From 318be535a820ad91394059e8429dde658cc746c8 Mon Sep 17 00:00:00 2001 From: weishu Date: Tue, 24 Oct 2023 22:56:27 +0800 Subject: [PATCH] manager: Add missing groups --- .../java/me/weishu/kernelsu/profile/Groups.kt | 61 ++++++++++++++++--- 1 file changed, 52 insertions(+), 9 deletions(-) diff --git a/manager/app/src/main/java/me/weishu/kernelsu/profile/Groups.kt b/manager/app/src/main/java/me/weishu/kernelsu/profile/Groups.kt index 8dd5e9f2..2ddb94dc 100644 --- a/manager/app/src/main/java/me/weishu/kernelsu/profile/Groups.kt +++ b/manager/app/src/main/java/me/weishu/kernelsu/profile/Groups.kt @@ -1,6 +1,7 @@ package me.weishu.kernelsu.profile /** + * https://cs.android.com/android/platform/superproject/main/+/main:system/core/libcutils/include/private/android_filesystem_config.h * @author weishu * @date 2023/6/3. */ @@ -60,17 +61,55 @@ enum class Groups(val gid: Int, val display: String, val desc: String) { FIREWALL(1048, "firewall", "firewall process"), TRUNKS(1049, "trunks", "trunksd process"), NVRAM(1050, "nvram", "nvram daemon"), - DNS_TETHER(1051, "dns_tether", "dns_tether device"), - DNS_TETHER_RESERVED(1052, "dns_tether_reserved", "Reserved range for dns_tether"), - WEBVIEW_ZYGOTE(1053, "webview_zygote", "zygote process"), - WEBVIEW_USER(1054, "webview_user", "webview chromium user"), - ETHERNET(1055, "ethernet", "Ethernet"), - TOMBSTONED(1056, "tombstoned", "tombstoned process"), - GRAPHICS_RW(1057, "graphics_rw", "graphics devices"), + DNS(1051, "dns", "DNS resolution daemon (system: netd)"), + DNS_TETHER(1052, "dns_tether", "DNS resolution daemon (tether: dnsmasq)"), + WEBVIEW_ZYGOTE(1053, "webview_zygote", "WebView zygote process"), + VEHICLE_NETWORK(1054, "vehicle_network", "Vehicle network service"), + MEDIA_AUDIO(1055, "media_audio", "GID for audio files on internal media storage"), + MEDIA_VIDEO(1056, "media_video", "GID for video files on internal media storage"), + MEDIA_IMAGE(1057, "media_image", "GID for image files on internal media storage"), + TOMBSTONED(1058, "tombstoned", "tombstoned user"), + MEDIA_OBB(1059, "media_obb", "GID for OBB files on internal media storage"), + ESE(1060, "ese", "embedded secure element (eSE) subsystem"), + OTA_UPDATE(1061, "ota_update", "resource tracking UID for OTA updates"), + AUTOMOTIVE_EVS(1062, "automotive_evs", "Automotive rear and surround view system"), + LOWPAN(1063, "lowpan", "LoWPAN subsystem"), + HSM(1064, "lowpan", "hardware security module subsystem"), + RESERVED_DISK(1065, "reserved_disk", "GID that has access to reserved disk space"), + STATSD(1066, "statsd", "statsd daemon"), + INCIDENTD(1067, "incidentd", "incidentd daemon"), + SECURE_ELEMENT(1068, "secure_element", "secure element subsystem"), + LMKD(1069, "lmkd", "low memory killer daemon"), + LLKD(1070, "llkd", "live lock daemon"), + IORAPD(1071, "iorapd", "input/output readahead and pin daemon"), + GPU_SERVICE(1072, "gpu_service", "GPU service daemon"), + NETWORK_STACK(1073, "network_stack", "network stack service"), + GSID(1074, "GSID", "GSI service daemon"), + FSVERITY_CERT(1075, "fsverity_cert", "fs-verity key ownership in keystore"), + CREDSTORE(1076, "credstore", "identity credential manager service"), + EXTERNAL_STORAGE(1077, "external_storage", "Full external storage access including USB OTG volumes"), + EXT_DATA_RW(1078, "ext_data_rw", "GID for app-private data directories on external storage"), + EXT_OBB_RW(1079, "ext_obb_rw", "GID for OBB directories on external storage"), + CONTEXT_HUB(1080, "context_hub", "GID for access to the Context Hub"), + VIRTUALIZATIONSERVICE(1081, "virtualizationservice", "VirtualizationService daemon"), + ARTD(1082, "artd", "ART Service daemon"), + UWB(1083, "uwb", "UWB subsystem"), + THREAD_NETWORK(1084, "thread_network", "Thread Network subsystem"), + DICED(1085, "diced", "Android's DICE daemon"), + DMESGD(1086, "dmesgd", "dmesg parsing daemon for kernel report collection"), + JC_WEAVER(1087, "jc_weaver", "Javacard Weaver HAL - to manage omapi ARA rules"), + JC_STRONGBOX(1088, "jc_strongbox", "Javacard Strongbox HAL - to manage omapi ARA rules"), + JC_IDENTITYCRED(1089, "jc_identitycred", "Javacard Identity Cred HAL - to manage omapi ARA rules"), + SDK_SANDBOX(1090, "sdk_sandbox", "SDK sandbox virtual UID"), + SECURITY_LOG_WRITER(1091, "security_log_writer", "write to security log"), + PRNG_SEEDER(1092, "prng_seeder", "PRNG seeder daemon"), SHELL(2000, "shell", "adb and debug shell user"), CACHE(2001, "cache", "cache access"), - DIAG(2002, "diag", "diagnostics"), + DIAG(2002, "diag", "access to diagnostic resources"), + + /* The 3000 series are intended for use as supplemental group id's only. + * They indicate special Android capabilities that the kernel is aware of. */ NET_BT_ADMIN(3001, "net_bt_admin", "bluetooth: create any socket"), NET_BT(3002, "net_bt", "bluetooth: create sco, rfcomm or l2cap sockets"), INET(3003, "inet", "can create AF_INET and AF_INET6 sockets"), @@ -79,7 +118,11 @@ enum class Groups(val gid: Int, val display: String, val desc: String) { NET_BW_STATS(3006, "net_bw_stats", "read bandwidth statistics"), NET_BW_ACCT(3007, "net_bw_acct", "change bandwidth statistics accounting"), NET_BT_STACK(3008, "net_bt_stack", "access to various bluetooth management functions"), - QCOM_DIAG(3009, "qcom_diag", "allow msm specific diag commands"), + READPROC(3009, "readproc", "Allow /proc read access"), + WAKELOCK(3010, "wakelock", "Allow system wakelock read/write access"), + UHID(3011, "uhid", "Allow read/write to /dev/uhid node"), + READTRACEFS(3012, "readtracefs", "Allow tracefs read"), + EVERYBODY(9997, "everybody", "Shared external storage read/write"), MISC(9998, "misc", "Access to misc storage"), NOBODY(9999, "nobody", "Reserved"),