Move all symbol addresses into device_database library

Author: fi01

cred.c

@@ -17,48 +17,13 @@
 #include "kallsyms.h"
 #include "backdoor_mmap.h"
 
-typedef struct _supported_device {
-  device_id_t device_id;
-  unsigned long int prepare_kernel_cred_address;
-  unsigned long int commit_creds_address;
-} supported_device;
-
-static supported_device supported_devices[] = {
-  { DEVICE_HTL21_1_29_970_1,        0xc00ab9d8, 0xc00ab4c4 },
-  { DEVICE_HTL22_1_05_970_1,        0xc00b2688, 0xc00b2174 },
-  { DEVICE_HTL22_1_07_970_4,        0xc00b26a0, 0xc00b218c },
-  { DEVICE_HTX21_1_20_971_1,        0xc00a6e54, 0xc00a6940 },
-  { DEVICE_IS17SH_01_00_04,         0xc01c66a8, 0xc01c5fd8 },
-  { DEVICE_LT26W_6_2_B_0_200,       0xc00b261c, 0xc00b2140 },
-  { DEVICE_LT29I_9_1_B_0_411,       0xc0095dec, 0xc0095910 },
-  { DEVICE_SC04E_MDI,               0xc0096068, 0xc0095b54 },
-  { DEVICE_SH04E_01_00_02,          0xc008d86c, 0xc008d398 },
-  { DEVICE_SH04E_01_00_03,          0xc008d99c, 0xc008d4c8 },
-  { DEVICE_SO01E_9_1_C_0_473,       0xc009843c, 0xc0097f60 },
-  { DEVICE_SOL21_9_1_D_0_395,       0xc0098584, 0xc00980a8 },
-};
-
-static int n_supported_devices = sizeof(supported_devices) / sizeof(supported_devices[0]);
-
 static bool
 get_creds_functions_addresses(void **prepare_kernel_cred_address, void **commit_creds_address)
 {
-  device_id_t device_id = detect_device();
-  int i;
-
-  for (i = 0; i < n_supported_devices; i++) {
-    if (supported_devices[i].device_id != device_id) {
-      continue;
-    }
-
-    if (prepare_kernel_cred_address) {
-      *prepare_kernel_cred_address = (void*)supported_devices[i].prepare_kernel_cred_address;
-    }
-
-    if (commit_creds_address) {
-      *commit_creds_address = (void*)supported_devices[i].commit_creds_address;
-    }
+  *prepare_kernel_cred_address = (void *)device_get_symbol_address(DEVICE_SYMBOL(prepare_kernel_cred));
+  *commit_creds_address = (void*)device_get_symbol_address(DEVICE_SYMBOL(commit_creds));
 
+  if (*prepare_kernel_cred_address && *commit_creds_address) {
     return true;
   }
 

device_database

@@ -7,40 +7,13 @@
 #include "kallsyms.h"
 #include "mm.h"
 
-typedef struct _supported_device {
-  device_id_t device_id;
-  unsigned long int remap_pfn_range_address;
-} supported_device;
-
-static supported_device supported_devices[] = {
-  { DEVICE_HTL21_1_29_970_1,       0xc00ff32c },
-  { DEVICE_HTL22_1_05_970_1,       0xc0128b10 },
-  { DEVICE_HTL22_1_07_970_4,       0xc0128b28 },
-  { DEVICE_HTX21_1_20_971_1,       0xc00fa8b0 },
-  { DEVICE_IS17SH_01_00_04,        0xc0208a34 },
-  { DEVICE_LT26W_6_2_B_0_200,      0xc0136294 },
-  { DEVICE_LT29I_9_1_B_0_411,      0xc010ac30 },
-  { DEVICE_SC01E_LJ3,              0xc0192124 },
-  { DEVICE_SC04E_MDI,              0xc011383c },
-  { DEVICE_SH04E_01_00_02,         0xc00e458c },
-  { DEVICE_SH04E_01_00_03,         0xc00e46bc },
-  { DEVICE_SO01E_9_1_C_0_473,      0xc010e1f4 },
-  { DEVICE_SOL21_9_1_D_0_395,      0xc010e33c },
-};
-
-static int n_supported_devices = sizeof(supported_devices) / sizeof(supported_devices[0]);
-
 unsigned long int
 _get_remap_pfn_range_address(void)
 {
-  device_id_t device_id = detect_device();
-  unsigned long int ret;
-  int i;
+  unsigned long int address = device_get_symbol_address(DEVICE_SYMBOL(remap_pfn_range));
 
-  for (i = 0; i < n_supported_devices; i++) {
-    if (supported_devices[i].device_id == device_id){
-      return supported_devices[i].remap_pfn_range_address;
-    }
+  if (address) {
+    return address;
   }
 
   return 0;

libfj_hdcp_exploit

@@ -7,62 +7,22 @@
 #include "device_database/device_database.h"
 #include "ptmx.h"
 
-typedef struct _supported_device {
-  device_id_t device_id;
-  unsigned long int ptmx_fops_address;
-} supported_device;
-
-static supported_device supported_devices[] = {
-  { DEVICE_F05D_V08R31C,            0xc07bc164 },
-  { DEVICE_F05D_V11R40A,            0xc07bbf44 },
-  // F10D: Fujitsu added a method in struct file_operations
-  { DEVICE_F10D_V21R48A,            0xc09a60dc + 4 },
-  { DEVICE_F11D_V24R40A,            0xc1056998 },
-  { DEVICE_FJL21_V23R39X,           0xc0ee31f8 },
-  { DEVICE_FJL21_V37R47A,           0xc0ee3378 },
-  { DEVICE_HTL21_1_29_970_1,        0xc0d1d944 },
-  { DEVICE_HTL22_1_05_970_1,        0xc0df467c },
-  { DEVICE_HTL22_1_07_970_4,        0xc0df52bc },
-  { DEVICE_HTX21_1_20_971_1,        0xc0ccc0b4 },
-  { DEVICE_ISW11F_V25R45A,          0xc080e268 },
-  { DEVICE_ISW11F_V27R47I,          0xc080e028 },
-  { DEVICE_ISW12K_010_0_3000,       0xc0dc0a10 },
-  { DEVICE_IS17SH_01_00_04,         0xc0edae90 },
-  // ISW13F: Fujitsu added a method in struct file_operations
-  { DEVICE_ISW13F_V69R51I,          0xc09fc5fc + 4 },
-  { DEVICE_LT26W_6_2_B_0_200,       0xc0cc3dc0 },
-  { DEVICE_LT29I_9_1_B_0_411,       0xc0d01f60 },
-  { DEVICE_SC01E_LJ3,               0xc10a5a48 },
-  { DEVICE_SC04E_MDI,               0xc1169808 },
-  { DEVICE_SCL21_LJD,               0xc0c71dc0 },
-  { DEVICE_SH04E_01_00_02,          0xc0eed190 },
-  { DEVICE_SH04E_01_00_03,          0xc0eed190 },
-  { DEVICE_SO01E_9_1_C_0_473,       0xc0d03208 },
-  { DEVICE_SOL21_9_1_D_0_395,       0xc0d030c8 },
-  { DEVICE_SONYTABLET_S_RELEASE5A,  0xc06e4d18 },
-  { DEVICE_SONYTABLET_P_RELEASE5A,  0xc06e6da0 },
-};
-
-static int n_supported_devices = sizeof(supported_devices) / sizeof(supported_devices[0]);
-
 unsigned long int
 get_ptmx_fops_address(void)
 {
-  device_id_t device_id = detect_device();
-  int ret;
-  int i;
+  unsigned long int address;
 
-  for (i = 0; i < n_supported_devices; i++) {
-    if (supported_devices[i].device_id == device_id) {
-      return supported_devices[i].ptmx_fops_address;
-    }
+  address = device_get_symbol_address(DEVICE_SYMBOL(ptmx_fops));
+  if (address) {
+    return address;
   }
 
-  ret = kallsyms_get_symbol_address("ptmx_fops");
-  if (!ret) {
-    print_reason_device_not_supported();
-    return 0;
+  if (kallsyms_exist()) {
+    address = kallsyms_get_symbol_address("ptmx_fops");
+    if (address) {
+      return address;
+    }
   }
 
-  return ret;
+  return 0;
 }