Update README

Android.mk

@@ -2,12 +2,14 @@ LOCAL_PATH := $(call my-dir)
 include $(CLEAR_VARS)
 
 LOCAL_MODULE := su
-LOCAL_SRC_FILES := su.c activity.cpp
+LOCAL_SRC_FILES := su.c db.c activity.c utils.c
 
-
-LOCAL_C_INCLUDES += external/sqlite/dist
-LOCAL_SHARED_LIBRARIES := liblog libsqlite libandroid_runtime
+LOCAL_STATIC_LIBRARIES := \
+    liblog \
+    libc \
 
 LOCAL_MODULE_PATH := $(TARGET_OUT_OPTIONAL_EXECUTABLES)
+LOCAL_MODULE_TAGS := eng debug
+LOCAL_FORCE_STATIC_EXECUTABLE := true
 
-include $(BUILD_EXECUTABLE)
+include $(BUILD_EXECUTABLE)

README

@@ -17,3 +17,4 @@ Branches for this repo support the following Android versions:
 Branches marked with '-dev' are in work and should probably not be used. I will push to those channels as I develop new versions so they may be broken from time to time.
 
 * I have yet to personally test superuser on any honeycomb devices, therefore I cannot guarantee it's compatibility
+Run

activity.c

@@ -0,0 +1,78 @@
+/*
+** Copyright 2010, Adam Shanks (@ChainsDD)
+** Copyright 2008, Zinx Verituse (@zinxv)
+**
+** Licensed under the Apache License, Version 2.0 (the "License");
+** you may not use this file except in compliance with the License.
+** You may obtain a copy of the License at
+**
+**     http://www.apache.org/licenses/LICENSE-2.0
+**
+** Unless required by applicable law or agreed to in writing, software
+** distributed under the License is distributed on an "AS IS" BASIS,
+** WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+** See the License for the specific language governing permissions and
+** limitations under the License.
+*/
+
+#include <unistd.h>
+#include <stdlib.h>
+#include <stdio.h>
+
+#include "su.h"
+
+int send_intent(const struct su_context *ctx,
+                const char *socket_path, int allow, const char *action)
+{
+	char command[PATH_MAX];
+
+	sprintf(command, "/system/bin/am broadcast -a '%s' --es socket '%s' --ei caller_uid '%d' --ei allow '%d' --ei version_code '%d' > /dev/null",
+			action, socket_path, ctx->from.uid, allow, VERSION_CODE);	
+
+    // before sending the intent, make sure the (uid and euid) and (gid and egid) match,
+    // otherwise LD_LIBRARY_PATH is wiped in Android 4.0+.
+    // Also, sanitize all secure environment variables (from linker_environ.c in linker).
+
+    /* The same list than GLibc at this point */
+    static const char* const unsec_vars[] = {
+        "GCONV_PATH",
+        "GETCONF_DIR",
+        "HOSTALIASES",
+        "LD_AUDIT",
+        "LD_DEBUG",
+        "LD_DEBUG_OUTPUT",
+        "LD_DYNAMIC_WEAK",
+        "LD_LIBRARY_PATH",
+        "LD_ORIGIN_PATH",
+        "LD_PRELOAD",
+        "LD_PROFILE",
+        "LD_SHOW_AUXV",
+        "LD_USE_LOAD_BIAS",
+        "LOCALDOMAIN",
+        "LOCPATH",
+        "MALLOC_TRACE",
+        "MALLOC_CHECK_",
+        "NIS_PATH",
+        "NLSPATH",
+        "RESOLV_HOST_CONF",
+        "RES_OPTIONS",
+        "TMPDIR",
+        "TZDIR",
+        "LD_AOUT_LIBRARY_PATH",
+        "LD_AOUT_PRELOAD",
+        // not listed in linker, used due to system() call
+        "IFS",
+    };
+    const char* const* cp   = unsec_vars;
+    const char* const* endp = cp + sizeof(unsec_vars)/sizeof(unsec_vars[0]);
+    while (cp < endp) {
+        unsetenv(*cp);
+        cp++;
+    }
+
+    // sane value so "am" works
+    setenv("LD_LIBRARY_PATH", "/vendor/lib:/system/lib", 1);
+    setegid(getgid());
+    seteuid(getuid());
+    return system(command);
+}

db.c

@@ -0,0 +1,58 @@
+/*
+** Copyright 2010, Adam Shanks (@ChainsDD)
+**
+** Licensed under the Apache License, Version 2.0 (the "License");
+** you may not use this file except in compliance with the License.
+** You may obtain a copy of the License at
+**
+**     http://www.apache.org/licenses/LICENSE-2.0
+**
+** Unless required by applicable law or agreed to in writing, software
+** distributed under the License is distributed on an "AS IS" BASIS,
+** WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+** See the License for the specific language governing permissions and
+** limitations under the License.
+*/
+
+#include <stdlib.h>
+#include <stdio.h>
+#include <limits.h>
+#include <cutils/log.h>
+
+#include "su.h"
+
+int database_check(const struct su_context *ctx)
+{
+    FILE *fp;
+    char allow = '-';
+    char *filename = malloc(snprintf(NULL, 0, "%s/%u-%u", REQUESTOR_STORED_PATH, ctx->from.uid, ctx->to.uid) + 1);
+    sprintf(filename, "%s/%u-%u", REQUESTOR_STORED_PATH, ctx->from.uid, ctx->to.uid);
+    if ((fp = fopen(filename, "r"))) {
+    LOGD("Found file");
+        char cmd[PATH_MAX];
+        fgets(cmd, sizeof(cmd), fp);
+        int last = strlen(cmd) - 1;
+        LOGD("this is the last character %u of the string", cmd[5]);
+        if (cmd[last] == '\n') {
+            cmd[last] = '\0';
+        }
+        LOGD("Comparing %c %s, %u to %s", cmd[last - 2], cmd, last, get_command(&ctx->to));
+        if (strcmp(cmd, get_command(&ctx->to)) == 0) {
+            allow = fgetc(fp);
+        }
+        fclose(fp);
+    } else if ((fp = fopen(REQUESTOR_STORED_DEFAULT, "r"))) {
+    LOGD("Using default");
+        allow = fgetc(fp);
+        fclose(fp);
+    }
+    free(filename);
+
+    if (allow == '1') {
+        return DB_ALLOW;
+    } else if (allow == '0') {
+        return DB_DENY;
+    } else {
+        return DB_INTERACTIVE;
+    }
+}