ShirkNeko
@@ -217,7 +217,11 @@ static int get_object(char *buf, char __user *user_object, size_t buf_sz,
|
||||
|
||||
return 0;
|
||||
}
|
||||
|
||||
#if (LINUX_VERSION_CODE >= KERNEL_VERSION(6, 4, 0))
|
||||
extern int avc_ss_reset(u32 seqno);
|
||||
#else
|
||||
extern int avc_ss_reset(struct selinux_avc *avc, u32 seqno);
|
||||
#endif
|
||||
// reset avc cache table, otherwise the new rules will not take effect if already denied
|
||||
static void reset_avc_cache(void)
|
||||
{
|
||||
|
||||
@@ -18,6 +18,7 @@
|
||||
#else
|
||||
#include <linux/sched.h>
|
||||
#endif
|
||||
#include <linux/spinlock.h>
|
||||
#include <asm/syscall.h>
|
||||
#include <trace/events/syscalls.h>
|
||||
#ifdef CONFIG_KSU_SUSFS_SUS_SU
|
||||
@@ -257,12 +258,6 @@ int ksu_handle_stat(int *dfd, const char __user **filename_user, int *flags)
|
||||
return 0;
|
||||
}
|
||||
|
||||
int ksu_handle_execveat(int *fd, struct filename **filename_ptr, void *argv,
|
||||
void *envp, int *flags)
|
||||
{
|
||||
return ksu_handle_execveat_sucompat(fd, filename_ptr, argv, envp, flags);
|
||||
}
|
||||
|
||||
// the call from execve_handler_pre won't provided correct value for __never_use_argument, use them after fix execve_handler_pre, keeping them for consistence for manually patched code
|
||||
int ksu_handle_execveat_sucompat(int *fd, struct filename **filename_ptr,
|
||||
void *__never_use_argv, void *__never_use_envp,
|
||||
@@ -316,6 +311,12 @@ int ksu_handle_execveat_sucompat(int *fd, struct filename **filename_ptr,
|
||||
return 0;
|
||||
}
|
||||
|
||||
int ksu_handle_execveat(int *fd, struct filename **filename_ptr, void *argv,
|
||||
void *envp, int *flags)
|
||||
{
|
||||
return ksu_handle_execveat_sucompat(fd, filename_ptr, argv, envp, flags);
|
||||
}
|
||||
|
||||
int ksu_handle_execve_sucompat(int *fd, const char __user **filename_user,
|
||||
void *__never_use_argv, void *__never_use_envp,
|
||||
int *__never_use_flags)
|
||||
@@ -501,12 +502,49 @@ static struct kprobe *pts_kp = NULL;
|
||||
|
||||
#ifdef CONFIG_KRETPROBES
|
||||
|
||||
static struct kretprobe *init_kretprobe(const char *name,
|
||||
kretprobe_handler_t handler)
|
||||
{
|
||||
struct kretprobe *rp = kzalloc(sizeof(struct kretprobe), GFP_KERNEL);
|
||||
if (!rp)
|
||||
return NULL;
|
||||
rp->kp.symbol_name = name;
|
||||
rp->handler = handler;
|
||||
rp->data_size = 0;
|
||||
rp->maxactive = 0;
|
||||
|
||||
int ret = register_kretprobe(rp);
|
||||
pr_info("sucompat: register_%s kretprobe: %d\n", name, ret);
|
||||
if (ret) {
|
||||
kfree(rp);
|
||||
return NULL;
|
||||
}
|
||||
|
||||
return rp;
|
||||
}
|
||||
|
||||
static void destroy_kretprobe(struct kretprobe **rp_ptr)
|
||||
{
|
||||
struct kretprobe *rp = *rp_ptr;
|
||||
if (!rp)
|
||||
return;
|
||||
unregister_kretprobe(rp);
|
||||
synchronize_rcu();
|
||||
kfree(rp);
|
||||
*rp_ptr = NULL;
|
||||
}
|
||||
|
||||
#endif
|
||||
|
||||
#ifdef CONFIG_KRETPROBES
|
||||
|
||||
static int tracepoint_reg_count = 0;
|
||||
static DEFINE_MUTEX(tracepoint_reg_mutex);
|
||||
static DEFINE_SPINLOCK(tracepoint_reg_lock);
|
||||
|
||||
static int syscall_regfunc_handler(struct kretprobe_instance *ri, struct pt_regs *regs)
|
||||
{
|
||||
mutex_lock(&tracepoint_reg_mutex);
|
||||
unsigned long flags;
|
||||
spin_lock_irqsave(&tracepoint_reg_lock, flags);
|
||||
if (tracepoint_reg_count < 1) {
|
||||
// while install our tracepoint, mark our processes
|
||||
unmark_all_process();
|
||||
@@ -516,13 +554,14 @@ static int syscall_regfunc_handler(struct kretprobe_instance *ri, struct pt_regs
|
||||
mark_all_process();
|
||||
}
|
||||
tracepoint_reg_count++;
|
||||
mutex_unlock(&tracepoint_reg_mutex);
|
||||
spin_unlock_irqrestore(&tracepoint_reg_lock, flags);
|
||||
return 0;
|
||||
}
|
||||
|
||||
static int syscall_unregfunc_handler(struct kretprobe_instance *ri, struct pt_regs *regs)
|
||||
{
|
||||
mutex_lock(&tracepoint_reg_mutex);
|
||||
unsigned long flags;
|
||||
spin_lock_irqsave(&tracepoint_reg_lock, flags);
|
||||
if (tracepoint_reg_count <= 1) {
|
||||
// while uninstall our tracepoint, unmark all processes
|
||||
unmark_all_process();
|
||||
@@ -532,25 +571,12 @@ static int syscall_unregfunc_handler(struct kretprobe_instance *ri, struct pt_re
|
||||
ksu_mark_running_process();
|
||||
}
|
||||
tracepoint_reg_count--;
|
||||
mutex_unlock(&tracepoint_reg_mutex);
|
||||
spin_unlock_irqrestore(&tracepoint_reg_lock, flags);
|
||||
return 0;
|
||||
}
|
||||
|
||||
struct kretprobe syscall_regfunc_rp = {
|
||||
.kp.symbol_name = "syscall_regfunc",
|
||||
.handler = syscall_regfunc_handler,
|
||||
.entry_handler = NULL,
|
||||
.data_size = 0,
|
||||
.maxactive = 0,
|
||||
};
|
||||
|
||||
struct kretprobe syscall_unregfunc_rp = {
|
||||
.kp.symbol_name = "syscall_unregfunc",
|
||||
.handler = syscall_unregfunc_handler,
|
||||
.entry_handler = NULL,
|
||||
.data_size = 0,
|
||||
.maxactive = 0,
|
||||
};
|
||||
static struct kretprobe *syscall_regfunc_rp = NULL;
|
||||
static struct kretprobe *syscall_unregfunc_rp = NULL;
|
||||
#endif
|
||||
|
||||
void ksu_sucompat_enable()
|
||||
@@ -564,22 +590,13 @@ void ksu_sucompat_enable()
|
||||
#endif
|
||||
|
||||
#ifdef CONFIG_KRETPROBES
|
||||
ret = register_kretprobe(&syscall_regfunc_rp);
|
||||
if (ret) {
|
||||
pr_err("sucompat: failed to register syscall_regfunc kretprobe: %d\n", ret);
|
||||
} else {
|
||||
pr_info("sucompat: syscall_regfunc kretprobe registered\n");
|
||||
}
|
||||
ret = register_kretprobe(&syscall_unregfunc_rp);
|
||||
if (ret) {
|
||||
pr_err("sucompat: failed to register syscall_unregfunc kretprobe: %d\n", ret);
|
||||
} else {
|
||||
pr_info("sucompat: syscall_unregfunc kretprobe registered\n");
|
||||
}
|
||||
// Register kretprobe for syscall_regfunc
|
||||
syscall_regfunc_rp = init_kretprobe("syscall_regfunc", syscall_regfunc_handler);
|
||||
// Register kretprobe for syscall_unregfunc
|
||||
syscall_unregfunc_rp = init_kretprobe("syscall_unregfunc", syscall_unregfunc_handler);
|
||||
#endif
|
||||
|
||||
#ifdef KSU_HAVE_SYSCALL_TRACEPOINTS_HOOK
|
||||
// Register sys_enter tracepoint for syscall interception
|
||||
ret = register_trace_sys_enter(sucompat_sys_enter_handler, NULL);
|
||||
#ifndef CONFIG_KRETPROBES
|
||||
unmark_all_process();
|
||||
@@ -600,7 +617,6 @@ void ksu_sucompat_disable()
|
||||
{
|
||||
pr_info("sucompat: ksu_sucompat_disable called\n");
|
||||
#ifdef KSU_HAVE_SYSCALL_TRACEPOINTS_HOOK
|
||||
// Unregister sys_enter tracepoint
|
||||
unregister_trace_sys_enter(sucompat_sys_enter_handler, NULL);
|
||||
tracepoint_synchronize_unregister();
|
||||
pr_info("sucompat: sys_enter tracepoint unregistered\n");
|
||||
@@ -610,16 +626,11 @@ void ksu_sucompat_disable()
|
||||
#endif
|
||||
|
||||
#ifdef CONFIG_KRETPROBES
|
||||
// Unregister syscall_regfunc kretprobe
|
||||
unregister_kretprobe(&syscall_regfunc_rp);
|
||||
pr_info("sucompat: syscall_regfunc kretprobe unregistered\n");
|
||||
// Unregister syscall_unregfunc kretprobe
|
||||
unregister_kretprobe(&syscall_unregfunc_rp);
|
||||
pr_info("sucompat: syscall_unregfunc kretprobe unregistered\n");
|
||||
destroy_kretprobe(&syscall_regfunc_rp);
|
||||
destroy_kretprobe(&syscall_unregfunc_rp);
|
||||
#endif
|
||||
|
||||
#ifdef KSU_KPROBES_HOOK
|
||||
// Unregister pts_unix98_lookup kprobe
|
||||
destroy_kprobe(&pts_kp);
|
||||
#endif
|
||||
}
|
||||
|
||||
Reference in New Issue
Block a user