开发者

Android ioctl - root permissions and usage

开发者 https://www.devze.com 2023-03-26 10:52 出处:网络
I\'m working on some routing functionality in an Android app, and need to access ioctls.Since apps that use ioctls need root permission to run, the only way I\'ve been able to call them is linking a s

I'm working on some routing functionality in an Android app, and need to access ioctls. Since apps that use ioctls need root permission to run, the only way I've been able to call them is linking a separate 开发者_StackOverflow中文版executable and calling that from Java with Runtime.getRuntime().exec().

Is there a way to access root permissions from JNI in Android without building a separate executable? Is building an executable the best approach to access an ioctl?


There is no means for a non-root process to become root (beyond exploits), so yes, you need a separate process.

This is inherited unchanged from linux - the difference being that there's no direct way to launch an android application process as root from the launcher, since that sends an intent to zygote which forks off and privilege-reduces a child that specializes into an application process. (There may be a roundabout method to manually create an application process, but you'd have to have an applications process to do it, so it would by definition be a secondary process. And it would be inefficient as an application that was not a child of zygote would not inherit the shared mapping of system libraries, and so would have to load its own unique copies into memory)

ioctl() is just another syscall, and only requires root if the access permissions to that fd (from its device file) does. Obviously that's the case for the ones you want to use, but others are unpriveleged. For example the majority of Android framework IPC is ultimately implemented with Binder ioctl's, and they are commonly used to control a network socket.


ioctl() calls do not explicitly require root permission (or any specific permission) to use. As Chris Stratton said, you'll need permission to access the particular device in question. If you don't have said permission, you're not going to get it other than exploits.

What are you ultimately trying to achieve?

0

精彩评论

暂无评论...
验证码 换一张
取 消