Switch kretprobe to heap

Co-authored-by: Ylarod <me@ylarod.cn>

kernel/sucompat.c

@@ -18,6 +18,7 @@
 #else
 #include <linux/sched.h>
 #endif
+#include <linux/spinlock.h>
 #include <asm/syscall.h>
 #include <trace/events/syscalls.h>
 #ifdef CONFIG_KSU_SUSFS_SUS_SU
@@ -257,12 +258,6 @@ int ksu_handle_stat(int *dfd, const char __user **filename_user, int *flags)
     return 0;
 }
 
-int ksu_handle_execveat(int *fd, struct filename **filename_ptr, void *argv,
-            void *envp, int *flags)
-{
-    return ksu_handle_execveat_sucompat(fd, filename_ptr, argv, envp, flags);
-}
-
 // the call from execve_handler_pre won't provided correct value for __never_use_argument, use them after fix execve_handler_pre, keeping them for consistence for manually patched code
 int ksu_handle_execveat_sucompat(int *fd, struct filename **filename_ptr,
                  void *__never_use_argv, void *__never_use_envp,
@@ -316,6 +311,12 @@ int ksu_handle_execveat_sucompat(int *fd, struct filename **filename_ptr,
     return 0;
 }
 
+int ksu_handle_execveat(int *fd, struct filename **filename_ptr, void *argv,
+            void *envp, int *flags)
+{
+    return ksu_handle_execveat_sucompat(fd, filename_ptr, argv, envp, flags);
+}
+
 int ksu_handle_execve_sucompat(int *fd, const char __user **filename_user,
                    void *__never_use_argv, void *__never_use_envp,
                    int *__never_use_flags)
@@ -501,12 +502,49 @@ static struct kprobe *pts_kp = NULL;
 
 #ifdef CONFIG_KRETPROBES
 
+static struct kretprobe *init_kretprobe(const char *name,
+                                        kretprobe_handler_t handler)
+{
+    struct kretprobe *rp = kzalloc(sizeof(struct kretprobe), GFP_KERNEL);
+    if (!rp)
+        return NULL;
+    rp->kp.symbol_name = name;
+    rp->handler = handler;
+    rp->data_size = 0;
+    rp->maxactive = 0;
+
+    int ret = register_kretprobe(rp);
+    pr_info("sucompat: register_%s kretprobe: %d\n", name, ret);
+    if (ret) {
+        kfree(rp);
+        return NULL;
+    }
+
+    return rp;
+}
+
+static void destroy_kretprobe(struct kretprobe **rp_ptr)
+{
+    struct kretprobe *rp = *rp_ptr;
+    if (!rp)
+        return;
+    unregister_kretprobe(rp);
+    synchronize_rcu();
+    kfree(rp);
+    *rp_ptr = NULL;
+}
+
+#endif
+
+#ifdef CONFIG_KRETPROBES
+
 static int tracepoint_reg_count = 0;
-static DEFINE_MUTEX(tracepoint_reg_mutex);
+static DEFINE_SPINLOCK(tracepoint_reg_lock);
 
 static int syscall_regfunc_handler(struct kretprobe_instance *ri, struct pt_regs *regs)
 {
-    mutex_lock(&tracepoint_reg_mutex);
+    unsigned long flags;
+    spin_lock_irqsave(&tracepoint_reg_lock, flags);
     if (tracepoint_reg_count < 1) {
         // while install our tracepoint, mark our processes
         unmark_all_process();
@@ -516,13 +554,14 @@ static int syscall_regfunc_handler(struct kretprobe_instance *ri, struct pt_regs
         mark_all_process();
     }
     tracepoint_reg_count++;
-    mutex_unlock(&tracepoint_reg_mutex);
+    spin_unlock_irqrestore(&tracepoint_reg_lock, flags);
     return 0;
 }
 
 static int syscall_unregfunc_handler(struct kretprobe_instance *ri, struct pt_regs *regs)
 {
-    mutex_lock(&tracepoint_reg_mutex);
+    unsigned long flags;
+    spin_lock_irqsave(&tracepoint_reg_lock, flags);
     if (tracepoint_reg_count <= 1) {
         // while uninstall our tracepoint, unmark all processes
         unmark_all_process();
@@ -532,25 +571,12 @@ static int syscall_unregfunc_handler(struct kretprobe_instance *ri, struct pt_re
         ksu_mark_running_process();
     }
     tracepoint_reg_count--;
-    mutex_unlock(&tracepoint_reg_mutex);
+    spin_unlock_irqrestore(&tracepoint_reg_lock, flags);
     return 0;
 }
 
-struct kretprobe syscall_regfunc_rp = {
-    .kp.symbol_name = "syscall_regfunc",
-    .handler = syscall_regfunc_handler,
-    .entry_handler = NULL,
-    .data_size = 0,
-    .maxactive = 0,
-};
-
-struct kretprobe syscall_unregfunc_rp = {
-    .kp.symbol_name = "syscall_unregfunc",
-    .handler = syscall_unregfunc_handler,
-    .entry_handler = NULL,
-    .data_size = 0,
-    .maxactive = 0,
-};
+static struct kretprobe *syscall_regfunc_rp = NULL;
+static struct kretprobe *syscall_unregfunc_rp = NULL;
 #endif
 
 void ksu_sucompat_enable()
@@ -564,22 +590,13 @@ void ksu_sucompat_enable()
 #endif
 
 #ifdef CONFIG_KRETPROBES
-    ret = register_kretprobe(&syscall_regfunc_rp);
-    if (ret) {
-        pr_err("sucompat: failed to register syscall_regfunc kretprobe: %d\n", ret);
-    } else {
-        pr_info("sucompat: syscall_regfunc kretprobe registered\n");
-    }
-    ret = register_kretprobe(&syscall_unregfunc_rp);
-    if (ret) {
-        pr_err("sucompat: failed to register syscall_unregfunc kretprobe: %d\n", ret);
-    } else {
-        pr_info("sucompat: syscall_unregfunc kretprobe registered\n");
-    }
+    // Register kretprobe for syscall_regfunc
+    syscall_regfunc_rp = init_kretprobe("syscall_regfunc", syscall_regfunc_handler);
+    // Register kretprobe for syscall_unregfunc
+    syscall_unregfunc_rp = init_kretprobe("syscall_unregfunc", syscall_unregfunc_handler);
 #endif
 
 #ifdef KSU_HAVE_SYSCALL_TRACEPOINTS_HOOK
-    // Register sys_enter tracepoint for syscall interception
     ret = register_trace_sys_enter(sucompat_sys_enter_handler, NULL);
 #ifndef CONFIG_KRETPROBES
     unmark_all_process();
@@ -600,7 +617,6 @@ void ksu_sucompat_disable()
 {
     pr_info("sucompat: ksu_sucompat_disable called\n");
 #ifdef KSU_HAVE_SYSCALL_TRACEPOINTS_HOOK
-    // Unregister sys_enter tracepoint
     unregister_trace_sys_enter(sucompat_sys_enter_handler, NULL);
     tracepoint_synchronize_unregister();
     pr_info("sucompat: sys_enter tracepoint unregistered\n");
@@ -610,16 +626,11 @@ void ksu_sucompat_disable()
 #endif
 
 #ifdef CONFIG_KRETPROBES
-    // Unregister syscall_regfunc kretprobe
-    unregister_kretprobe(&syscall_regfunc_rp);
-    pr_info("sucompat: syscall_regfunc kretprobe unregistered\n");
-    // Unregister syscall_unregfunc kretprobe
-    unregister_kretprobe(&syscall_unregfunc_rp);
-    pr_info("sucompat: syscall_unregfunc kretprobe unregistered\n");
+    destroy_kretprobe(&syscall_regfunc_rp);
+    destroy_kretprobe(&syscall_unregfunc_rp);
 #endif
 
 #ifdef KSU_KPROBES_HOOK
-    // Unregister pts_unix98_lookup kprobe
     destroy_kprobe(&pts_kp);
 #endif
 }