startup_init/services/sandbox/chipset-sandbox.json

{
    "sandbox-root" : "/mnt/sandbox/chipset",
    "mount-bind-paths" : [
        {
            "src-path" : "/system/bin",
            "sandbox-path" : "/system/bin",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/etc/selinux",
            "sandbox-path" : "/system/etc/selinux",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/lib/chipset-pub-sdk",
            "sandbox-path" : "/system/lib/chipset-pub-sdk",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/lib/chipset-sdk",
            "sandbox-path" : "/system/lib/chipset-sdk",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/lib/ndk",
            "sandbox-path" : "/system/lib/ndk",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/vendor",
            "sandbox-path" : "/vendor",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/dev",
            "sandbox-path" : "/dev",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/proc",
            "sandbox-path" : "/proc",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/data",
            "sandbox-path" : "/data",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/sys/kernel/debug/tracing",
            "sandbox-path" : "/sys/kernel/debug/tracing",
            "sandbox-flags" : [ "bind", "private" ],
            "ignore": 1
        }, {
            "src-path" : "/sys/kernel/debug",
            "sandbox-path" : "/sys/kernel/debug",
            "sandbox-flags" : [ "bind", "private" ]
        }, {
            "src-path" : "/sys",
            "sandbox-path" : "/sys",
            "sandbox-flags" : [ "bind", "private" ]
        }, {
            "src-path" : "/config",
            "sandbox-path" : "/config",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/mnt",
            "sandbox-path" : "/mnt",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/storage",
            "sandbox-path" : "/storage",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/chip_prod",
            "sandbox-path" : "/chip_prod",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }
    ],
    "mount-bind-files" : [
        {
            "src-path" : "/etc/passwd",
            "sandbox-path" : "/system/etc/passwd",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/etc/group",
            "sandbox-path" : "/system/etc/group",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/etc/ld-musl-arm.path",
            "sandbox-path" : "/system/etc/ld-musl-arm.path",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/etc/ld-musl-namespace-arm.ini",
            "sandbox-path" : "/system/etc/ld-musl-namespace-arm.ini",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/lib/ld-musl-arm.so.1",
            "sandbox-path" : "/system/lib/ld-musl-arm.so.1",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/lib/libc.so",
            "sandbox-path" : "/system/lib/libc.so",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }, {
            "src-path" : "/system/lib/libc++.so",
            "sandbox-path" : "/system/lib/libc++.so",
            "sandbox-flags" : [ "bind", "rec", "private" ]
        }
    ],
    "symbol-links" : [{
            "target-name" : "/system/lib",
            "link-name" : "/lib"
        }, {
            "target-name" : "/system/bin",
            "link-name" : "/bin"
        }, {
            "target-name" : "/system/etc",
            "link-name" : "/etc"
        }
    ]
}