kernel: refine syscall_hook_manager

- Don't unmark process when setuid if syscall tracepoint is in use - Remark process when app profile updated - Ensure zygote is marked on first boot
2025-11-13 19:50:54 +08:00
parent 490cc39180
commit 9203006028
7 changed files with 68 additions and 28 deletions
--- a/kernel/allowlist.c
+++ b/kernel/allowlist.c
@@ -21,6 +21,7 @@
 #include "selinux/selinux.h"
 #include "allowlist.h"
 #include "manager.h"
+#include "syscall_hook_manager.h"

 #define FILE_MAGIC 0x7f4b5355 // ' KSU', u32
 #define FILE_FORMAT_VERSION 3 // u32
@@ -259,8 +260,11 @@ out:
               sizeof(default_root_profile));
    }

-    if (persist)
+    if (persist) {
        persistent_allow_list();
+        // FIXME: use a new flag
+        ksu_mark_running_process();
+    }

    return result;
 }