macro"
Nick Kralevich [Fri, 15 May 2015 13:00:25 +0000 (13:00 +0000)]
Merge "Label /dev/goldfish_pipe as qemu_device"
Neil Fuller [Fri, 15 May 2015 09:09:44 +0000 (09:09 +0000)]
Merge "Add tzdatacheck to image"
Yu Ning [Thu, 14 May 2015 16:00:35 +0000 (00:00 +0800)]
Label /dev/goldfish_pipe as qemu_device
In goldfish kernel 3.10, qemu_pipe has been renamed to goldfish_pipe.
However, in the emulator's SELinux policy, there is no specific security
context assigned to /dev/goldfish_pipe, and the one inherited from /dev
(u:object_r:device:s0) prevents various processes (qemud, qemu-props,
etc.) from reading and writing goldfish_pipe. Consequently, the classic
x86_64 emulator will not boot if GPU emulation is enabled ("-gpu host"),
and does not render the UI correctly if launched with "-gpu off".
Fix this issue by assigning /dev/goldfish_pipe the same security context
as /dev/qemu_pipe.
This CL also benefits the new ("ranchu") emulator, where all supported
ABIs (arm64, mips64, x86 and x86_64) use 3.10-based kernels. Without
this fix, the new emulator boots and works, but there are avc denials
related to goldfish_pipe.
Last but not least, it is now possible to boot the classic x86 emulator
with a 3.10-based kernel instead of the current 3.4-based one, without
disabling SELinux.
Change-Id: Iad979c0ee9d0a410be12b83ac1bef9476b50a6dc
Signed-off-by: Yu Ning <yu.ning@intel.com>
Elliott Hughes [Fri, 15 May 2015 03:55:49 +0000 (20:55 -0700)]
Explain __USE_MINGW_ANSI_STDIO.
Change-Id: I6900a7cddfb5aa4365c3e0f6f6f0fa9203c0fe43
Ying Wang [Thu, 14 May 2015 16:11:58 +0000 (16:11 +0000)]
Merge "[MIPS] Temporarily disable Mips shared-textrel errors"
Jeff Vander Stoep [Thu, 14 May 2015 15:27:50 +0000 (15:27 +0000)]
Merge "Remove unused #include <selinux/android.h>"
Neil Fuller [Wed, 13 May 2015 16:47:29 +0000 (17:47 +0100)]
Add tzdatacheck to image
Bug:
21110439
Bug:
19941636
(cherry picked from commit
7d18a684177064a74dafbba8cc2f270f911936bf)
Change-Id: I29ab303d2695ba1cadf70c2d2f4440d34a8cede9
Jeff Vander Stoep [Wed, 13 May 2015 21:24:04 +0000 (14:24 -0700)]
Remove unused #include <selinux/android.h>
Change-Id: Iebc59784c7318edb1c1f686e040ed581259bdd5a
Elliott Hughes [Wed, 13 May 2015 21:12:21 +0000 (21:12 +0000)]
Merge "Revert "Revert "Turn on _FORTIFY_SOURCE=2 for the host."""
Elliott Hughes [Wed, 13 May 2015 20:53:32 +0000 (20:53 +0000)]
Merge "Add libbenchmark's new dependency on libbase."
OSDN Git Service
