kernel: ksud: add commonized execve/compat_execve hooks for ksud +

backslashxx · anotherjin · LeCmnGend · commit 2a28c2e33e4f · 2025-07-21T21:56:44.000+07:00
This commit squashes the following: - kernel: ksud: commonize execve_ksud handlers - kernel: ksud: provide ksu_handle_compat_execve_ksud v2 - kernel: ksud: add ksu_handle_execve_ksud v2 This finalizes syscall-only hooking for KernelSU as we provide both native and compat. - sys_execve - ksu_handle_execve_ksud - compat_sys_execve - ksu_handle_compat_execve_ksud since these two share common logic, we commonize them to ksu_common_execve_ksud sinc only the argv field is different. (.native vs .compat) usage: ksu_handle_execve_ksud(filename, argv); // for sys_execve ksu_handle_compat_execve_ksud(filename, argv); // for compat_sys_execve This implementations avoids any dependency on struct filename making it also usable on Ultra-Legacy. Requires: - kernel: ksud: dont create structs just to deconstruct them for a string (tiann#2595) original logic was taken from sys_execve_handler_pre upstream: tiann@2027ac3 Tested-by: selfmusing <mirandamehek@gmail.com> Tested-by: Adam W. Willis <return.of.octobot@gmail.com> Tested-by: alternoegraha <noegrahachan@gmail.com> Tested-by: iDead XD <rafifirdaus12bb@gmail.com> Tested-by: rsuntk <90097027+rsuntk@users.noreply.github.com> Signed-off-by: backslashxx <118538522+backslashxx@users.noreply.github.com> Co-Authored-By: Another Guy <25584417+anotherjin@users.noreply.github.com>
diff --git a/kernel/ksud.c b/kernel/ksud.c
@@ -456,7 +456,7 @@ int ksu_handle_input_handle_event(unsigned int *type, unsigned int *code,
 	return 0;
 }
 
-bool ksu_is_safe_mode()
+bool ksu_is_safe_mode(void)
 {
 	static bool safe_mode = false;
 	if (safe_mode) {
@@ -478,6 +478,41 @@ bool ksu_is_safe_mode()
 	return false;
 }
 
+// execve_ksud handlers for non kprobe
+static int ksu_common_execve_ksud(const char __user *filename_user,
+			struct user_arg_ptr *argv)
+{
+	char path[32];
+
+	// return early if disabled.
+	if (!ksu_execveat_hook)
+		return 0;
+
+	if (!filename_user)
+		return 0;
+
+	memset(path, 0, sizeof(path));
+	ksu_strncpy_from_user_nofault(path, filename_user, 32);
+
+	return __ksu_handle_execveat_ksud(AT_FDCWD, path, argv, NULL, NULL);
+}
+
+int ksu_handle_execve_ksud(const char __user *filename_user,
+			const char __user *const __user *__argv)
+{
+	struct user_arg_ptr argv = { .ptr.native = __argv };
+	return ksu_common_execve_ksud(filename_user, &argv);
+}
+
+#if defined(CONFIG_COMPAT)
+int ksu_handle_compat_execve_ksud(const char __user *filename_user,
+			const compat_uptr_t __user *__argv)
+{
+	struct user_arg_ptr argv = { .ptr.compat = __argv };
+	return ksu_common_execve_ksud(filename_user, &argv);
+}
+#endif
+
 static void stop_vfs_read_hook(void)
 {
 	ksu_vfs_read_hook = false;
