Compare
Sorry, something went wrong.
No results found
KernelSU v3.0.0+
Changes on top of upstream (+78):
manager: partially revert "manager: Add GKI mode WarningCard"
workflows: debloat
workflows: debloat pt. 2
dummy.keystore
ksud: add armeabi-v7a support
manager: unofficial build
manager: Add ABI and Kernel archirecture info into InfoCardItem
ksud: prevent 32-on-64 pointer mismatches on sepolicy
ksud: add avc spoof to feature
Revert "kernel: Fix `setup_selinux` using `__task_cred` directly (#3189)"
kernel: ksu pr 3093
kernel: remove unsupportable code
reapply 3189
kernel: restore code required for old kernels
kernel: build: migrate to unity build
kernel: core_hook: disable seccomp for manager and allowed uids
kernel: supercalls: provide sys_reboot handler
kernel: supercalls: backport: "Use task work to install fd"
kernel: adapt "namespace support" feature to old kernels
kernel: file_wrapper: handle anon_inode_getfile for old kernels
kernel: supercalls: partial backport of do_manage_mark
kernel: selinux: force sepol_data.sepol to be u64
kernel: core_hook: screw path_umount backport, call sys_umount directly
kernel: app_profile: shim escape_with_root_profile
kernel: throne_tracker: offload to kthread (tiann#2632)
kernel: throne_tracker: fixup deadlocks on iterate_dir
kernel: allowlist: escape persistent_allow_list to kthread
kernel: ksud: migrate ksud execution to security_bprm_check (tiann#2653)
kernel: core_hook: migrate init_session_keyring grab to security_bprm_check
kernel: sucompat: increase reliability, commonize and micro-optimize (tiann#2656)
kernel: sucompat: sucompat feature support for manual hooks (tiann#2506)
kernel: sucompat: provide do_execve_common handler for < 3.14
kernel: sucompat: provide getname_flags handlers
kernel: sucompat: provide vfs_statx hook handler >= 5.18
kernel: sucompat: use seccomp.mode for permission check
kernel: sucompat: execve: escape init ksud call to root
kernel: app_profile: do not disable seccomp again
kernel: ksud: migrate init.rc handling to security_file_permission LSM
kernel: expose KSU_LSM_SECURITY_HOOKS on Kconfig
kernel: core_hook: introduce selinux_ops LSM tampering for < 4.2
kernel: file_wrapper: handle more compat
kernel: file_wrapper: handle readdir and iterate compat for UL
kernel: ksud: provide is_ksu_transition check v4
kernel: ksud: replace input hook with an input handler
kernel: syscall_table_hook: introduce syscall table tampering
kernel: syscall_table_hook: wire up sucompat unhooking
kernel: kp_ksud: restore kprobes for early-boot and used-once hooks
kernel: rp_sucompat: add kretprobes-hooked getname_flags for sucompat
kernel: extras: SQUASH: avc log spoofing impl
kernel: supercalls/debug: expose ksu_set_manager_appid to sys_reboot
kernel: supercalls: allow userspace to pull list entries (tiann#3040)
kernel: sulog: basic ringbuffer, timestamped su log
kernel: supercalls: expose ksuver override
kernel: supercalls: expose spoof uname function to userspace
kernel: apk_sign: casting to char for strcmp -> memcmp
kernel: apk_sign: migrate generic_file_llseek -> vfs_llseek
kernel: core_hook: no ext4_unregister_sysfs, no problem
kernel: ksud: d_is_reg to S_ISREG
kernel: throne_tracker: strscpy -> strncpy
kernel: throne_tracker: resolve s_magic for < 3.9
kernel: ksud: handle conditional read_iter requirement for < 3.16
kernel: throne_tracker: handle filldir_t ABI mismatch on <= 3.18
kernel: compat: iterate_dir -> vfs_readdir compat for < 3.11
kernel: sucompat: bruteforce writeable stack from start_stack for < 3.8
kernel: compat: provide bin2hex compat for < 3.18
kernel: compat: file_inode compat for < 3.9
kernel: compat: provide selinux_inode/selinux_cred wrappers for < 5.1
kernel: compat: inline newer kernel_read / kernel_write for < 4.14
kernel: compat: no-op groups_sort if unavailable
kernel: apk_sign: fix return check for ksu_sha256
kernel: handle backports
kernel: apk_sign: add more size/hash pairs
kernel: ksu: printout quirks / backports / etc on init
kernel: scripts: kuid_ul_fix: add small script as helper
kernel: selinux/sepolicy: tweak ksu_kvrealloc compat
kernel: ksud: read: add fallback to /init.rc
HACK: kernel: bypass tf out of uid_t/gid_t strict type checks
KernelSU v3.0.0+
Warning: Managers built from this repo has a known keystore.
See dummy.keystore.
Signed-off-by: backslashxx <118538522+backslashxx@users.noreply.github.com>
