kernel: remove ksu_compat_{open,read,write} because we're in the right context now

Author: tiann

kernel/allowlist.c

@@ -29,7 +29,8 @@ static DEFINE_MUTEX(allowlist_mutex);
 static struct root_profile default_root_profile;
 static struct non_root_profile default_non_root_profile;
 
-static int allow_list_arr[PAGE_SIZE / sizeof(int)] __read_mostly __aligned(PAGE_SIZE);
+static int allow_list_arr[PAGE_SIZE / sizeof(int)] __read_mostly
+    __aligned(PAGE_SIZE);
 static int allow_list_pointer __read_mostly = 0;
 
 static void remove_uid_from_arr(uid_t uid)
@@ -70,7 +71,7 @@ static void init_default_profiles()
     default_root_profile.groups_count = 1;
     default_root_profile.groups[0] = 0;
     memcpy(&default_root_profile.capabilities.effective, &full_cap,
-        sizeof(default_root_profile.capabilities.effective));
+           sizeof(default_root_profile.capabilities.effective));
     default_root_profile.namespaces = 0;
     strcpy(default_root_profile.selinux_domain, KSU_DEFAULT_SELINUX_DOMAIN);
 
@@ -100,7 +101,7 @@ void ksu_show_allow_list(void)
     list_for_each (pos, &allow_list) {
         p = list_entry(pos, struct perm_data, list);
         pr_info("uid :%d, allow: %d\n", p->profile.current_uid,
-            p->profile.allow_su);
+                p->profile.allow_su);
     }
 }
 
@@ -113,7 +114,8 @@ static void ksu_grant_root_to_shell()
         .current_uid = 2000,
     };
     strcpy(profile.key, "com.android.shell");
-    strcpy(profile.rp_config.profile.selinux_domain, KSU_DEFAULT_SELINUX_DOMAIN);
+    strcpy(profile.rp_config.profile.selinux_domain,
+           KSU_DEFAULT_SELINUX_DOMAIN);
     ksu_set_app_profile(&profile, false);
 }
 #endif
@@ -139,9 +141,10 @@ bool ksu_get_app_profile(struct app_profile *profile)
     return found;
 }
 
-static inline bool forbid_system_uid(uid_t uid) {
-    #define SHELL_UID 2000
-    #define SYSTEM_UID 1000
+static inline bool forbid_system_uid(uid_t uid)
+{
+#define SHELL_UID 2000
+#define SYSTEM_UID 1000
     return uid < SHELL_UID && uid != SYSTEM_UID;
 }
 
@@ -202,22 +205,24 @@ bool ksu_set_app_profile(struct app_profile *profile, bool persist)
     memcpy(&p->profile, profile, sizeof(*profile));
     if (profile->allow_su) {
         pr_info("set root profile, key: %s, uid: %d, gid: %d, context: %s\n",
-            profile->key, profile->current_uid,
-            profile->rp_config.profile.gid,
-            profile->rp_config.profile.selinux_domain);
+                profile->key, profile->current_uid,
+                profile->rp_config.profile.gid,
+                profile->rp_config.profile.selinux_domain);
     } else {
         pr_info("set app profile, key: %s, uid: %d, umount modules: %d\n",
-            profile->key, profile->current_uid,
-            profile->nrp_config.profile.umount_modules);
+                profile->key, profile->current_uid,
+                profile->nrp_config.profile.umount_modules);
     }
     list_add_tail(&p->list, &allow_list);
 
 out:
     if (profile->current_uid <= BITMAP_UID_MAX) {
         if (profile->allow_su)
-            allow_list_bitmap[profile->current_uid / BITS_PER_BYTE] |= 1 << (profile->current_uid % BITS_PER_BYTE);
+            allow_list_bitmap[profile->current_uid / BITS_PER_BYTE] |=
+                1 << (profile->current_uid % BITS_PER_BYTE);
         else
-            allow_list_bitmap[profile->current_uid / BITS_PER_BYTE] &= ~(1 << (profile->current_uid % BITS_PER_BYTE));
+            allow_list_bitmap[profile->current_uid / BITS_PER_BYTE] &=
+                ~(1 << (profile->current_uid % BITS_PER_BYTE));
     } else {
         if (profile->allow_su) {
             /*
@@ -264,13 +269,15 @@ bool __ksu_is_allow_uid(uid_t uid)
         return false;
     }
 
-    if (likely(ksu_is_manager_uid_valid()) && unlikely(ksu_get_manager_uid() == uid)) {
+    if (likely(ksu_is_manager_uid_valid()) &&
+        unlikely(ksu_get_manager_uid() == uid)) {
         // manager is always allowed!
         return true;
     }
 
     if (likely(uid <= BITMAP_UID_MAX)) {
-        return !!(allow_list_bitmap[uid / BITS_PER_BYTE] & (1 << (uid % BITS_PER_BYTE)));
+        return !!(allow_list_bitmap[uid / BITS_PER_BYTE] &
+                  (1 << (uid % BITS_PER_BYTE)));
     } else {
         for (i = 0; i < allow_list_pointer; i++) {
             if (allow_list_arr[i] == uid)
@@ -293,7 +300,8 @@ bool __ksu_is_allow_uid_for_current(uid_t uid)
 bool ksu_uid_should_umount(uid_t uid)
 {
     struct app_profile profile = { .current_uid = uid };
-    if (likely(ksu_is_manager_uid_valid()) && unlikely(ksu_get_manager_uid() == uid)) {
+    if (likely(ksu_is_manager_uid_valid()) &&
+        unlikely(ksu_get_manager_uid() == uid)) {
         // we should not umount on manager!
         return false;
     }
@@ -366,26 +374,22 @@ void persistent_allow_list()
     }
 
     // store magic and version
-    if (ksu_kernel_write_compat(fp, &magic, sizeof(magic), &off) !=
-        sizeof(magic)) {
+    if (kernel_write(fp, &magic, sizeof(magic), &off) != sizeof(magic)) {
         pr_err("save_allow_list write magic failed.\n");
         goto exit;
     }
 
-    if (ksu_kernel_write_compat(fp, &version, sizeof(version), &off) !=
-        sizeof(version)) {
+    if (kernel_write(fp, &version, sizeof(version), &off) != sizeof(version)) {
         pr_err("save_allow_list write version failed.\n");
         goto exit;
     }
 
     list_for_each (pos, &allow_list) {
         p = list_entry(pos, struct perm_data, list);
         pr_info("save allow list, name: %s uid :%d, allow: %d\n",
-            p->profile.key, p->profile.current_uid,
-            p->profile.allow_su);
+                p->profile.key, p->profile.current_uid, p->profile.allow_su);
 
-        ksu_kernel_write_compat(fp, &p->profile, sizeof(p->profile),
-                    &off);
+        kernel_write(fp, &p->profile, sizeof(p->profile), &off);
     }
 
 exit:
@@ -413,15 +417,13 @@ void ksu_load_allow_list()
     }
 
     // verify magic
-    if (ksu_kernel_read_compat(fp, &magic, sizeof(magic), &off) !=
-            sizeof(magic) ||
+    if (kernel_read(fp, &magic, sizeof(magic), &off) != sizeof(magic) ||
         magic != FILE_MAGIC) {
         pr_err("allowlist file invalid: %d!\n", magic);
         goto exit;
     }
 
-    if (ksu_kernel_read_compat(fp, &version, sizeof(version), &off) !=
-        sizeof(version)) {
+    if (kernel_read(fp, &version, sizeof(version), &off) != sizeof(version)) {
         pr_err("allowlist read version: %d failed\n", version);
         goto exit;
     }
@@ -431,16 +433,15 @@ void ksu_load_allow_list()
     while (true) {
         struct app_profile profile;
 
-        ret = ksu_kernel_read_compat(fp, &profile, sizeof(profile),
-                         &off);
+        ret = kernel_read(fp, &profile, sizeof(profile), &off);
 
         if (ret <= 0) {
             pr_info("load_allow_list read err: %zd\n", ret);
             break;
         }
 
-        pr_info("load_allow_uid, name: %s, uid: %d, allow: %d\n",
-            profile.key, profile.current_uid, profile.allow_su);
+        pr_info("load_allow_uid, name: %s, uid: %d, allow: %d\n", profile.key,
+                profile.current_uid, profile.allow_su);
         ksu_set_app_profile(&profile, false);
     }
 
@@ -449,7 +450,8 @@ void ksu_load_allow_list()
     filp_close(fp, 0);
 }
 
-void ksu_prune_allowlist(bool (*is_uid_valid)(uid_t, char *, void *), void *data)
+void ksu_prune_allowlist(bool (*is_uid_valid)(uid_t, char *, void *),
+                         void *data)
 {
     struct perm_data *np = NULL;
     struct perm_data *n = NULL;
@@ -467,7 +469,8 @@ void ksu_prune_allowlist(bool (*is_uid_valid)(uid_t, char *, void *), void *data
             pr_info("prune uid: %d, package: %s\n", uid, package);
             list_del(&np->list);
             if (likely(uid <= BITMAP_UID_MAX)) {
-                allow_list_bitmap[uid / BITS_PER_BYTE] &= ~(1 << (uid % BITS_PER_BYTE));
+                allow_list_bitmap[uid / BITS_PER_BYTE] &=
+                    ~(1 << (uid % BITS_PER_BYTE));
             }
             remove_uid_from_arr(uid);
             smp_mb();

kernel/apk_sign.c

@@ -74,19 +74,19 @@ static int ksu_sha256(const unsigned char *data, unsigned int datalen,
 static bool check_block(struct file *fp, u32 *size4, loff_t *pos, u32 *offset,
             unsigned expected_size, const char *expected_sha256)
 {
-    ksu_kernel_read_compat(fp, size4, 0x4, pos); // signer-sequence length
-    ksu_kernel_read_compat(fp, size4, 0x4, pos); // signer length
-    ksu_kernel_read_compat(fp, size4, 0x4, pos); // signed data length
+    kernel_read(fp, size4, 0x4, pos); // signer-sequence length
+    kernel_read(fp, size4, 0x4, pos); // signer length
+    kernel_read(fp, size4, 0x4, pos); // signed data length
 
     *offset += 0x4 * 3;
 
-    ksu_kernel_read_compat(fp, size4, 0x4, pos); // digests-sequence length
+    kernel_read(fp, size4, 0x4, pos); // digests-sequence length
 
     *pos += *size4;
     *offset += 0x4 + *size4;
 
-    ksu_kernel_read_compat(fp, size4, 0x4, pos); // certificates length
-    ksu_kernel_read_compat(fp, size4, 0x4, pos); // certificate length
+    kernel_read(fp, size4, 0x4, pos); // certificates length
+    kernel_read(fp, size4, 0x4, pos); // certificate length
     *offset += 0x4 * 2;
 
     if (*size4 == expected_size) {
@@ -98,7 +98,7 @@ static bool check_block(struct file *fp, u32 *size4, loff_t *pos, u32 *offset,
             pr_info("cert length overlimit\n");
             return false;
         }
-        ksu_kernel_read_compat(fp, cert, *size4, pos);
+        kernel_read(fp, cert, *size4, pos);
         unsigned char digest[SHA256_DIGEST_SIZE];
         if (IS_ERR(ksu_sha256(cert, *size4, digest))) {
             pr_info("sha256 error\n");
@@ -140,7 +140,7 @@ static bool has_v1_signature_file(struct file *fp)
 
     loff_t pos = 0;
 
-    while (ksu_kernel_read_compat(fp, &header,
+    while (kernel_read(fp, &header,
                       sizeof(struct zip_entry_header), &pos) ==
            sizeof(struct zip_entry_header)) {
         if (header.signature != 0x04034b50) {
@@ -150,7 +150,7 @@ static bool has_v1_signature_file(struct file *fp)
         // Read the entry file name
         if (header.file_name_length == sizeof(MANIFEST) - 1) {
             char fileName[sizeof(MANIFEST)];
-            ksu_kernel_read_compat(fp, fileName,
+            kernel_read(fp, fileName,
                            header.file_name_length, &pos);
             fileName[header.file_name_length] = '\0';
 
@@ -187,7 +187,7 @@ static __always_inline bool check_v2_signature(char *path,
     bool v3_1_signing_exist = false;
 
     int i;
-    struct file *fp = ksu_filp_open_compat(path, O_RDONLY, 0);
+    struct file *fp = filp_open(path, O_RDONLY, 0);
     if (IS_ERR(fp)) {
         pr_err("open %s error.\n", path);
         return false;
@@ -200,10 +200,10 @@ static __always_inline bool check_v2_signature(char *path,
     for (i = 0;; ++i) {
         unsigned short n;
         pos = generic_file_llseek(fp, -i - 2, SEEK_END);
-        ksu_kernel_read_compat(fp, &n, 2, &pos);
+        kernel_read(fp, &n, 2, &pos);
         if (n == i) {
             pos -= 22;
-            ksu_kernel_read_compat(fp, &size4, 4, &pos);
+            kernel_read(fp, &size4, 4, &pos);
             if ((size4 ^ 0xcafebabeu) == 0xccfbf1eeu) {
                 break;
             }
@@ -216,17 +216,17 @@ static __always_inline bool check_v2_signature(char *path,
 
     pos += 12;
     // offset
-    ksu_kernel_read_compat(fp, &size4, 0x4, &pos);
+    kernel_read(fp, &size4, 0x4, &pos);
     pos = size4 - 0x18;
 
-    ksu_kernel_read_compat(fp, &size8, 0x8, &pos);
-    ksu_kernel_read_compat(fp, buffer, 0x10, &pos);
+    kernel_read(fp, &size8, 0x8, &pos);
+    kernel_read(fp, buffer, 0x10, &pos);
     if (strcmp((char *)buffer, "APK Sig Block 42")) {
         goto clean;
     }
 
     pos = size4 - (size8 + 0x8);
-    ksu_kernel_read_compat(fp, &size_of_block, 0x8, &pos);
+    kernel_read(fp, &size_of_block, 0x8, &pos);
     if (size_of_block != size8) {
         goto clean;
     }
@@ -235,12 +235,12 @@ static __always_inline bool check_v2_signature(char *path,
     while (loop_count++ < 10) {
         uint32_t id;
         uint32_t offset;
-        ksu_kernel_read_compat(fp, &size8, 0x8,
+        kernel_read(fp, &size8, 0x8,
                        &pos); // sequence length
         if (size8 == size_of_block) {
             break;
         }
-        ksu_kernel_read_compat(fp, &id, 0x4, &pos); // id
+        kernel_read(fp, &id, 0x4, &pos); // id
         offset = 4;
         if (id == 0x7109871au) {
             v2_signing_blocks++;

kernel/kernel_compat.c

@@ -8,81 +8,6 @@
 #include "klog.h" // IWYU pragma: keep
 #include "kernel_compat.h"
 
-extern struct task_struct init_task;
-
-// mnt_ns context switch for environment that android_init->nsproxy->mnt_ns != init_task.nsproxy->mnt_ns, such as WSA
-struct ksu_ns_fs_saved {
-    struct nsproxy *ns;
-    struct fs_struct *fs;
-};
-
-static void ksu_save_ns_fs(struct ksu_ns_fs_saved *ns_fs_saved)
-{
-    ns_fs_saved->ns = current->nsproxy;
-    ns_fs_saved->fs = current->fs;
-}
-
-static void ksu_load_ns_fs(struct ksu_ns_fs_saved *ns_fs_saved)
-{
-    current->nsproxy = ns_fs_saved->ns;
-    current->fs = ns_fs_saved->fs;
-}
-
-static bool android_context_saved_checked = false;
-static bool android_context_saved_enabled = false;
-static struct ksu_ns_fs_saved android_context_saved;
-
-void ksu_android_ns_fs_check()
-{
-    if (android_context_saved_checked)
-        return;
-    android_context_saved_checked = true;
-    task_lock(current);
-    if (current->nsproxy && current->fs &&
-        current->nsproxy->mnt_ns != init_task.nsproxy->mnt_ns) {
-        android_context_saved_enabled = true;
-        pr_info("android context saved enabled due to init mnt_ns(%p) != android mnt_ns(%p)\n",
-            current->nsproxy->mnt_ns, init_task.nsproxy->mnt_ns);
-        ksu_save_ns_fs(&android_context_saved);
-    } else {
-        pr_info("android context saved disabled\n");
-    }
-    task_unlock(current);
-}
-
-struct file *ksu_filp_open_compat(const char *filename, int flags, umode_t mode)
-{
-    // switch mnt_ns even if current is not wq_worker, to ensure what we open is the correct file in android mnt_ns, rather than user created mnt_ns
-    struct ksu_ns_fs_saved saved;
-    if (android_context_saved_enabled) {
-        pr_info("start switch current nsproxy and fs to android context\n");
-        task_lock(current);
-        ksu_save_ns_fs(&saved);
-        ksu_load_ns_fs(&android_context_saved);
-        task_unlock(current);
-    }
-    struct file *fp = filp_open(filename, flags, mode);
-    if (android_context_saved_enabled) {
-        task_lock(current);
-        ksu_load_ns_fs(&saved);
-        task_unlock(current);
-        pr_info("switch current nsproxy and fs back to saved successfully\n");
-    }
-    return fp;
-}
-
-ssize_t ksu_kernel_read_compat(struct file *p, void *buf, size_t count,
-                   loff_t *pos)
-{
-    return kernel_read(p, buf, count, pos);
-}
-
-ssize_t ksu_kernel_write_compat(struct file *p, const void *buf, size_t count,
-                loff_t *pos)
-{
-    return kernel_write(p, buf, count, pos);
-}
-
 long ksu_strncpy_from_user_nofault(char *dst, const void __user *unsafe_addr,
                    long count)
 {