kernel: add wrapper for creds, refine disable_seccomp, revert some changes (#131)

1. Wrapper for creds: * Some older kernel does not have {.val}, so, for nicer compatibility support and clean code, make some wrapper for credential use. * After this change, do not use current_uid().val, instead, use ksu_current_uid(). For more info, check kernel/include/ksu_creds.h. 2. Refine disable_seccomp (need to add k6.11+ support) https://github.com/tiann/KernelSU/pull/2708 https://github.com/tiann/KernelSU/issues/2706 3. Revert "Handle unmount for isolated process correctly" Reason: https://github.com/tiann/KernelSU/pull/2696#issuecomment-3181866301 4. consolidate most of the gaps Co-authored-by: Wang Han <416810799@qq.com>
2025-08-16 11:19:30 +07:00
parent 665091f37d
commit ff6a68221f
11 changed files with 227 additions and 175 deletions
--- a/kernel/kernel_compat.c
+++ b/kernel/kernel_compat.c
@@ -178,3 +178,33 @@ long ksu_strncpy_from_user_nofault(char *dst, const void __user *unsafe_addr,
 	return ret;
 }
 #endif
+
+long ksu_strncpy_from_user_retry(char *dst, const void __user *unsafe_addr,
+				   long count)
+{
+	long ret;
+
+	ret = ksu_strncpy_from_user_nofault(dst, unsafe_addr, count);
+	if (likely(ret >= 0))
+		return ret;
+
+	// we faulted! fallback to slow path
+	if (unlikely(!ksu_access_ok(unsafe_addr, count))) {
+#ifdef CONFIG_KSU_DEBUG
+		pr_err("%s: faulted!\n", __func__);
+#endif
+		return -EFAULT;
+	}
+
+	// why we don't do like how strncpy_from_user_nofault?
+	ret = strncpy_from_user(dst, unsafe_addr, count);
+
+	if (ret >= count) {
+		ret = count;
+		dst[ret - 1] = '\0';
+	} else if (likely(ret >= 0)) {
+		ret++;
+	}
+
+	return ret;
+}