search

tiann / KernelSU

A Kernel based root solution for Android
https://kernelsu.org
GNU General Public License v3.0
10.05k stars 1.63k forks source link

Oppo/Realme kernel restrict su running #321

Closed qiurigao closed 1 year ago

qiurigao commented 1 year ago

Device: Realme GT 5G (RMX2202) Stock ROM: Color OS 13 Android Version: Android-13-5.4-qgki Clang Version: r383902b1 DEFCONFIG: vendor/lahaina-qgki_defconfig Kernel Source: https://github.com/realme-kernel-opensource/realme_gt-AndroidT-kernel-source Vendor Source: https://github.com/realme-kernel-opensource/realme_gt-AndroidT-vendor-source Issues:执行su 后并未切换到root https://github.com/LineageOS/android_kernel_oneplus_sm8250/commit/d0a5559729ef796f7c427151ff347558ec4235b8 日志: boot_29--1970-01-04-10-26-15.tar.gz

<6> (2)[8953:sh][20230324_13:30:50.845257]@2 KernelSU: newfstatat su->sh! <6> (2)[8953:sh][20230324_13:30:50.845462]@2 KernelSU: faccessat su->sh! <6> (0)[8974:sh][20230324_13:30:50.848458]@0 KernelSU: do_execveat_common su found <6> (0)[8974:sh][20230324_13:30:50.848547]@0 KernelSU: error: 0, sid: 2125
natsumerinchan commented 1 year ago

上传一下编译时生成的.config

qiurigao commented 1 year ago

lahaina-qgki_defconfig.zip

natsumerinchan commented 1 year ago

截图 2023-03-25 15-31-04

qiurigao commented 1 year ago

config.zip

androidacy-user commented 1 year ago

As I recall realme has restrictions on what can run as su or root

qiurigao commented 1 year ago

As I recall realme has restrictions on what can run as su or root

are you code view

tiann commented 1 year ago

https://github.com/realme-kernel-opensource/realme_gt-AndroidT-kernel-source/blob/master/include/trace/hooks/secureguard.h

tiann commented 1 year ago

Maybe you can change this line: https://github.com/realme-kernel-opensource/realme_gt-AndroidT-kernel-source/blob/master/include/trace/hooks/secureguard.h#L14

to #if 0?

qiurigao commented 1 year ago

Maybe you can change this line: https://github.com/realme-kernel-opensource/realme_gt-AndroidT-kernel-source/blob/master/include/trace/hooks/secureguard.h#L14

to ?#if 0

log boot_38.tar.gz

dont work

<6> (5)[1:init][ 2.180857]@5 KernelSU: /system/bin/init second_stage executed <6> (5)[1:init][ 2.180862]@5 KernelSU: SELinux permissive or disabled, don't apply rules. SELinux issues? <6> (7)[1:init][ 2.374193]@7 KernelSU: vfs_read: /system/etc/init/atrace.rc, comm: init, count: 1024, rc_count: 336 <6> (7)[1:init][ 2.374265]@7 KernelSU: unregister vfs_read kprobe: 1! <6> (7)[1:init][ 2.374443]@7 KernelSU: read_iter_proxy append 688 + 336 <6> (7)[1:init]KernelSU: unregister vfs_read kprobe: 1! <6> (7)[1:init][ 2.374491]@7 KernelSU: unregister vfs_read kprobe: 1! <6> (7)[1:init][ 2.374493]@7 KernelSU: unregister vfs_read kprobe: 1! <6> (7)[1:init][ 2.374496]@7 KernelSU: unregister vfs_read kprobe: 0! <6> (7)[1:init][ 2.374534]@7 KernelSU: unregister vfs_read kprobe: 1! kprobe? <3> (4)[1:init][ 7.191098]@4 hans_report: hans_deamon_port invalid! <6> (7)[913:init][ 7.198273]@7 KernelSU: exec app_process, /data prepared! <6> (7)[446:kworker/7:7][ 7.198280]@7 KernelSU: on_post_fs_data! <3> (7)[446:kworker/7:7]KernelSU: load_allow_list open file failed: -13 <6> (7)[913:init][ 7.198427]@7 KernelSU: unregister input kprobe: 1! <6> (7)[913:init][ 7.198454]@7 KernelSU: unregister execve kprobe: 1! ..... <6> (4)[7348:weishu.kernelsu][20210103_02:27:08.725214]@4 binder: 7348:7348 ioctl 40046210 7fd5ce9540 returned -22 <6> (1)[1553:traced_probes][20210103_02:27:08.727496]@1 binder: 1553:1553 ioctl 40046210 7fc6b17234 returned -22 <12> (1)[1553:traced_probes][20210103_02:27:08.741521]@1 perfetto: enabled ftrace <6> (4)[7372:RenderThread][20210103_02:27:08.800645]@4 binder: 7348:7372 ioctl 40046210 7485884604 returned -22 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847310]@7 KernelSU: option: 0xdeadbeef, cmd: 1 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847324]@7 KernelSU: become_manager: param pkg: me.weishu.kernelsu <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847364]@7 KernelSU: found apk: /data/app/~~1I8HZKFojB4ae0R0zu_cZQ==/me.weishu.kernelsu-8nEwjsetuR6Mbv5Q5QXsMA==/base.apk <6> (7)[7348:weishu.kernelsu]KernelSU: id: 0x7109871a <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847559]@7 KernelSU: manager uid: 10282 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847588]@7 KernelSU: option: 0xdeadbeef, cmd: 2 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847853]@7 KernelSU: option: 0xdeadbeef, cmd: 9 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.847856]@7 KernelSU: volumedown_pressed_count: 0 <6> (7)[7394:libksud.so][20210103_02:27:08.882655]@7 KernelSU: option: 0xdeadbeef, cmd: 0 <6> (7)[7394:libksud.so][20210103_02:27:08.882660]@7 KernelSU: allow root for: 10282 <6> (7)[7394:libksud.so][20210103_02:27:08.882672]@7 KernelSU: error: 0, sid: 2205 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.909475]@7 KernelSU: option: 0xdeadbeef, cmd: 9 <6> (7)[7348:weishu.kernelsu][20210103_02:27:08.909481]@7 KernelSU: volumedown_pressed_count: 0 <5> (7)[1634:bcc_kthread][20210103_02:27:09.140477]@7 [OPLUS_CHG][oplus_chg_print_bcc_log]BCC[100 / 100 / 100 / 4259 / 416 / 208 / 4872 / 0] <6> (6)[406:crtc_commit:147][20210103_02:27:09.224587]@6 [drm:dsi_display_set_mode [msm_drm]] [msm-dsi-info]: mdp_transfer_time=6326, hactive=1080, vactive=2400, fps=60 <3> (6)[406:crtc_commit:147][20210103_02:27:09.224649]@6 dsi_cmd qcom,mdss-dsi-post-mode-switch-on-command <3> (6)[406:crtc_commit:147][20210103_02:27:09.224662]@6 dsi_cmd qcom,mdss-dsi-timing-switch-command <3> (6)[406:crtc_commit:147][20210103_02:27:09.229083]@6 dsi_cmd qcom,mdss-dsi-post-panel-on-command <6> (6)[85:hh-watchdog][20210103_02:27:09.396567]@6 [wdog_util]cpu avail mask: 0xff; ping mask: 0xef; irqs since last: 40126 <4> (7)[3244:OplusNetworkSta][20210103_02:27:09.493314]@7 [oplus_score]: add uid, num = 1, index = 0, uid=10282 <14> (7)[1:init][20210103_02:27:09.580956]@7 init: starting service 'oplus_kevents'... <14> (6)[1:init][20210103_02:27:09.590083]@6 init: Service 'oplus_kevents' (pid 7409) exited with status 255 <14> (6)[1:init][20210103_02:27:09.590095]@6 init: Sending signal 9 to service 'oplus_kevents' (pid 7409) process group... <3> (6)[1:init][20210103_02:27:09.590151]@6 hans_report: hans_deamon_port invalid! <3> (6)[1:init][20210103_02:27:09.590157]@6 HANS: report signal-freeze failed, sig = 9, caller = 1, target_uid = 1000 <14> (6)[1:init][20210103_02:27:09.590173]@6 libprocessgroup: Successfully killed process cgroup uid 1000 pid 7409 in 0ms <11> (6)[1:init][20210103_02:27:09.590234]@6 init: process with updatable components 'oplus_kevents' exited 4 times in 4 minutes <14> (7)[1:init][20210103_02:27:09.590732]@7 init: processing action (sys.init.updatable_crashing=1) from (/system/etc/init/flags_health_check.rc:10) <14> (7)[1:init][20210103_02:27:09.590819]@7 init: starting service 'exec 60 (/system/bin/flags_health_check UPDATABLE_CRASHING)'... <14> (7)[1:init][20210103_02:27:09.591566]@7 init: SVC_EXEC service 'exec 60 (/system/bin/flags_health_check UPDATABLE_CRASHING)' pid 7410 (uid 1000 gid 1000+0 context default) started; waiting... <14> (7)[1:init][20210103_02:27:09.597870]@7 init: Service 'exec 60 (/system/bin/flags_health_check UPDATABLE_CRASHING)' (pid 7410) exited with status 0 waiting took 0.006000 seconds <14> (7)[1:init][20210103_02:27:09.597880]@7 init: Sending signal 9 to service 'exec 60 (/system/bin/flags_health_check UPDATABLE_CRASHING)' (pid 7410) process group... <3> (7)[1:init][20210103_02:27:09.597928]@7 hans_report: hans_deamon_port invalid! <3> (2)[81:kworker/2:1][20210103_02:27:09.652976]@2 [OPLUS_CHG][oplus_oem_lcm_en_check_work]start this work after 5 seconds. <6> (7)[7348:weishu.kernelsu][20210103_02:27:10.053868]@7 KernelSU: option: 0xdeadbeef, cmd: 9 <6> (7)[7348:weishu.kernelsu][20210103_02:27:10.053875]@7 KernelSU: volumedown_pressed_count: 0 <6> (4)[7411:libksud.so][20210103_02:27:10.059412]@4 KernelSU: option: 0xdeadbeef, cmd: 0 <6> (4)[7411:libksud.so][20210103_02:27:10.059417]@4 KernelSU: allow root for: 10282 <6> (4)[7411:libksud.so][20210103_02:27:10.059428]@4 KernelSU: error: 0, sid: 2205 <6> (7)[7348:weishu.kernelsu][20210103_02:27:10.078255]@7 KernelSU: option: 0xdeadbeef, cmd: 2 <6> (6)[7416:libksud.so][20210103_02:27:10.082228]@6 KernelSU: option: 0xdeadbeef, cmd: 0 <6> (6)[7416:libksud.so][20210103_02:27:10.082232]@6 KernelSU: allow root for: 10282 <6> (6)[7416:libksud.so][20210103_02:27:10.082241]@6 KernelSU: error: 0, sid: 2205 <6> (7)[7348:weishu.kernelsu][20210103_02:27:10.103089]@7 KernelSU: option: 0xdeadbeef, cmd: 2 <6> (5)[7426:libksud.so][20210103_02:27:10.107651]@5 KernelSU: option: 0xdeadbeef, cmd: 0 <6> (5)[7426:libksud.so][20210103_02:27:10.107657]@5 KernelSU: allow root for: 10282 <6> (5)[7426:libksud.so][20210103_02:27:10.107667]@5 KernelSU: error: 0, sid: 2205 <6> (7)[7425:libksud.so][20210103_02:27:10.110004]@7 KernelSU: option: 0xdeadbeef, cmd: 0 <6> (7)[7425:libksud.so][20210103_02:27:10.110009]@7 KernelSU: allow root for: 10282 <6> (7)[7425:libksud.so][20210103_02:27:10.110018]@7 KernelSU: error: 0, sid: 2205 <6> (7)[7441:com.qti.ltebc][20210103_02:27:10.596068]@7 binder: 7441:7441 ioctl 40046210 7fd5ce9540 returned -22 <6> (2)[7456:LTEBCInitManage][20210103_02:27:10.684478]@2 binder: 7441:7456 ioctl 40046210 74859c8354 returned -22 <6> (2)[7456:LTEBCInitManage][20210103_02:27:10.685942]@2 binder: context.name[hwbinder] tr.size:228 service:hwbinderService <6> (3)[7465:embmsslServer][20210103_02:27:10.744472]@3 binder: context.name[hwbinder] tr.size:348 service:hwbinderService <6> (1)[7465:embmsslServer][20210103_02:27:10.745334]@1 binder: context.name[hwbinder] tr.size:252 service:hwbinderService <6> (3)[7422:DefaultDispatch][20210103_02:27:10.884943]@3 KernelSU: option: 0xdeadbeef, cmd: 5 <6> (3)[7422:DefaultDispatch][20210103_02:27:10.885291]@3 KernelSU: option: 0xdeadbeef, cmd: 6 <6> (6)[7486:ell.wallet:temp][20210103_02:27:11.042554]@6 binder: 7486:7486 ioctl 40046210 7fd5ce9540 returned -22 <5> (5)[1634:bcc_kthread][20210103_02:27:11.156523]@5 [OPLUS_CHG][oplus_chg_print_bcc_log]BCC[100 / 100 / 100 / 4259 / 416 / 208 / 4872 / 0] <6> (7)[7348:weishu.kernelsu][20210103_02:27:11.445943]@7 KernelSU: option: 0xdeadbeef, cmd: 1 <6> (7)[7348:weishu.kernelsu][20210103_02:27:11.445957]@7 KernelSU: option: 0xdeadbeef, cmd: 2 <6> (7)[7348:weishu.kernelsu][20210103_02:27:11.446127]@7 KernelSU: option: 0xdeadbeef, cmd: 9 <6> (7)[7348:weishu.kernelsu][20210103_02:27:11.446133]@7 KernelSU: volumedown_pressed_count: 0 <6> (4)[7527:libksud.so][20210103_02:27:11.471693]@4 KernelSU: option: 0xdeadbeef, cmd: 0 <6> (4)[7527:libksud.so][20210103_02:27:11.471699]@4 KernelSU: allow root for: 10282 <6> (4)[7527:libksud.so][20210103_02:27:11.471711]@4 KernelSU: error: 0, sid: 2205 <3> (4)[7533:hans][20210103_02:27:11.593734]@4 hans_handler: --> LOOP_BACK, port = 7533 <3> (4)[7533:hans][20210103_02:27:11.593745]@4 hans_kern_support_cgrpv2: hans support cgroupv2 <6> (4)[7533:hans][20210103_02:27:11.593901]@4 binder: 7533:7533 ioctl 40046210 7fe70fed00 returned -22 <6> (4)[7533:hans][20210103_02:27:11.594195]@4 binder: context.name[binder] tr.size:172 service:oplus.hans.IHansComunication <3> (3)[676:servicemanager][20210103_02:27:11.594548]@3 oplus_binder_stats binder_stats_driver_ioctl: unknown ioctl cmd:120
tiann commented 1 year ago

你是否有做类似隐藏 BL 锁的操作?

qiurigao commented 1 year ago

你是否有做类似隐藏 BL 锁的操作?

没有 而且也没有必要啊

qiurigao commented 1 year ago

Screenshot_2023-04-16-08-44-06-43_9e8df3d0c7c1f50248b6ee043a653d26 宽容模式可以正常运行

qiurigao commented 1 year ago

@tiann 如何在开机后手动修改selinux规则并启用selinux就像magisk一样

tiann commented 1 year ago

https://kernelsu.org/guide/module.html#sepolicy-rule

tiann commented 1 year ago

I will close this since someone follow the instruction and disable all security guard features of the kernel and it works well.