ShirkNeko
ee781cf959
kernel: Fixed potential null pointer issue with current->mm in kernel version 5.10
...
When calling get_full_comm() within system call hooks, current->mm may be null (prctl). A fallback mechanism for current->comm must be added beforehand to prevent null pointer dereferences when accessing mm->arg_start/arg_end.
Signed-off-by: ShirkNeko <109797057+ShirkNeko@users.noreply.github.com >
2025-10-27 22:02:12 +08:00
ShirkNeko
64ee09fd12
kernel: Enable macro protection for sulog
...
- Only enabled on kernel versions greater than 5.10.245
2025-10-25 00:45:43 +08:00
ShirkNeko
6a1e1d788b
kernel: sulog: Simplify code using vfs_truncate
2025-10-23 22:16:06 +08:00
ShirkNeko
4b86989bf9
kernel: Restore the sequence of sulog logs
2025-10-23 21:48:55 +08:00
ShirkNeko
d3f8c128da
kernel: Add a UID blacklist feature to restrict the operational permissions of specific users
2025-10-23 02:08:45 +08:00
ShirkNeko
e9ee2304d3
kernel: Extend sulog to also record system call logs
2025-10-22 20:56:46 +08:00
ShirkNeko
f7b4b4b82d
kernel: Optimized log timestamp processing and added manual refresh functionality.
2025-10-22 18:42:50 +08:00
ShirkNeko
3b966c536b
Kernel: Implement sulog for enhanced logging of SU attempts and permissions
2025-10-22 17:21:25 +08:00
