From 3121eb0f9ad55a3b0d08337f13d07be7e452cf1f Mon Sep 17 00:00:00 2001
From: Rifat Azad <rifat.44.azad.rifs@gmail.com>
Date: Wed, 15 Jan 2025 14:26:42 +0600
Subject: [PATCH] manager: add susfs status and sus_su toggle userspace: add
 susfsd ci: build susfsd ksud_overlayfs: update aarch64 bin  BusyBox v1.36.1.1
 topjohnwu (2024-10-06 01:38:43 PDT)

Co-authored-by: rifsxd <rifat.44.azad.rifs@gmail.com>
---
 .github/workflows/ksud_magic.yml              |  62 +++++
 .github/workflows/ksud_overlayfs.yml          |  62 +++++
 .github/workflows/susfsd.yml                  |  34 +++
 manager/app/src/main/res/drawable/ic_sus.xml  |   9 +
 .../app/src/main/res/values-in/strings.xml    |   2 +
 userspace/ksud/bin/.gitignore                 |   3 +-
 userspace/ksud/src/assets.rs                  |   1 +
 userspace/ksud_overlayfs/bin/.gitignore       |   2 +
 userspace/ksud_overlayfs/src/assets.rs        |  52 ++++
 userspace/susfsd/.gitignore                   |   2 +
 userspace/susfsd/jni/Android.mk               |   6 +
 userspace/susfsd/jni/Application.mk           |   3 +
 userspace/susfsd/jni/susfsd.c                 | 239 ++++++++++++++++++
 13 files changed, 476 insertions(+), 1 deletion(-)
 create mode 100644 .github/workflows/ksud_magic.yml
 create mode 100644 .github/workflows/ksud_overlayfs.yml
 create mode 100644 .github/workflows/susfsd.yml
 create mode 100644 manager/app/src/main/res/drawable/ic_sus.xml
 create mode 100644 userspace/ksud_overlayfs/bin/.gitignore
 create mode 100644 userspace/ksud_overlayfs/src/assets.rs
 create mode 100644 userspace/susfsd/.gitignore
 create mode 100644 userspace/susfsd/jni/Android.mk
 create mode 100644 userspace/susfsd/jni/Application.mk
 create mode 100644 userspace/susfsd/jni/susfsd.c

diff --git a/.github/workflows/ksud_magic.yml b/.github/workflows/ksud_magic.yml
new file mode 100644
index 00000000..d5786386
--- /dev/null
+++ b/.github/workflows/ksud_magic.yml
@@ -0,0 +1,62 @@
+name: Build ksud_magic
+on:
+  workflow_call:
+    inputs:
+      target:
+        required: true
+        type: string
+      os:
+        required: false
+        type: string
+        default: ubuntu-latest
+      pack_lkm:
+        required: false
+        type: boolean
+        default: true
+      use_cache:
+        required: false
+        type: boolean
+        default: true
+jobs:
+  build:
+    runs-on: ${{ inputs.os }}
+    steps:
+    - uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+
+    - name: Download artifacts
+      uses: actions/download-artifact@v4
+    
+    - name: Prepare LKM fies
+      if: ${{ inputs.pack_lkm }}
+      run: |
+        cp android*-lkm/*_kernelsu.ko ./userspace/ksud_magic/bin/aarch64/
+
+    - name: Import susfsd lib
+      run: |
+        cp susfsd-aarch64-linux-android/arm64-v8a/susfsd ./userspace/ksud_magic/bin/aarch64/
+        
+    - name: Setup rustup
+      run: |
+        rustup update stable
+        rustup target add x86_64-apple-darwin
+        rustup target add aarch64-apple-darwin
+    - uses: Swatinem/rust-cache@v2
+      with:
+        workspaces: userspace/ksud_magic
+        cache-targets: false
+
+    - name: Install cross
+      run: |
+        cargo install cross --git https://github.com/cross-rs/cross --rev 66845c1 --force
+
+    - name: Build ksud_magic
+      run: CROSS_NO_WARNINGS=0 cross build --target ${{ inputs.target }} --release --manifest-path ./userspace/ksud_magic/Cargo.toml
+
+    - name: Upload ksud_magic artifact
+      uses: actions/upload-artifact@v4
+      with:
+        name: ksud_magic-${{ inputs.target }}
+        path: userspace/ksud_magic/target/**/release/ksud*
+
diff --git a/.github/workflows/ksud_overlayfs.yml b/.github/workflows/ksud_overlayfs.yml
new file mode 100644
index 00000000..db3f6528
--- /dev/null
+++ b/.github/workflows/ksud_overlayfs.yml
@@ -0,0 +1,62 @@
+name: Build ksud_overlayfs
+on:
+  workflow_call:
+    inputs:
+      target:
+        required: true
+        type: string
+      os:
+        required: false
+        type: string
+        default: ubuntu-latest
+      pack_lkm:
+        required: false
+        type: boolean
+        default: true
+      use_cache:
+        required: false
+        type: boolean
+        default: true
+jobs:
+  build:
+    runs-on: ${{ inputs.os }}
+    steps:
+    - uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+
+    - name: Download artifacts
+      uses: actions/download-artifact@v4
+    
+    - name: Prepare LKM fies
+      if: ${{ inputs.pack_lkm }}
+      run: |
+        cp android*-lkm/*_kernelsu.ko ./userspace/ksud_overlayfs/bin/aarch64/
+
+    - name: Import susfsd lib
+      run: |
+        cp susfsd-aarch64-linux-android/arm64-v8a/susfsd ./userspace/ksud_overlayfs/bin/aarch64/
+        
+    - name: Setup rustup
+      run: |
+        rustup update stable
+        rustup target add x86_64-apple-darwin
+        rustup target add aarch64-apple-darwin
+    - uses: Swatinem/rust-cache@v2
+      with:
+        workspaces: userspace/ksud_overlayfs
+        cache-targets: false
+
+    - name: Install cross
+      run: |
+        cargo install cross --git https://github.com/cross-rs/cross --rev 66845c1 --force
+
+    - name: Build ksud_overlayfs
+      run: CROSS_NO_WARNINGS=0 cross build --target ${{ inputs.target }} --release --manifest-path ./userspace/ksud_overlayfs/Cargo.toml
+
+    - name: Upload ksud_overlayfs artifact
+      uses: actions/upload-artifact@v4
+      with:
+        name: ksud_overlayfs-${{ inputs.target }}
+        path: userspace/ksud_overlayfs/target/**/release/ksud*
+
diff --git a/.github/workflows/susfsd.yml b/.github/workflows/susfsd.yml
new file mode 100644
index 00000000..d63699a9
--- /dev/null
+++ b/.github/workflows/susfsd.yml
@@ -0,0 +1,34 @@
+name: Build susfsd
+on:
+  push:
+    branches: [ "next" ]
+    paths:
+      - '.github/workflows/susfsd.yml'
+      - 'userspace/susfsd/**'
+  workflow_dispatch:
+  workflow_call:
+    inputs:
+      target:
+        required: true
+        type: string
+      os:
+        required: false
+        type: string
+        default: ubuntu-latest
+jobs:
+  build-susfs:
+    name: Build userspace susfsd
+    runs-on: ubuntu-latest
+    steps:
+    - uses: actions/checkout@v4
+      with:
+        fetch-depth: 0
+    - name: Build susfsd
+      working-directory: ./userspace/susfsd
+      run: $ANDROID_NDK/ndk-build
+    - name: Upload a Build Artifact
+      uses: actions/upload-artifact@v4
+      with:
+        name: susfsd-aarch64-linux-android
+        path: ./userspace/susfsd/libs
+    
diff --git a/manager/app/src/main/res/drawable/ic_sus.xml b/manager/app/src/main/res/drawable/ic_sus.xml
new file mode 100644
index 00000000..ea794670
--- /dev/null
+++ b/manager/app/src/main/res/drawable/ic_sus.xml
@@ -0,0 +1,9 @@
+<vector xmlns:android="http://schemas.android.com/apk/res/android" xmlns:aapt="http://schemas.android.com/aapt"
+    android:viewportWidth="400"
+    android:viewportHeight="400"
+    android:width="24dp"
+    android:height="24dp">
+    <path
+        android:pathData="M226.5 4c9 0 14.5 0.4 14.5 1 0 0.5 1.9 1 4.3 1 2.3 0 6.9 0.7 10.2 1.6 3.3 0.8 8.5 2.4 11.5 3.6 3 1.2 7.5 3.3 10 4.6 2.5 1.4 6.8 4.2 9.5 6.2 2.8 2.1 6.1 4.9 7.5 6.2 1.4 1.3 3.9 4.4 5.6 6.8 1.7 2.5 4.3 6.8 5.7 9.5 1.4 2.8 3.5 7.7 4.7 11 1.2 3.3 3 7.9 4.1 10.3 1 2.3 1.9 5 1.9 5.9 0.1 1 0.6 3 1.3 4.5 0.7 1.5 4.2 5.8 7.8 9.5 3.6 3.7 8.1 9 9.9 11.8 1.9 2.7 4.6 7.7 6.1 11 1.5 3.3 3.7 9.8 5 14.5 1.3 4.9 2.2 11.7 2.3 16 0 4.7 -0.6 9.5 -1.7 13 -1 3 -3.5 8 -5.6 11 -2.1 3 -6.5 7.7 -9.9 10.5 -5.5 4.5 -6.1 5.3 -5.7 8 0.2 1.7 1.1 11.3 2 21.5 0.8 10.2 1.5 29.8 1.5 43.5 0 13.7 -0.7 33.6 -1.4 44 -0.8 10.4 -2.2 23.1 -3.1 28 -0.9 4.9 -2.3 11.9 -3.2 15.5 -0.8 3.6 -2.6 9.6 -4 13.5 -1.3 3.9 -3.3 8.4 -4.3 10 -1 1.6 -3.1 4.1 -4.6 5.5 -1.6 1.4 -5.6 3.8 -8.9 5.4 -3.3 1.6 -10.3 3.8 -15.5 4.9 -7 1.4 -12 1.8 -19 1.4 -5.2 -0.3 -12 -1.3 -15 -2.3 -3 -1 -7.1 -2.8 -9 -4 -1.9 -1.2 -4.5 -3.1 -5.7 -4.3 -1.3 -1.2 -3.4 -3.8 -4.7 -5.9 -1.3 -2 -3.5 -7.3 -5 -11.7 -1.7 -5 -3 -11.4 -4.1 -26l-9.5 -0.5v8.2c0 4.6 -0.7 15 -1.4 23.3 -0.8 8.2 -2.2 17.2 -3.1 20 -0.9 2.7 -2.4 6.6 -3.3 8.5 -0.8 1.9 -3 4.9 -4.7 6.5 -1.8 1.6 -5.6 3.8 -8.6 4.7 -3 1 -6.5 1.8 -8 1.8 -1.4 0 -2.9 0.5 -3.5 1 -0.5 0.7 -7.1 0.9 -17.4 0.7 -9.1 -0.2 -18.3 -0.8 -20.5 -1.3 -2.2 -0.6 -6 -2 -8.5 -3.2 -2.5 -1.1 -6.2 -3.7 -8.3 -5.6 -2 -2 -5 -6.2 -6.5 -9.4 -2.4 -4.7 -3.2 -8.7 -5 -23.2 -1.2 -9.6 -2.7 -22.8 -3.4 -29.4 -0.7 -6.5 -1.6 -12 -2 -12.2 -0.5 -0.2 -5.9 -0.8 -12 -1.3 -6.2 -0.5 -13.5 -1.7 -16.3 -2.8 -2.9 -1 -6.9 -3.7 -9.6 -6.3 -2.5 -2.5 -5.5 -6.3 -6.6 -8.5 -1.2 -2.2 -3.2 -7.4 -4.6 -11.5 -1.4 -4.1 -3.2 -11.8 -4 -17 -0.9 -5.2 -2.1 -14.4 -2.6 -20.5 -0.6 -6.1 -1.1 -22 -1.1 -35.5 0 -15.3 0.6 -29 1.5 -36.5 0.8 -6.6 2.2 -14.3 3 -17 0.9 -2.8 3 -7.9 4.8 -11.4 1.8 -3.6 5.6 -8.8 8.7 -11.9 3 -3 7.8 -6.5 10.5 -7.7 2.8 -1.3 9.9 -3.6 16 -5.2 10.4 -2.7 11 -2.9 11.6 -5.8 0.4 -1.7 1.5 -6.4 2.4 -10.5 0.9 -4.1 3.5 -12.9 5.7 -19.5 2.2 -6.6 5.2 -14.7 6.7 -18 1.5 -3.3 4.8 -9.3 7.4 -13.3 2.6 -3.9 7.5 -9.9 11 -13.3 3.4 -3.4 9.8 -8.4 14.2 -11.3 4.4 -2.8 9.6 -5.9 11.5 -6.8 1.9 -0.9 5.1 -2.3 7 -3.2 1.9 -0.8 6 -2.4 9 -3.5 3 -1.1 8.9 -3 13 -4.1 4.1 -1.1 9.6 -2 12.3 -2 2.6 0 4.7 -0.5 4.7 -1 0 -0.6 5.5 -1 14.5 -1zm-21 22.6c-4.4 0.8 -10.5 2.3 -13.5 3.2 -3 0.9 -9.6 3.6 -14.5 6 -4.9 2.4 -11.7 6.3 -15 8.6 -3.3 2.4 -8.4 7 -11.3 10.2 -3.2 3.6 -7 9.5 -9.7 14.9 -2.3 4.9 -5.6 13 -7.3 18 -1.6 4.9 -4.1 13.9 -5.5 20 -1.4 6 -3.3 15.9 -4.2 22 -0.9 6.1 -2.1 19.6 -2.5 30 -0.5 10.4 -0.5 34.7 0 54 0.4 19.2 1.5 43.3 2.4 53.5 0.9 10.2 2.5 26.4 3.6 36 1.1 9.6 2.6 23.8 3.4 31.5 0.8 7.7 1.8 16.9 2.1 20.5 0.4 3.6 1.5 8.4 2.6 10.7 1.5 3.4 2.9 4.8 6.7 6.5 4.2 2.1 6.2 2.3 19.2 2.3 8.7 0 16.3 -0.5 19 -1.3 2.7 -0.7 5 -2.1 5.7 -3.5 0.7 -1.2 2 -5.6 2.8 -9.7 1.1 -5 1.8 -14.7 2.1 -29 0.3 -11.8 0.7 -22.4 0.9 -23.5 0.4 -1.9 1.2 -2 26.2 -2 21 -0.1 27.4 -0.4 34.3 -1.9 4.7 -1 11.4 -2.4 15 -3.2 3.6 -0.8 6.6 -1.2 6.8 -0.9 0.1 0.3 -1.5 2.3 -3.5 4.6 -2.1 2.2 -5.8 5.2 -8.3 6.5 -2.5 1.4 -8.9 4.2 -14.3 6.2 -8.8 3.3 -9.8 4 -9.7 6.2 0 1.4 1.1 6.8 2.5 12 2 7.6 3.2 10.4 6.3 14 2.2 2.5 5.4 5.4 7.3 6.5 2.9 1.7 5.2 2 15.4 2 10.5 0 12.8 -0.3 18.4 -2.5 3.5 -1.4 7.3 -3.4 8.5 -4.5 1.2 -1.1 3.3 -5.4 4.7 -9.5 1.5 -4.1 3.6 -11.8 4.7 -17 1.2 -5.2 2.8 -15.6 3.6 -23 1.2 -10 1.6 -23.9 1.6 -54 0 -22.3 -0.5 -44.3 -1 -49 -0.6 -4.7 -1.3 -9.3 -1.5 -10.3 -0.4 -1.4 -0.9 -1.5 -3.2 -0.6 -1.6 0.6 -6.2 1.9 -10.3 2.9 -4.1 1 -11.1 2.4 -15.5 3.1 -4.4 0.7 -13.4 1.2 -20 1.2 -6.6 0 -15.6 -0.6 -20 -1.2 -4.4 -0.7 -10.7 -1.9 -14 -2.8 -3.3 -0.8 -8.5 -2.4 -11.5 -3.5 -3 -1.1 -8.6 -3.6 -12.5 -5.6 -3.8 -1.9 -10.1 -5.7 -14 -8.4 -3.8 -2.6 -8.8 -6.5 -11 -8.6 -2.2 -2 -5.6 -5.8 -7.6 -8.2 -2 -2.5 -4.4 -6.1 -5.4 -8 -1 -1.9 -2.4 -6 -3.2 -9 -0.8 -3 -1.5 -8.7 -1.5 -12.5 -0.1 -3.8 0.4 -9.5 1.1 -12.5 0.8 -3 2.7 -8 4.3 -11 1.6 -3 4 -6.8 5.3 -8.5 1.2 -1.7 4 -4.7 6.1 -6.7 2.2 -2.1 5.3 -4.9 6.9 -6.3 1.7 -1.4 3.3 -2.5 3.8 -2.5 0.4 0 1.9 -0.8 3.5 -1.8 1.5 -1 6.5 -3.3 11.2 -5.2 4.7 -1.8 12.8 -4.4 18 -5.7 8.3 -2 11.9 -2.3 28.5 -2.3 14.3 0 22.1 0.5 31.5 2 6.9 1.2 12.6 1.8 12.8 1.5 0.1 -0.3 -1.2 -4 -3 -8.3 -1.7 -4.2 -4.4 -9.6 -6 -12 -1.5 -2.3 -5.2 -6 -8 -8.3 -2.9 -2.2 -8 -5.4 -11.3 -6.9 -3.3 -1.6 -9.8 -3.8 -14.5 -5 -5.1 -1.2 -13.1 -2.2 -20 -2.5 -6.3 -0.2 -12.6 -0.2 -14 0.1 -1.4 0.3 -6.1 1.1 -10.5 2zm9.5 61.9c-3 1 -8.4 3.2 -12 5 -3.6 1.8 -8.7 5.3 -11.5 7.7 -2.7 2.5 -6.3 6.9 -8 9.9 -2.7 4.9 -3 6.2 -3 14.9 0 7.3 0.5 10.3 1.9 13 1 1.9 4.1 5.8 7 8.5 2.8 2.8 7.8 6.9 11.1 9.1 3.3 2.2 8 5.2 10.5 6.6 2.5 1.4 7.2 3.5 10.5 4.6 3.3 1.1 9.9 3 14.8 4.1 6.9 1.7 12 2.1 24.5 2.1 12.5 0 17.6 -0.4 24.7 -2.1 4.9 -1.2 11.7 -3 15 -4.1 3.3 -1.1 7.6 -2.9 9.5 -4 1.9 -1.2 5.1 -3.1 7 -4.4 1.9 -1.2 5.1 -4.4 7 -7.1 3.5 -4.8 3.5 -4.9 3.4 -14.8 -0.1 -9.1 -0.5 -10.8 -3.8 -18.5 -2.5 -6 -5.6 -10.8 -10.4 -16.5 -4.3 -5.1 -8.4 -8.8 -11.2 -10.2 -2.5 -1.2 -8.1 -3.1 -12.5 -4.1 -4.4 -1.1 -12.9 -2.4 -19 -3.1 -6.1 -0.6 -17.1 -1 -24.5 -1 -7.4 0.1 -16.2 0.7 -19.5 1.3 -3.3 0.7 -8.5 2.1 -11.5 3.1zm-131.5 47.1c-1.6 1 -4.2 3 -5.7 4.6 -1.6 1.5 -4.4 6.1 -6.3 10 -2.1 4.5 -4.1 10.8 -5.1 16.3 -1 5.8 -1.7 17.9 -2.1 34 -0.4 19.6 -0.2 28.5 1.2 41 0.9 8.8 2.8 20.7 4.1 26.5 1.4 5.8 3.7 13 5.2 16 2 3.9 3.9 6.2 7.2 8.2 3.9 2.4 6 2.9 14.9 3.6l10.5 0.7c-1 -7 -1.8 -14.6 -2.3 -21.5 -0.6 -6.9 -1.5 -19.9 -2.1 -29 -0.5 -9.1 -1.3 -30.2 -1.6 -47 -0.4 -19.6 -0.2 -35 0.5 -43 0.6 -6.9 1.3 -15.5 1.5 -19.3 0.4 -6.7 0.4 -6.7 -2.3 -6.6 -1.4 0 -5.3 0.9 -8.6 1.9 -3.3 1.1 -7.3 2.7 -9 3.6z"
+        android:fillColor="#000000" />
+</vector>
\ No newline at end of file
diff --git a/manager/app/src/main/res/values-in/strings.xml b/manager/app/src/main/res/values-in/strings.xml
index afe50176..6c4eba14 100644
--- a/manager/app/src/main/res/values-in/strings.xml
+++ b/manager/app/src/main/res/values-in/strings.xml
@@ -66,6 +66,8 @@
     <string name="failed_to_update_app_profile">Gagal membarui Profil pada %s</string>
     <string name="settings_umount_modules_default">Melepas Modul secara bawaan</string>
     <string name="settings_umount_modules_default_summary">Menggunakan \"Umount Modul\" secara universal pada Profil Aplikasi. Jika diaktifkan, akan menghapus semua modifikasi sistem untuk aplikasi yang tidak memiliki set profil.</string>
+    <string name="settings_susfs_toggle">Sembunyikan hook kprobe</string>
+    <string name="settings_susfs_toggle_summary">Ini menonaktifkan hook kprobe yang dibuat oleh ksu, dan sebagai gantinya, hook inline non-kprobe akan diaktifkan, sama seperti implementasi untuk kernel non-gki yang tidak mendukung kprobe.</string>
     <string name="profile_umount_modules_summary">Aktifkan opsi ini agar KernelSU dapat memulihkan kembali berkas termodifikasi oleh modul pada aplikasi ini.</string>
     <string name="profile_selinux_domain">Domain</string>
     <string name="profile_selinux_rules">Aturan</string>
diff --git a/userspace/ksud/bin/.gitignore b/userspace/ksud/bin/.gitignore
index 1464b7ed..c8b95e0e 100644
--- a/userspace/ksud/bin/.gitignore
+++ b/userspace/ksud/bin/.gitignore
@@ -1 +1,2 @@
-**/*.ko
\ No newline at end of file
+**/*.ko
+susfsd
\ No newline at end of file
diff --git a/userspace/ksud/src/assets.rs b/userspace/ksud/src/assets.rs
index e8255c82..f7623bbe 100644
--- a/userspace/ksud/src/assets.rs
+++ b/userspace/ksud/src/assets.rs
@@ -8,6 +8,7 @@ use crate::{defs::BINARY_DIR, utils};
 pub const RESETPROP_PATH: &str = concatcp!(BINARY_DIR, "resetprop");
 pub const BUSYBOX_PATH: &str = concatcp!(BINARY_DIR, "busybox");
 pub const BOOTCTL_PATH: &str = concatcp!(BINARY_DIR, "bootctl");
+pub const SUSFSD_PATH: &str = concatcp!(BINARY_DIR, "susfsd");
 
 #[cfg(all(target_arch = "x86_64", target_os = "android"))]
 #[derive(RustEmbed)]
diff --git a/userspace/ksud_overlayfs/bin/.gitignore b/userspace/ksud_overlayfs/bin/.gitignore
new file mode 100644
index 00000000..879d7ba9
--- /dev/null
+++ b/userspace/ksud_overlayfs/bin/.gitignore
@@ -0,0 +1,2 @@
+**/*.ko
+susfsd
diff --git a/userspace/ksud_overlayfs/src/assets.rs b/userspace/ksud_overlayfs/src/assets.rs
new file mode 100644
index 00000000..250fc63c
--- /dev/null
+++ b/userspace/ksud_overlayfs/src/assets.rs
@@ -0,0 +1,52 @@
+use anyhow::Result;
+use const_format::concatcp;
+use rust_embed::RustEmbed;
+use std::path::Path;
+
+use crate::{defs::BINARY_DIR, utils};
+
+pub const RESETPROP_PATH: &str = concatcp!(BINARY_DIR, "resetprop");
+pub const BUSYBOX_PATH: &str = concatcp!(BINARY_DIR, "busybox");
+pub const BOOTCTL_PATH: &str = concatcp!(BINARY_DIR, "bootctl");
+pub const SUSFSD_PATH: &str = concatcp!(BINARY_DIR, "susfsd");
+
+#[cfg(all(target_arch = "x86_64", target_os = "android"))]
+#[derive(RustEmbed)]
+#[folder = "bin/x86_64"]
+struct Asset;
+
+// IF NOT x86_64 ANDROID, ie. macos, linux, windows, always use aarch64
+#[cfg(not(all(target_arch = "x86_64", target_os = "android")))]
+#[derive(RustEmbed)]
+#[folder = "bin/aarch64"]
+struct Asset;
+
+pub fn ensure_binaries(ignore_if_exist: bool) -> Result<()> {
+    for file in Asset::iter() {
+        if file == "ksuinit" || file.ends_with(".ko") {
+            // don't extract ksuinit and kernel modules
+            continue;
+        }
+        let asset = Asset::get(&file).ok_or(anyhow::anyhow!("asset not found: {}", file))?;
+        utils::ensure_binary(format!("{BINARY_DIR}{file}"), &asset.data, ignore_if_exist)?
+    }
+    Ok(())
+}
+
+pub fn copy_assets_to_file(name: &str, dst: impl AsRef<Path>) -> Result<()> {
+    let asset = Asset::get(name).ok_or(anyhow::anyhow!("asset not found: {}", name))?;
+    std::fs::write(dst, asset.data)?;
+    Ok(())
+}
+
+pub fn list_supported_kmi() -> Result<Vec<String>> {
+    let mut list = Vec::new();
+    for file in Asset::iter() {
+        // kmi_name = "xxx_kernelsu.ko"
+        if let Some(kmi) = file.strip_suffix("_kernelsu.ko") {
+            list.push(kmi.to_string());
+        }
+    }
+    Ok(list)
+}
+
diff --git a/userspace/susfsd/.gitignore b/userspace/susfsd/.gitignore
new file mode 100644
index 00000000..720289cc
--- /dev/null
+++ b/userspace/susfsd/.gitignore
@@ -0,0 +1,2 @@
+/obj
+/libs
diff --git a/userspace/susfsd/jni/Android.mk b/userspace/susfsd/jni/Android.mk
new file mode 100644
index 00000000..e805f0b4
--- /dev/null
+++ b/userspace/susfsd/jni/Android.mk
@@ -0,0 +1,6 @@
+LOCAL_PATH := $(call my-dir)
+
+include $(CLEAR_VARS)
+LOCAL_MODULE := susfsd
+LOCAL_SRC_FILES := susfsd.c
+include $(BUILD_EXECUTABLE)
diff --git a/userspace/susfsd/jni/Application.mk b/userspace/susfsd/jni/Application.mk
new file mode 100644
index 00000000..61d31236
--- /dev/null
+++ b/userspace/susfsd/jni/Application.mk
@@ -0,0 +1,3 @@
+APP_ABI := arm64-v8a
+APP_PLATFORM := android-24
+APP_STL := none
diff --git a/userspace/susfsd/jni/susfsd.c b/userspace/susfsd/jni/susfsd.c
new file mode 100644
index 00000000..61111f46
--- /dev/null
+++ b/userspace/susfsd/jni/susfsd.c
@@ -0,0 +1,239 @@
+#include <stdio.h>
+#include <string.h>
+#include <stdlib.h>
+#include <sys/prctl.h>
+#include <stdbool.h>
+#include <errno.h>
+#include <unistd.h>
+
+#define KERNEL_SU_OPTION 0xDEADBEEF
+
+#define CMD_SUSFS_SHOW_VERSION 0x555e1
+#define CMD_SUSFS_SHOW_ENABLED_FEATURES 0x555e2
+#define CMD_SUSFS_SHOW_VARIANT 0x555e3
+#define CMD_SUSFS_SHOW_SUS_SU_WORKING_MODE 0x555e4
+#define CMD_SUSFS_IS_SUS_SU_READY 0x555f0
+#define CMD_SUSFS_SUS_SU 0x60000
+
+#define SUS_SU_DISABLED 0
+#define SUS_SU_WITH_HOOKS 2
+
+struct st_sus_su {
+	int mode;
+};
+
+int enable_sus_su(int last_working_mode, int target_working_mode) {
+	struct st_sus_su info;
+	int error = -1;
+
+	if (target_working_mode == SUS_SU_WITH_HOOKS) {
+		info.mode = SUS_SU_WITH_HOOKS;
+		prctl(KERNEL_SU_OPTION, CMD_SUSFS_SUS_SU, &info, NULL, &error);
+		if (error) {
+			if (error == 1) {
+			} else if (error == 2) {
+			}
+			return error;
+		}
+        printf("[+] sus_su mode 2 is enabled\n");
+	} else if (target_working_mode == SUS_SU_DISABLED) {
+		info.mode = SUS_SU_DISABLED;
+		prctl(KERNEL_SU_OPTION, CMD_SUSFS_SUS_SU, &info, NULL, &error);
+		if (error) {
+			if (error == 1) {
+			}
+			return error;
+		}
+        printf("[+] sus_su mode 0 is enabled\n");
+	} else {
+		return 1;
+	}
+	return 0;
+}
+
+int main(int argc, char *argv[]) {
+    int error = -1;
+    char support[16];
+    char version[16];
+    char variant[16];
+	
+
+
+    // Check for arguments
+    if (argc < 2) {
+        fprintf(stderr, "Usage: %s <support|version|variant|features|sus_su <0|2|mode>|>\n", argv[0]);
+        return 1;
+    }
+        
+    if (strcmp(argv[1], "version") == 0) {
+        prctl(KERNEL_SU_OPTION, CMD_SUSFS_SHOW_VERSION, version, NULL, &error);
+        if (!error) {
+            printf("%s\n", version);
+        } else {
+            printf("Invalid\n");
+        }
+    } else if (strcmp(argv[1], "variant") == 0) {
+        prctl(KERNEL_SU_OPTION, CMD_SUSFS_SHOW_VARIANT, variant, NULL, &error);
+        if (!error) {
+            printf("%s\n", variant);
+        } else {
+            printf("Invalid\n");
+        }
+	} else if (strcmp(argv[1], "features") == 0) {
+		char *enabled_features_buf = malloc(getpagesize() * 2);
+		char *ptr_buf;
+		unsigned long enabled_features;
+		int str_len;
+
+		if (!enabled_features_buf) {
+			perror("malloc");
+			return -ENOMEM;
+		}
+		ptr_buf = enabled_features_buf;
+
+		prctl(KERNEL_SU_OPTION, CMD_SUSFS_SHOW_ENABLED_FEATURES, &enabled_features, NULL, &error);
+		if (!error) {
+			if (enabled_features & (1 << 0)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SUS_PATH\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SUS_PATH\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 1)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SUS_MOUNT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SUS_MOUNT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 2)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_AUTO_ADD_SUS_KSU_DEFAULT_MOUNT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_AUTO_ADD_SUS_KSU_DEFAULT_MOUNT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 3)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_AUTO_ADD_SUS_BIND_MOUNT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_AUTO_ADD_SUS_BIND_MOUNT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 4)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SUS_KSTAT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SUS_KSTAT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 5)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SUS_OVERLAYFS\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SUS_OVERLAYFS\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 6)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_TRY_UMOUNT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_TRY_UMOUNT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 7)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_AUTO_ADD_TRY_UMOUNT_FOR_BIND_MOUNT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_AUTO_ADD_TRY_UMOUNT_FOR_BIND_MOUNT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 8)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SPOOF_UNAME\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SPOOF_UNAME\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 9)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_ENABLE_LOG\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_ENABLE_LOG\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 10)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_HIDE_KSU_SUSFS_SYMBOLS\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_HIDE_KSU_SUSFS_SYMBOLS\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 11)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SPOOF_BOOTCONFIG\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SPOOF_BOOTCONFIG\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 12)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_OPEN_REDIRECT\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_OPEN_REDIRECT\n", str_len);
+				ptr_buf += str_len;
+			}
+			if (enabled_features & (1 << 13)) {
+				str_len = strlen("CONFIG_KSU_SUSFS_SUS_SU\n");
+				strncpy(ptr_buf, "CONFIG_KSU_SUSFS_SUS_SU\n", str_len);
+				ptr_buf += str_len;
+			}
+			printf("%s", enabled_features_buf);
+			free(enabled_features_buf);
+		} else {
+			printf("Invalid\n");
+		}
+	} else if (strcmp(argv[1], "support") == 0) {
+		unsigned long enabled_features;
+		int any_feature_enabled = 0;
+
+		prctl(KERNEL_SU_OPTION, CMD_SUSFS_SHOW_ENABLED_FEATURES, &enabled_features, NULL, &error);
+		if (!error) {
+			if (enabled_features & ((1 << 0) | (1 << 1) | (1 << 2) | (1 << 3) |
+									(1 << 4) | (1 << 5) | (1 << 6) | (1 << 7) |
+									(1 << 8) | (1 << 9) | (1 << 10) | (1 << 11) |
+									(1 << 12) | (1 << 13))) {
+				any_feature_enabled = 1;
+			}
+			if (any_feature_enabled) {
+				printf("Supported\n");
+			} else {
+				printf("Unsupported\n");
+			}
+		} else {
+			printf("Unsupported\n");
+		}
+    } else if (argc == 3 && !strcmp(argv[1], "sus_su")) {
+		int last_working_mode = 0;
+		int target_working_mode;
+		char* endptr;
+
+		prctl(KERNEL_SU_OPTION, CMD_SUSFS_SHOW_SUS_SU_WORKING_MODE, &last_working_mode, NULL, &error);
+		if (error)
+			return error;
+		if (!strcmp(argv[2], "mode")) {
+			printf("%d\n", last_working_mode);
+			return 0;
+		}
+		target_working_mode = strtol(argv[2], &endptr, 10);
+		if (*endptr != '\0') {
+			return 1;
+		}
+		if (target_working_mode == SUS_SU_WITH_HOOKS) {
+			bool is_sus_su_ready;
+			prctl(KERNEL_SU_OPTION, CMD_SUSFS_IS_SUS_SU_READY, &is_sus_su_ready, NULL, &error);
+			if (error)
+				return error;
+			if (!is_sus_su_ready) {
+                printf("[-] sus_su mode %d has to be run during or after service stage\n", SUS_SU_WITH_HOOKS);
+				return 1;
+			}
+			if (last_working_mode == SUS_SU_DISABLED) {
+				error = enable_sus_su(last_working_mode, SUS_SU_WITH_HOOKS);
+			} else if (last_working_mode == SUS_SU_WITH_HOOKS) {
+                printf("[-] sus_su is already in mode %d\n", last_working_mode);
+				return 1;
+			} else {
+				error = enable_sus_su(last_working_mode, SUS_SU_DISABLED);
+				if (!error)
+					error = enable_sus_su(last_working_mode, SUS_SU_WITH_HOOKS);
+			}
+		} else if (target_working_mode == SUS_SU_DISABLED) {
+			if (last_working_mode == SUS_SU_DISABLED) {
+                printf("[-] sus_su is already in mode %d\n", last_working_mode);
+				return 1;
+			}
+			error = enable_sus_su(last_working_mode, SUS_SU_DISABLED);
+		}
+    } else {
+        fprintf(stderr, "Invalid argument: %s\n", argv[1]);
+        return 1;
+    }
+
+    return 0;
+}