StrixOS/build_soong
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
c42f2f2e9df800ae0c2267964d51d22b7a5de649
build_soong/cc
History
Inseob Kim c42f2f2e9d Add cfi static libraries to vendor snapshot 
CFI modules can't link against non-CFI static libraries, and vice versa.
So without capturing both CFI and non-CFI static libraries, vendor
modules won't be able to use CFI, which will be a critical security
hole.

This captures both CFI and non-CFI variants of all static libraries for
vendor snapshot, except for those whose cfi are explicitly disabled.

For example, suppose that "libfoo" is defined as follows.

cc_library_static {
    name: "libfoo",
    vendor_available: true,
}

As it doesn't have cfi disabled, two libraries "libfoo.a" and
"libfoo.cfi.a" will be captured. When installed, vendor snapshot module
for "libfoo" will look like:

vendor_snapshot_static {
    name: "libfoo",
    src: "libfoo.a",
    cfi: {
        src: "libfoo.cfi.a",
    },
}

The build system will recognize the "cfi" property, and will create both
CFI and non-CFI variant, allowing any modules to link against "libfoo"
safely, no matter whether CFI is enabled or not.

Two clarification:

1) The reason why we don't create separate modules is that DepsMutator
runs before sanitize mutators. CFI and non-CFI variant of a library
should exist in a single module.

2) We can't capture CFI variant if the source module explicitly disables
cfi variant by specifying the following.

sanitize: {
    cfi: false,
}

In this case, only non-CFI variant will be created for the vendor
snapshot module.

Bug: 65377115
Test: m dist vendor-snapshot && install && build against snapshot
Change-Id: Idbf3e3205d581800d6093c8d6cf6152374129ba4
2020-08-06 19:47:57 +00:00
..
config
Rename CFI blocklist files.
2020-07-27 18:37:48 +00:00
libbuildversion
Set apex_available property
2020-04-22 23:12:42 +09:00
ndk_api_coverage_parser
Fix non-determinism in tests.
2020-07-16 13:23:33 -07:00
ndkstubgen
Get NDK python script tests running.
2020-07-16 13:23:29 -07:00
symbolfile
Get NDK python script tests running.
2020-07-16 13:23:29 -07:00
Android.bp
Move image mutator things to image.go
2020-08-05 04:47:28 +00:00
androidmk.go
Add cfi static libraries to vendor snapshot
2020-08-06 19:47:57 +00:00
binary_sdk_member.go
Disable all host OS variants except those explicitly included.
2020-08-03 21:06:50 +01:00
binary.go
Support multiple dists per Android.bp module, and dist output selection.
2020-06-25 12:42:07 +00:00
builder.go
Match Rust gcda output to cc via -Z profile-emit.
2020-06-11 17:16:27 +00:00
cc_test.go
Add cfi static libraries to vendor snapshot
2020-08-06 19:47:57 +00:00
cc.go
Merge changes from topic "soong_sanitize_fix"
2020-08-06 00:48:16 +00:00
ccdeps.go
Add soong cc and java deps to general-tests dist
2020-07-06 16:19:56 -07:00
cflag_artifacts.go
Simple refactoring of prefix related functions.
2020-02-14 14:33:49 -08:00
check.go
Forbid -Weverything
2019-11-12 15:55:03 -08:00
cmakelists.go
Sandbox soong_build by changing to root directory
2020-01-11 01:11:46 +00:00
compdb.go
Sandbox soong_build by changing to root directory
2020-01-11 01:11:46 +00:00
compiler_test.go
Expand ClangExtraExternalCflags to non-Google vendor projects
2019-11-11 13:24:39 -08:00
compiler.go
Revert "Switch cc's use of bison and flex to prebuilt_build_tool"
2020-07-24 21:25:00 +00:00
coverage.go
Merge "Add libraryDependencyTag to track dependencies on static and shared libraries"
2020-08-06 00:06:28 +00:00
fuzz.go
add researcher_submitted field to cc_fuzz
2020-05-06 03:25:54 +00:00
gen_test.go
Use empty string for core image variant
2019-12-13 20:44:36 -08:00
gen.go
Revert "Switch cc's use of bison and flex to prebuilt_build_tool"
2020-07-24 21:25:00 +00:00
genrule_test.go
Move filesystem into Config
2019-12-18 08:19:10 -08:00
genrule.go
Create only one vendor variant depending on path
2020-06-05 04:26:24 +00:00
image.go
Separate lists of soong sanitize modules
2020-08-05 04:47:41 +00:00
installer.go
Fix missing NOTICE targets for static libs that aren't available to
2020-04-01 11:08:41 +01:00
kernel_headers.go
Change exportedDirs and exportedSystemDirs from []string to android.Paths
2019-10-25 09:52:08 +09:00
library_headers_test.go
Add cc_prebuilt_library_headers
2020-02-24 14:49:22 +00:00
library_headers.go
Disable all host OS variants except those explicitly included.
2020-08-03 21:06:50 +01:00
library_sdk_member.go
Disable all host OS variants except those explicitly included.
2020-08-03 21:06:50 +01:00
library_test.go
Apex: support codenames for min_sdk_version
2020-04-09 16:04:17 +09:00
library.go
Add libraryDependencyTag to track dependencies on static and shared libraries
2020-07-29 13:22:30 -07:00
linkable.go
Add libraryDependencyTag to track dependencies on static and shared libraries
2020-07-29 13:22:30 -07:00
linker.go
Remove libc_scudo references.
2020-06-22 15:27:56 -07:00
llndk_library.go
Nullify stl and sanitize of llndk_headers
2020-07-08 07:56:02 +09:00
lto.go
Add libraryDependencyTag to track dependencies on static and shared libraries
2020-07-29 13:22:30 -07:00
makevars.go
Revert "Support per-module MakeVars"
2020-07-23 21:37:35 +00:00
ndk_headers.go
Remove unused mips workarounds.
2020-03-06 18:15:44 -08:00
ndk_library.go
Merge "Update language to comply with Android's inclusive language guidance"
2020-07-29 01:12:36 +00:00
ndk_prebuilt.go
apex/apk: enforce min_sdk_version of all deps
2020-06-24 02:00:33 +09:00
ndk_sysroot.go
Expose some factories for aidl_test.go
2019-12-09 18:21:48 +09:00
object_test.go
Allow linker scripts when building objects.
2019-08-22 13:21:37 -07:00
object.go
Implement cc_object vendor snapshot
2020-06-05 04:26:17 +00:00
pgo.go
[pgo] Allow profile gather and use flags to coexist for sampling PGO
2020-07-22 02:01:49 +08:00
prebuilt_test.go
cc_prebuilt_library respect module name and stem
2020-04-13 17:02:27 +08:00
prebuilt.go
Create 'cc_prebuilt_test_library_shared' module type
2020-07-22 16:06:37 +00:00
proto_test.go
Use empty string for core image variant
2019-12-13 20:44:36 -08:00
proto.go
Split local and global cflags
2019-11-07 15:27:58 -08:00
pylintrc
Fix pylint issues in gen_stub_libs.
2020-07-16 13:21:43 -07:00
rs.go
Move/dedupe some host path functions in package_ctx.go.
2019-12-09 22:04:21 +00:00
sabi.go
Add libraryDependencyTag to track dependencies on static and shared libraries
2020-07-29 13:22:30 -07:00
sanitize.go
Add cfi static libraries to vendor snapshot
2020-08-06 19:47:57 +00:00
sdk_test.go
Revert^2 "Add sdk mutator for native modules"
2020-04-07 16:50:32 +00:00
sdk.go
Build against SDKs for native libs only for unbundled apps.
2020-06-17 04:28:27 +01:00
snapshot_utils.go
Capture snapshot headers in parallel
2020-03-04 23:39:42 +09:00
stl.go
Revert^2 "Add sdk mutator for native modules"
2020-04-07 16:50:32 +00:00
strip.go
Remove use_gnu_strip option
2019-09-13 12:18:47 -07:00
sysprop.go
Implement sysprop_library API stability check
2019-08-23 06:28:34 +00:00
test_data_test.go
Move filesystem into Config
2019-12-18 08:19:10 -08:00
test.go
Install data_libs using relative_install_path property
2020-07-20 13:59:24 -04:00
testing.go
Add cfi static libraries to vendor snapshot
2020-08-06 19:47:57 +00:00
tidy.go
Switch to clang-r383902 (11.0.1).
2020-04-27 01:17:12 -07:00
toolchain_library.go
Revert^2 "Add sdk mutator for native modules"
2020-04-07 16:50:32 +00:00
util.go
Only package gcno files for gcov coverage builds.
2020-04-22 13:30:07 -07:00
vendor_public_library.go
Split local and global cflags
2019-11-07 15:27:58 -08:00
vendor_snapshot.go
Add cfi static libraries to vendor snapshot
2020-08-06 19:47:57 +00:00
vndk_prebuilt.go
Implement cc_object vendor snapshot
2020-06-05 04:26:17 +00:00
vndk.go
Add libraryDependencyTag to track dependencies on static and shared libraries
2020-07-29 13:22:30 -07:00