Switch to prepare_creds/commit_creds

Update API as per kernel doc recommends, also fix setup_groups refcount
leak while at it.

kernel/core_hook.c

@@ -110,6 +110,7 @@ static void setup_groups(struct root_profile *profile, struct cred *cred)
 
 	groups_sort(group_info);
 	set_groups(cred, group_info);
+	put_group_info(group_info);
 }
 
 static void disable_seccomp()
@@ -134,18 +135,18 @@ void escape_to_root(void)
 {
 	struct cred *cred;
 
-	rcu_read_lock();
+	cred = prepare_creds();
-
+	if (!cred) {
-	do {
+		pr_warn("prepare_creds failed!\n");
-		cred = (struct cred *)__task_cred((current));
+		return;
-		BUG_ON(!cred);
+	}
-	} while (!get_cred_rcu(cred));
 
 	if (cred->euid.val == 0) {
 		pr_warn("Already root, don't escape!\n");
-		rcu_read_unlock();
+		abort_creds(cred);
 		return;
 	}
+
 	struct root_profile *profile = ksu_get_root_profile(cred->uid.val);
 
 	cred->uid.val = profile->uid;
@@ -176,7 +177,7 @@ void escape_to_root(void)
 
 	setup_groups(profile, cred);
 
-	rcu_read_unlock();
+	commit_creds(cred);
 
 	// Refer to kernel/seccomp.c: seccomp_set_mode_strict
 	// When disabling Seccomp, ensure that current->sighand->siglock is held during the operation.
@@ -243,6 +244,7 @@ static void nuke_ext4_sysfs() {
 	}
 
 	ext4_unregister_sysfs(sb);
+	path_put(&path);
 }
 #else
 static inline void nuke_ext4_sysfs() { }