Land rapid7#7461, convert futex_requeue (towelroot) module to use targetting and core_loadlib

Author: Brent Cook

data/exploits/CVE-2014-3153.elf

@@ -3,8 +3,19 @@ LOCAL_PATH := $(call my-dir)
 
 include $(CLEAR_VARS)
 
-LOCAL_MODULE    := exploit
-LOCAL_SRC_FILES := exploit.c
-LOCAL_CFLAGS := -fno-stack-protector -O0
+LOCAL_MODULE    := debugexploit
+LOCAL_SRC_FILES := futex_requeue.c main.c
+LOCAL_LDFLAGS   += -llog
+LOCAL_CFLAGS    += -DDEBUG
+LOCAL_CFLAGS    += -fno-stack-protector -O0
 include $(BUILD_EXECUTABLE)
 
+include $(CLEAR_VARS)
+
+LOCAL_CFLAGS    += -fno-stack-protector -O0
+LOCAL_MODULE    := exploit
+LOCAL_SRC_FILES := futex_requeue.c main.c
+
+include $(BUILD_SHARED_LIBRARY)
+
+

external/source/exploits/CVE-2014-3153/Android.mk

@@ -2,14 +2,16 @@
 all: install
 
 build:
-	ndk-build NDK_PROJECT_PATH=. APP_BUILD_SCRIPT=./Android.mk
+	ndk-build NDK_PROJECT_PATH=. APP_BUILD_SCRIPT=./Android.mk APP_ABI=armeabi
 
 install: build
-	mv libs/armeabi/exploit ../../../../data/exploits/CVE-2014-3153.elf
+	mv libs/armeabi/libexploit.so ../../../../data/exploits/CVE-2014-3153.so
 
-test: build
-	adb push libs/armeabi/exploit /data/local/tmp/exploit
-	adb shell "cd /data/local/tmp; ./exploit id"
+push: build
+	adb push libs/armeabi/debugexploit /data/local/tmp/futex
+
+run: push
+	adb shell "/data/local/tmp/futex"
 
 clean:
 	rm -rf libs