Introduce new sepolicy injection mechanism

In the current implementation, Magisk will either have to recreate all early mount implementation (for legacy SAR and rootfs devices) or delegate early mount to first stage init (for 2SI devices) to access required partitions for loading sepolicy. It then has to recreate the split sepolicy loading implementation in-house, apply patches, then dump the compiled + patched policies into monolithic format somewhere. Finally, it patches the original init to force it to load the sepolicy file we just created. With the increasing complexity involved in early mount and split sepolicy (there is even APEX module involved in the future!), it is about time to rethink Magisk's sepolicy strategy as rebuilding init's functionality is not scalable and easy to maintain. In this commit, instead of building sepolicy ourselves, we mock selinuxfs with FIFO files connected to a pre-init daemon, waiting for the actual init process to directly write the sepolicy file into MagiskInit. We then patch the file and load it into the kernel. Some FIFO tricks has to be used to hijack the original init process's control flow and prevent race conditions, details are directly in the comments in code. At the moment, only system-as-root (read-only root) support is added. Support for legacy rootfs devices will come with a follow up commit.
2025-10-23 20:28:42 +00:00 · 2022-03-16 00:31:53 -07:00
parent b10379e700
commit 49f259065d
13 changed files with 244 additions and 90 deletions
--- a/native/jni/include/magisk.hpp
+++ b/native/jni/include/magisk.hpp
@@ -27,6 +27,7 @@ extern std::string  MAGISKTMP;
 #define SHELLPTS    INTLROOT "/pts"
 #define ROOTMNT     ROOTOVL "/.mount_list"
 #define ZYGISKBIN   INTLROOT "/zygisk"
+#define SELINUXMOCK INTLROOT "/selinux"

 constexpr const char *applet_names[] = { "su", "resetprop", nullptr };
 constexpr const char *init_applet[] = { "magiskpolicy", "supolicy", nullptr };
--- a/native/jni/include/magiskpolicy.hpp
+++ b/native/jni/include/magiskpolicy.hpp
@@ -2,6 +2,7 @@

 #include <stdlib.h>
 #include <selinux.hpp>
+#include <string>

 #define ALL nullptr

@@ -9,10 +10,11 @@ struct policydb;

 class sepolicy {
 public:
-    typedef const char * c_str;
+    using c_str = const char *;
    ~sepolicy();

    // Public static factory functions
+    static sepolicy *from_data(char *data, size_t len);
    static sepolicy *from_file(c_str file);
    static sepolicy *from_split();
    static sepolicy *compile_split();
@@ -20,6 +22,7 @@ public:
    // External APIs
    bool to_file(c_str file);
    void parse_statement(c_str stmt);
+    void load_rules(const std::string &rules);
    void load_rule_file(c_str file);

    // Operation on types