andreacavalli
/
Magisk
forked from MarcoBuster/Magisk
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
5,096 Commits 1 Branch 0 Tags 61 MiB
Commit Graph

944 Commits

Author SHA1 Message Date
topjohnwu 2a694596b5 Better error handling and logging 2020-12-05 10:23:49 -08:00
topjohnwu ff0a76606e Detect 2SI after system_root mount on legacy SAR 2020-12-04 03:06:21 -08:00
topjohnwu dead74801d Setup log file when manually starting daemon 2020-12-04 01:07:47 -08:00
topjohnwu ab207a1bb3 va_list cannot be reused on x86 2020-12-03 20:53:19 -08:00
topjohnwu f152e8c33d Directly log to log file 2020-12-03 20:15:18 -08:00
topjohnwu 797ba4fbf4 Make sure all logging ends with newline 2020-12-02 00:55:22 -08:00
topjohnwu 552ec1eb35 Header v3 does not have name entry 2020-11-20 22:52:09 -08:00
topjohnwu 0064b01ae0 Trim out \r from string 
Fix #3490
 2020-11-15 06:30:29 -08:00
topjohnwu e0afbb647b Minor changes 2020-11-13 02:31:54 -08:00
topjohnwu f9c7a4c933 Redirect /data/adb/magisk/busybox 
Workaround some stupid Samsung kernel restrictions
 2020-11-11 02:26:07 -08:00
topjohnwu 2b759b84b0 Properly reset string 2020-11-09 21:17:21 -08:00
topjohnwu 1e45c63ea5 Scan for zygote periodically 
Fix #3417
 2020-11-08 03:44:43 -08:00
topjohnwu b14a260827 Offset pid_set by 1 
PID starts at 1, not 0
 2020-11-08 02:12:35 -08:00
topjohnwu ade1597e03 Support hiding apps not installed in main user 
Fix #2181, close #1840
 2020-11-08 01:53:18 -08:00
topjohnwu afebe734b8 Fix several things regarding scripting 2020-11-07 14:36:13 -08:00
topjohnwu e21a78164e Properly handle factory resets 
Close #3345
 2020-11-04 04:50:04 -08:00
topjohnwu 1e0f96d0fd Prefer platform implementation over internal 2020-11-04 04:42:02 -08:00
topjohnwu bf650332d8 Update nanopb 2020-11-04 01:56:49 -08:00
topjohnwu f32e0af830 Update resetprop help msg 2020-11-03 01:21:05 -08:00
topjohnwu 4c94f90e5d Templatize function callbacks 2020-11-03 01:16:55 -08:00
topjohnwu ffb4224640 Don't use reserved symbols 2020-11-03 01:12:33 -08:00
topjohnwu 89fff4830b Mount proper system_root mirror in magiskd 2020-11-03 00:37:08 -08:00
topjohnwu 16e4c67992 Significantly broaden sepolicy.rule compatibility 
Previously, Magisk uses persist or cache for storing modules' custom
sepolicy rules. In this commit, we significantly broaden its
compatibility and also prevent mounting errors.

The persist partition is non-standard and also critical for Snapdragon
devices, so we prefer not to use it by default.

We will go through the following logic to find the best suitable
non-volatile, writable location to store and load sepolicy.rule files:

Unencrypted data -> FBE data unencrypted dir -> cache -> metadata -> persist

This should cover almost all possible cases: very old devices have
cache partitions; newer devices will use FBE; latest devices will use
metadata FBE (which guarantees a metadata parition); and finally,
all Snapdragon devices have the persist partition (as a last resort).

Fix #3179
 2020-11-02 23:20:38 -08:00
topjohnwu 0feab753fb Fix coding errors and minor changes 2020-10-28 04:17:34 -07:00
Leorize d0b6318b90 init/mount: support for dm-verity verified root 
This commit adds support for kernel initialized dm-verity on legacy SAR
devices.

Tested on a Pixel 2 XL with a kernel patch to initialize mappings
specified via the `dm=` kernel parameter even when an initramfs is used.
 2020-10-27 03:47:50 -07:00
topjohnwu 966e23b846 magiskinit code tidy-up 2020-10-26 20:46:15 -07:00
topjohnwu 5b8a1fc2a7 Minor renames 2020-10-25 21:41:14 -07:00
topjohnwu 02ea3ca525 Headers doesn't always occupy 1 page 2020-10-25 06:25:42 -07:00
topjohnwu 0632b146b8 Add vendor boot image support to magiskboot 2020-10-25 06:09:36 -07:00
topjohnwu 1b0b180761 Fix COMPRESSED macro 
Fix #3383
 2020-10-25 05:10:19 -07:00
topjohnwu aaaaa3d044 Minor refactoring 2020-10-15 00:19:11 -07:00
topjohnwu 1edc4449d5 Update lz4 to v1.9.2 
Close #3334
 2020-10-15 00:04:48 -07:00
topjohnwu f3cd4da026 Make lz4_lg an exception of lz4_legacy 2020-10-14 23:45:06 -07:00
vvb2060 872c55207c Add com.android.i18n to apex path 2020-10-12 01:59:41 -07:00
topjohnwu 339ca6d666 Improve magiskboot info logging 2020-10-12 01:55:33 -07:00
topjohnwu 4aeac3b8f4 Support header_version 3 2020-10-12 01:06:42 -07:00
topjohnwu d625beb7f3 Update `--remove-modules` implementation 2020-10-11 18:30:03 -07:00
topjohnwu 0499588107 Support androidboot.fstab_suffix cmdline flag 
Fix #3187
 2020-10-08 03:04:12 -07:00
topjohnwu 8b5652ced5 Skip image padding on Pixel C 2020-09-29 02:49:10 -07:00
topjohnwu 6abd9aa8a4 Add new --install-module command 
Close #2253
 2020-09-26 16:50:41 -07:00
topjohnwu c91ebfbcc1 Pad images to original sizes with zero 
Close #2005
 2020-09-26 14:36:57 -07:00
topjohnwu 4fd04e62af Remove compressed ramdisk support 
It is causing more issues than it addresses
 2020-09-24 02:49:09 -07:00
topjohnwu 17b5291bbb Fix Android 8.0 selinux rules 2020-09-20 14:39:11 -07:00
topjohnwu 30e45f863d Remove unnecessary workaround 2020-09-10 01:01:51 -07:00
topjohnwu 434efec860 Use FIFO for su request communication 
Fix #3159
 2020-09-10 00:38:29 -07:00
topjohnwu c3586fe0a5 Upstream external/selinux 
Fix #2645
 2020-09-04 19:20:08 -07:00
topjohnwu 11f254e5e5 Fix SELinux support for Android 8.0 - 10 
Fix #3139
 2020-09-04 14:42:09 -07:00
topjohnwu c61ec2465f Rename function to be more descriptive 2020-09-04 06:21:25 -07:00
topjohnwu fd5ad91d26 Proper 2SI detection 2020-09-04 06:06:03 -07:00
topjohnwu 5c4c391f94 Fix typo causing rootfs device bootloops 
Fix #3134
 2020-09-04 04:43:46 -07:00
topjohnwu 4dacffd7a1 Fix some issues with selinux rules 2020-09-04 00:03:24 -07:00
topjohnwu 61599059d5 Fix typo for SAR first stage init 2020-09-03 19:17:25 -07:00
topjohnwu f32a29911b Properly detect 2SI init 
Fix #2994
 2020-09-02 21:20:15 -07:00
topjohnwu b73d5753f2 Minor code cleanups 2020-09-02 02:49:32 -07:00
Simon Shi 2eee335b5f Track more sepolicy cil files. 
Reference: https://android.googlesource.com/platform/system/core/+/refs/tags/android-r-beta-3/init/selinux.cpp
 2020-08-31 21:38:55 -07:00
vvb2060 e458215f27 Let isolation namespace base on app namespace 2020-08-08 05:21:03 -07:00
vvb2060 fee4031d0f Keep disable file when module update 2020-08-08 05:19:41 -07:00
topjohnwu 7fc9b908d4 Update Android 11 emulator support 2020-07-27 03:33:11 -07:00
classic-gentleman 0ed524f173 Test for NVIDIA/Tegra partition naming scheme first 
Fixes https://github.com/topjohnwu/Magisk/issues/3014
 2020-07-24 00:26:51 -07:00
topjohnwu 97b72a5941 Revert to old SElinux rules on pre 8.0 devices 
Fix #2910
 2020-07-06 01:13:50 -07:00
Shaka Huang 6dbd9bfb12 Place pthread_mutex_init() before init_list() 
Fix crash in #2900

Signed-off-by: Shaka Huang <shakalaca@gmail.com>
 2020-06-28 07:06:19 -07:00
topjohnwu 6150055a05 Update BusyBox 2020-06-25 04:34:16 -07:00
topjohnwu 43146b8316 Update su request process 
Due to changes in ec3705f2ed, the app can
no longer communicate with the dameon through a socket opened on the
daemon side due to SELinux restrictions. The workaround here is to have
the daemon decide a socket name, send it to the app, have the app create
the socket server, then finally the daemon connects to the app through
the socket.
 2020-06-19 03:52:25 -07:00
topjohnwu 44895a86b8 Fix compilation of single applets 2020-06-19 02:45:57 -07:00
topjohnwu 1e2f776b83 Move logging.hpp 2020-06-17 01:17:28 -07:00
topjohnwu ec3705f2ed Redesign of MagiskSU's sepolicy model 
Introduce new domain `magisk_client` and new file type `magisk_exec`.

Connection to magiskd's always-on socket is restricted to magisk_client
only. Whitelisted process domains can transit to magisk_client through
executing files labelled magisk_exec. The main magisk binary shall be
the only file labelled as magisk_exec throughout the whole system.
All processes thus are no longer allowed to connect to magiskd directly
without going through the proper magisk binary.

Connection failures are silenced from audit logs with dontaudit rules,
so crazy processes which traverse through all unix domain sockets to try
connection can no longer check logcat to know the actual reason behind
EACCES, leaking the denied process policy (which is u:r:magisk:s0).

This also allows us to remove many rules that open up holes in
untrusted_app domains that were used to make remote shell work properly.
Since all processes establishing the remote shell are now restricted to
the magisk_client domain, all these rules are moved to magisk_client.
This makes Magisk require fewer compromises in Android's security model.

Note: as of this commit, requesting new root access via Magisk Manager
will stop working as Magisk Manager can no longer communicate with
magiskd directly. This will be addressed in a future commit that
involves changes in both native and application side.
 2020-06-03 23:29:42 -07:00
topjohnwu ae0dcabf43 Fix typo in sepolicy.cpp 2020-06-03 03:11:10 -07:00
topjohnwu cb7148a24c Switch to debug logging in modules 2020-06-01 04:22:57 -07:00
topjohnwu 2f824f59dc Better logging system 
Use C++ magic to strip out debug logs at compile time
 2020-06-01 04:15:37 -07:00
osm0sis e50295d337 magiskboot: add support for lz4 compressed dt (extra) 
- legacy devices brought up to Android 10 may now use a compressed dt in a hdr_v0 AOSP dt variant extra section, so detect, decompress and recompress this
- so far these have only been done using lz4 compression (latest format revision magic), e.g. LOS 17.1 victara (Moto X)
 2020-05-30 12:52:15 -07:00
topjohnwu c071ac8973 Remove unused code 2020-05-29 10:41:52 -07:00
topjohnwu 599ee57d39 Simplify sepolicy rules 2020-05-25 02:30:39 -07:00
topjohnwu 4499cebcd9 Support new sepolicy rules 
Support declare new type with attribute and declare new attributes
 2020-05-25 02:09:43 -07:00
topjohnwu cd6eca1dc2 Optimize match-all-type rules 
For match-all-type rules (e.g. "allow magisk * * *" used in Magisk),
we used to iterate and apply rules on all existing types. However, this
is actually unnecessary as all selinux types should have at least 1
attributes assigned to it (process types "domain", file context types
"file_type" etc.). This means in order to create rules that applies to
all types, we actually only need to create rules for all attributes.

This optimization SIGNIFICANTLY reduces the patched sepolicy that is
loaded into the kernel when running Magisk. For example on Pixel 4 XL
running Android R DP4, the sepolicy sizes are
patched (before) : 3455948
patched (after)  : 843176
stock            : 630229

The active sepolicy size actually impacts the performance of every single
operation in the operating system, because the larger the policies gets,
the longer it takes for the kernel to lookup and match rules.
 2020-05-24 05:41:19 -07:00
topjohnwu 951273f8ef Cleanup some implementations 2020-05-24 04:16:40 -07:00
vvb2060 51eeb89f67 Allow consecutive points 2020-05-23 14:58:17 -07:00
topjohnwu 0efa73d96c Update selinux libs 2020-05-23 05:02:26 -07:00
topjohnwu f392ade78d Rewrite sepolicy.c in C++ 2020-05-23 00:18:25 -07:00
topjohnwu 0236ab887e Several statement parsing improvements 
- Update help message to match the spec
- Make tokenization not seg fault in certain conditions
- Moar template + macro magic to reduce boilerplate
 2020-05-22 14:05:56 -07:00
topjohnwu d4baae411b Modernize magiskpolicy 2020-05-21 06:48:02 -07:00
topjohnwu e02e46d0fc Detect volume down key combo for safe mode 
It is possible that a module is breaking the device so bad that zygote
cannot even be started. In this case, system_server cannot start and
detect the safe mode key combo, set the persist property, and reboot.

Also on old Android versions, the system directly goes to safe mode
after detecting a key combo without rebooting, defeating the purpose of
Magisk's safe mode protection if we only check for the persist property.

Directly adding key combo check natively in magiskd allows us to enter
Magisk safe mode before the system is even aware of it.
 2020-05-19 04:57:47 -07:00
Chris Renshaw 3c04dab472 magiskhide: fix late_prop_key setprop, reorganize props slightly 2020-05-18 23:31:22 -07:00
topjohnwu fc1844b4df Update policy for handling /data/adb 2020-05-18 23:29:26 -07:00
topjohnwu 99ef20627a Remove unused code 2020-05-18 05:45:08 -07:00
topjohnwu 4497e0aaca Don't expose module_list 2020-05-18 05:36:02 -07:00
topjohnwu c3e045e367 Use daemon state to determine late prop hiding 2020-05-18 05:21:47 -07:00
topjohnwu 501d3e6c32 Maintain global daemon status 2020-05-18 05:18:49 -07:00
topjohnwu b27b9c1d18 Minor code changes 2020-05-18 04:56:51 -07:00
topjohnwu f7d3d1eeaf Increase post-fs-data mode to 40 secs 2020-05-18 04:56:51 -07:00
topjohnwu 0d72a4c8ba Fix compile error 2020-05-18 04:56:51 -07:00
topjohnwu dbdb0a2560 Move late props to boot complete 2020-05-18 03:51:41 -07:00
topjohnwu bc6a14d30f Remove property ro.build.selinux 2020-05-17 15:01:37 -07:00
topjohnwu 97db49a57b Move vendor property manipulation to late start 2020-05-17 15:01:37 -07:00
topjohnwu eca2168685 Guard magiskhide state with mutexes 2020-05-17 15:01:37 -07:00
topjohnwu aac6ad73da Fix collect modules 2020-05-16 13:45:22 -07:00
topjohnwu 122b4d66b6 Move Android logging out of libutils 2020-05-10 00:48:41 -07:00
topjohnwu 0f8f4e361b Update collect log logic 2020-05-10 00:30:11 -07:00
Chris Renshaw 3733b589ac native: fix slower build on non-Windows platforms 2020-05-09 04:41:07 -07:00
Chris Renshaw 6a2e781db2 magiskhide: add vendor.* props 2020-05-09 04:40:55 -07:00
vvb2060 c6569ce022 Fix service scripts 2020-05-09 04:40:05 -07:00
topjohnwu a62bdc58cb Use env variables to enable standalone mode 2020-05-08 04:09:58 -07:00
topjohnwu a5d7c41d20 Support Safe Mode detection 
When detecting device is booting as Safe Mode, disable all modules and
MagiskHide and skip all operations. The only thing that'll be available
in this state is root (Magisk Manager will also be disabled by system).

Since the next normal boot will also have all modules disabled, this can
be used to rescue a device in the case when a rogue module causes
bootloop and no custom recovery is available (or recoveries without
the ability to decrypt data).
 2020-05-08 00:45:11 -07:00
topjohnwu 232ae2a189 Update resetprop to partially use system impl 2020-05-07 23:54:00 -07:00
topjohnwu aa8b23105f Modernize resetprop with fancy C++ 2020-05-07 06:08:30 -07:00
topjohnwu c113f854a2 Fix overlay.d on SAR again 2020-05-07 02:30:43 -07:00
topjohnwu 87de0e7a0e Force remove AVB for 2SI since it may bootloop some devices 2020-05-05 03:29:36 -07:00
topjohnwu 02dc1172be Revert DTB patches to in-place binary patches 
Since we no longer need to add new properties in the device tree, and
all the patches we do removes strings, we can just directly patch
the flat device tree in-place, ignoring basically all the higher level
DTB structure and format to accomplish 100% compatibility.
 2020-05-05 01:03:09 -07:00
topjohnwu dbf8c41209 Force init to load fstab from file in 2SI 
Patching DTBs is proven to be difficult and problematic as there are
tons of different formats out there. Adding support for all the formats
in magiskboot has been quite an headache in the past year, and it still
definitely does not cover all possible cases of them out there.

There is another issue: fake dt fstabs. Some super old devices do not
have device trees in their boot images, so some custom ROM developers
had came up with a "genius" solution: hardcode fstab entries directly
in the kernel source code and create fake device tree nodes even if
Android 10+ init can graciously take fstab files instead (-_-) 。。。

And there is YET another issue: DTBs are not always in boot images!
Google is crazy enough to litter DTBs all over the place, it is like
they cannot make up their minds (duh). This means the dt fstabs can be
either concatnated after the kernel (1), in the DTB partition (2), in
the DTBO partition (3), in the recovery_dtbo section in boot images (4),
or in the dtb section in boot images (5). FIVE f**king places, how can
anyone keep up with that!

With Android 10+ that uses 2 stage inits, it is crutual for Magisk to
be able to modify fstab mount points in order to let the original init
mount partitions for us, but NOT switch root and continue booting. For
devices using dt for early mount fstab, we used to patch the DTB at
install time with magiskboot. However these changes are permanent and
cannot be restored back at reinstallation.

With this commit, Magisk will read dt fstabs and write them to ramdisk
at boot time. And in that case, the init binary will also be patched
to force it to NEVER use fstabs in device-tree. By doing so, we can
unify ramdisk based 2SI fstab patching as basically we are just patching
fstab files. This also means we can manipulate fstab whatever Magisk
needs in the future without the need to going through the headache that
is patching DTBs at installation.
 2020-05-04 02:21:51 -07:00
topjohnwu 8c4fd759c6 Strip Huawei specific logic 
Users should manually switch to recovery mode instead
 2020-05-03 23:07:40 -07:00
topjohnwu 0c99c4d93f More complete support for fstab in dt 2020-05-03 22:49:54 -07:00
topjohnwu 8ab045331b Workaround realpath FORTIFY crashes 2020-05-03 22:11:39 -07:00
topjohnwu a8d0936e04 Update BusyBox 2020-05-02 03:42:42 -07:00
topjohnwu 4e349acb50 Build libselinux without ANDROID defined 2020-05-01 00:45:23 -07:00
topjohnwu 947e3b06b4 Use template to get lambda for RAII 2020-04-30 01:27:48 -07:00
topjohnwu 5fd574a14f Fix --remove-modules command 2020-04-30 01:27:48 -07:00
topjohnwu c7ed0ef5eb Fix SAR support for overlay.d 2020-04-25 23:19:36 -07:00
topjohnwu 15f155100c Rewrite skel_node mounting and construction logic 
Close #2725
 2020-04-24 02:07:46 -07:00
topjohnwu 2468f5a6c4 Fix custom sepolicy patches 2020-04-22 23:01:11 -07:00
topjohnwu 945a52a99f Handle extremely rare edge case 2020-04-22 05:07:50 -07:00
topjohnwu 486b2c82a7 Disable kmsg rate limiting 2020-04-22 05:07:50 -07:00
topjohnwu 8ca5a048d6 Support system_ext 2020-04-20 23:57:29 -07:00
topjohnwu 554ebe7206 Skel dest could not exist 
Close #2713
 2020-04-20 22:04:57 -07:00
vvb2060 d7b87fcb8e Add untrusted_app_29 for Android 11 2020-04-20 21:50:52 -07:00
topjohnwu c94f9e1cc9 Use a binary that exists on all devices for hijacking 2020-04-20 04:41:11 -07:00
topjohnwu e219867cdf Hijack another binary for 2nd stage 
Instead of using ptrace hacks, use another hack instead :D
 2020-04-19 22:15:12 -07:00
topjohnwu 765d5d9729 Small magiskinit cleanup 2020-04-19 04:57:18 -07:00
topjohnwu 43029f37b1 Cleanup our tracks 2020-04-19 04:57:18 -07:00
topjohnwu dfbd1305b3 Android 11 support 🎉 2020-04-19 02:47:22 -07:00
topjohnwu c9255ab31b Remove legacy migration 
It has been quite a long time ago...
 2020-04-18 23:46:56 -07:00
topjohnwu 1e714af3cf Support MagiskHide when /sbin does not exist 2020-04-18 23:45:00 -07:00
topjohnwu 4c959cd983 Support cases when /sbin does not exist 2020-04-18 23:19:19 -07:00
topjohnwu d959c35723 Make cleaner mount info 2020-04-18 18:50:25 -07:00
topjohnwu 69a9d7485b Support injecting magisk bins 2020-04-18 05:15:59 -07:00
topjohnwu dcf07ad8c7 Directly filter '.' and '..' in xreaddir 2020-04-18 04:20:21 -07:00
topjohnwu ed6cdb2eb4 Rename file 2020-04-18 04:10:19 -07:00
topjohnwu a73e7e9f99 Introduce new module mount implementation 
Rewrite the whole module mounting logic from scratch.
Even the algorithm is different compared to the old one.

This new design focuses on a few key points:
- Modular: Custom nodes can be injected into the mount tree.
  It's the main reason for starting the rewrite (needed for Android 11)
- Efficient: Compared to the existing implementation, this is the most
  efficient (both in terms of computation and memory usage) design I
  currently can come up with.
- Accurate: The old mounting logic relies on handling specifically every
  edge case I can think of. During this rewrite I actually found some
  cases that the old design does not handle properly. This new design is
  architected in a way (node types and its rankings) that it should
  handle edge cases all by itself when constructing mount trees.
 2020-04-18 02:00:48 -07:00
topjohnwu ab853e1fcf Update dir traversal code 2020-04-12 13:38:57 -07:00
topjohnwu e0a281583d Preparation for dynamic tmpfs path 2020-04-12 05:34:56 -07:00
topjohnwu d739dcac2b Remove dependency on magisk.hpp in libutils 2020-04-11 04:40:40 -07:00
topjohnwu cdd4cb8ec2 Update BusyBox to build on latest NDK 2020-04-11 04:05:58 -07:00
topjohnwu 93ef90cd24 Fix FORTIFY crashes 2020-04-11 04:05:34 -07:00
topjohnwu 4066e5bf14 Update Makefiles 2020-04-06 22:45:08 -07:00
topjohnwu 2f1f68f12f Prepare compilation for NDK r21 2020-04-03 02:58:39 -07:00
Shaka Huang 834561a5de Content in dt_fstab is not null terminated in emulator 
Value of <dt>/fstab/<partition>/dev and <dt>/fstab/<partition>/type in official Android emulator ends with newline instead of \0, Magisk won’t be able to patch sepolicy and crash the system.

Signed-off-by: Shaka Huang <shakalaca@gmail.com>
 2020-04-02 20:54:41 -07:00
topjohnwu 9820296e92 Update files.cpp in libutils 2020-04-02 02:17:45 -07:00
topjohnwu dbfde74c1e Clean rootfs in switch_root 2020-04-01 23:37:11 -07:00
topjohnwu b28668e18d Prevent possible race condition 2020-04-01 22:40:59 -07:00
topjohnwu 5f1174de27 Introduce new boot flow to handle SAR 2SI 
The existing method for handling legacy SAR is:
1. Mount /sbin tmpfs overlay
2. Dump all patched/new files into /sbin
3. Magic mount root dir and re-exec patched stock init

With Android 11 removing the /sbin folder, it is quite obvious that
things completely break down right in step 1.

To overcome this issue, we have to find a way to swap out the init
binary AFTER we re-exec stock init. This is where 2SI comes to rescue!

2SI normal boot procedure is:
1st stage -> Load sepolicy -> 2nd stage -> boot continue...

2SI Magisk boot procedure is:
MagiskInit 1st stage -> Stock 1st stage -> MagiskInit 2nd Stage ->
-> Stock init load sepolicy -> Stock 2nd stage -> boot continue...

As you can see, the trick is to make stock 1st stage init re-exec back
into MagiskInit so we can do our setup. This is possible by manipulating
some ramdisk files on initramfs based 2SI devices (old ass non SAR
devices AND super modern devices like Pixel 3/4), but not possible
on device that are stuck using legacy SAR (device that are not that
modern but not too old, like Pixel 1/2. Fucking Google logic!!)

This commit introduces a new way to intercept stock init re-exec flow:
ptrace init with forked tracer, monitor PTRACE_EVENT_EXEC, then swap
out the init file with bind mounts right before execv returns!

Going through this flow however will lose some necessary backup files,
so some bookkeeping has to be done by making the tracer hold these
files in memory and act as a daemon. 2nd stage MagiskInit will ack the
daemon to release these files at the correct time.

It just works™  ¯\_(ツ)_/¯
 2020-04-01 04:39:28 -07:00
topjohnwu 543ce937ec Don't need to find system_dev 2020-03-31 22:41:25 -07:00
Chris Renshaw aa72a080b0 core: clean up /data/adb/magisk.img, etc. as well 
- now that magisk.img -> /data/adb/modules migration is no longer taking place make sure all magisk.img locations get cleaned up
 2020-03-26 03:39:49 -07:00