kernel: use sys_enter tracepoint for sucompat (#533)

* use sys_enter tracepoint for sucompat * update sucompat rules * clean tif mark * mark tif after load allow list * clear all tif first, then mark target * Fix shell su * allow when escape * fix bugs * kernel: Resolve logical inconsistencies --------- Co-authored-by: Ylarod <me@ylarod.cn> Co-authored-by: weishu <twsxtd@gmail.com>
2025-11-06 12:45:37 +08:00
parent 0ce7bc2627
commit 5323a500dd
17 changed files with 204 additions and 277 deletions
--- a/kernel/allowlist.c
+++ b/kernel/allowlist.c
@@ -92,10 +92,7 @@ static uint8_t allow_list_bitmap[PAGE_SIZE] __read_mostly __aligned(PAGE_SIZE);

 #define KERNEL_SU_ALLOWLIST "/data/adb/ksu/.allowlist"

-static struct work_struct ksu_save_work;
-static struct work_struct ksu_load_work;
-
-static bool persistent_allow_list(void);
+void save_allow_list(void);

 void ksu_show_allow_list(void)
 {
@@ -255,7 +252,7 @@ out:
    }

    if (persist)
-        persistent_allow_list();
+        save_allow_list();

    return result;
 }
@@ -351,7 +348,8 @@ bool ksu_get_allow_list(int *array, int *length, bool allow)
    return true;
 }

-static void do_save_allow_list(struct work_struct *work)
+// make sure allow list works cross boot
+void save_allow_list(void)
 {
    u32 magic = FILE_MAGIC;
    u32 version = FILE_FORMAT_VERSION;
@@ -393,7 +391,7 @@ exit:
    filp_close(fp, 0);
 }

-static void do_load_allow_list(struct work_struct *work)
+void ksu_load_allow_list()
 {
    loff_t off = 0;
    ssize_t ret = 0;
@@ -478,21 +476,10 @@ void ksu_prune_allowlist(bool (*is_uid_valid)(uid_t, char *, void *), void *data
    mutex_unlock(&allowlist_mutex);

    if (modified) {
-        persistent_allow_list();
+        save_allow_list();
    }
 }

-// make sure allow list works cross boot
-static bool persistent_allow_list(void)
-{
-    return ksu_queue_work(&ksu_save_work);
-}
-
-bool ksu_load_allow_list(void)
-{
-    return ksu_queue_work(&ksu_load_work);
-}
-
 void ksu_allowlist_init(void)
 {
    int i;
@@ -505,9 +492,6 @@ void ksu_allowlist_init(void)

    INIT_LIST_HEAD(&allow_list);

-    INIT_WORK(&ksu_save_work, do_save_allow_list);
-    INIT_WORK(&ksu_load_work, do_load_allow_list);
-
    init_default_profiles();
 }

@@ -516,7 +500,7 @@ void ksu_allowlist_exit(void)
    struct perm_data *np = NULL;
    struct perm_data *n = NULL;

-    do_save_allow_list(NULL);
+    save_allow_list();

    // free allowlist
    mutex_lock(&allowlist_mutex);