[Feature Request] SU commands logging - Magisk

I saw this feature in SuperSU app and it's very useful when you try to investigate what app did when it got sudo rights. For now we only see that app use /system/bin/sh command but not what was after. Is it possible to implement that feature in Magisk?
Sent from Moto G (5S) Plus via Tapatalk

QkiZMR said:
I saw this feature in SuperSU app and it's very useful when you try to investigate what app did when it get sudo rights. For now we only see that app use /system/bin/sh command but what was after. Is it possible to implement that feature in Magisk?
Sent from Moto G (5S) Plus via Tapatalk
Click to expand...
Click to collapse
You mean this

Yup. In Magisk I only what app use SU, but not what was done with SU command.

QkiZMR said:
Yup. In Magisk I only what app use SU, but not what was done with SU command.
Click to expand...
Click to collapse
Any update?
Is there any way we can log the whole su command.,
Eg. /system/bin/sh cp build.prop build.prop.bak.
Instead of, Jus the binary path, "/system/bin/sh".

rahulmoh said:
Any update?
Is there any way we can log the whole su command.,
Eg. /system/bin/sh cp build.prop build.prop.bak.
Instead of, Jus the binary path, "/system/bin/sh".
Click to expand...
Click to collapse
Currently, no.

That is because SuperSU does something similar to the Xposed, but not as modular as Xopsed, SuperSU simply hooks into the invoked shell to see what commands did the Shell run

MCMotherEffin' said:
That is because SuperSU does something similar to the Xposed, but not as modular as Xopsed, SuperSU simply hooks into the invoked shell to see what commands did the Shell run
Click to expand...
Click to collapse
If supersu can do it superuser from Magisk also can do it. Question was is Magisk developers will add this feature in future.
Sent from Moto G (5S) Plus via Tapatalk

QkiZMR said:
If supersu can do it superuser from Magisk also can do it. Question was is Magisk developers will add this feature in future.
Sent from Moto G (5S) Plus via Tapatalk
Click to expand...
Click to collapse
The answer is currently no, but SuperSU is pretty closed source and was built from scratch according to Chainfire, and I have not seen any CM-based open source root solution do this

MCMotherEffin' said:
The answer is currently no, but SuperSU is pretty closed source and was built from scratch according to Chainfire, and I have not seen any CM-based open source root solution do this
Click to expand...
Click to collapse
Are you developer of Magisk? Or you just guessing...
Sent from Moto G (5S) Plus via Tapatalk

QkiZMR said:
Are you developer of Magisk? Or you just guessing...
Sent from Moto G (5S) Plus via Tapatalk
Click to expand...
Click to collapse
Developer, but not of Magisk, and I was just guessing

*bump*
I too sorely miss this feature.

QkiZMR said:
I saw this feature in SuperSU app and it's very useful when you try to investigate what app did when it get sudo rights. For now we only see that app use /system/bin/sh command but what was after. Is it possible to implement that feature in Magisk?
Click to expand...
Click to collapse
Hi,
When checking what App is doing with root, I start to think on this. After install the old SuperSU in an Emultor, I discovered that this App has two options for "su log": normal and full. The full option saves not only which App has called to the su binary, but what commands are executed.
So, as more and more unsecure Apps are running, I suggest to support this functionality inside the MagiskSU. I feel it's a must have!
Regards.

The full log is in paid version of SuperSU (I bought) one and right, you can see all commands executed as root. That is very useful feature to investigate what app is doing.

QkiZMR said:
The full log is in paid version of SuperSU (I bought) one and right, you can see all commands executed as root. That is very useful feature to investigate what app is doing.
Click to expand...
Click to collapse
Yes, you can found it in the "paid" version... or enable it in the config menu.
In any case: "That is very useful feature to investigate what app is doing"... today is a must have!

Any chance to get this feature in Magisk please? I'm trying to find which app is remounting system as R/W and checking Magisk superuser logs is the first point of troubleshooting, though it didn't solve my mystery.

_mysiak_ said:
Any chance to get this feature in Magisk please? I'm trying to find which app is remounting system as R/W and checking Magisk superuser logs is the first point of troubleshooting, though it didn't solve my mystery.
Click to expand...
Click to collapse
Hello, i just check it on Magisk v17.1, and effectivly the only one detail info that we get is "/system/bin/sh", no more.
You should open an issue or an pull request on the Magisk repo, Jhon could take a look on it.

Related

Do I have to root my fire in order to install CM12 on it?

hi,
I don't know if this is specific to fire or a general cyanogen question, but I work with fire- so there it is.
According to the tutorials I see (most notably Rootjunkies https://www.youtube.com/watch?v=4dwguHoxTvo) when I install CM I also need to put in SU in TWRP (or any other bootloader). Can I not to? What would happen?
I'd rather that apps I'll install be at their maximum segregation possible and have no loopholes to wiggle through.
Thank you very much.
You don't have to start a new thread, for every question
you have a few other threads, that you were are getting answers in
starting a new thread just means you have to wait
till someone with an answer sees your new thread
rather than getting an notification that you replied in an existing thread
it's up to you...
Sent from my KFFOWI using XDA Labs
Oh,
I actually thought it's more proper and organized that way. Separate issues- separate threads, and only those who are knowledgeable on that question would reply .
I'll try better next time.
thank you.
oy-ster said:
hi,
I don't know if this is specific to fire or a general cyanogen question, but I work with fire- so there it is.
According to the tutorials I see (most notably Rootjunkies
) when I install CM I also need to put in SU in TWRP (or any other bootloader). Can I not to? What would happen?
I'd rather that apps I'll install be at their maximum segregation possible and have no loopholes to wiggle through.
Thank you very much.
Click to expand...
Click to collapse
SU and SuperSU are entirely different things. SuperSu is a root manager that controls application access and elevated permissions. It is optional with CM 12.x which has an integrated root manager. SuperSU is a well respected third party tool that offers additional capabilities.
Davey126 said:
SU and SuperSU are entirely different things. SuperSu is a root manager that controls application access and elevated permissions. It is optional with CM 12.x which has an integrated root manager. SuperSU is a well respected third party tool that offers additional capabilities.
Click to expand...
Click to collapse
Wait, so if I understand you correctly CM already comes rooted?
Also, SU- so this is the command/file that gives the instruction to android to give administrative rights?
oy-ster said:
Wait, so if I understand you correctly CM already comes rooted?
Also, SU- so this is the command/file that gives the instruction to android to give administrative rights?
Click to expand...
Click to collapse
yes prerooted, off by default
yes, you will be prompted to allow or deny
Sent from my XT1254 using XDA Labs
oy-ster said:
Wait, so if I understand you correctly CM already comes rooted?
Click to expand...
Click to collapse
Yes - but disabled by default. Consult the CM 12-1 thread or do a Google search for instructions on enabling developer options for access to the root toggle.
oy-ster said:
Also, SU- so this is the command/file that gives the instruction to android to give administrative rights?
Click to expand...
Click to collapse
http://www.makeuseof.com/tag/su-important-using-linux-effectively
Google is your friend
Is there some way to remove the capability, not just turn it off? like with a stock?
and when i deny this su command to the kernel, does it happen in programs like supersu?
by the way, I wanted to thank you but apparently I'm limited to 8 thanks a day.
oy-ster said:
Is there some way to remove the capability, not just turn it off? like with a stock?
and when i deny this su command to the kernel, does it happen in programs like supersu?
Click to expand...
Click to collapse
Short answer - no. Curl up with a preferred beverage and search engine to advance your understanding of root, root managers and SU.
Davey126 said:
Short answer - no. Curl up with a preferred beverage and search engine to advance your understanding of root, root managers and SU.
Click to expand...
Click to collapse
thank you.

App Settings Module for Magisk?

hello,
i used the xposed module "app settings" version 1.13 with android marshmallow before i updated to nougat. this module enables you to change DPI, font scale, locale, force fullscreen, persist in memory, etc. on a per app basis.
here is a link to the module:
https://forum.xda-developers.com/xp...2014-05-14-t2437377/post63835421#post63835421
i have not found any possibility to get this working on nougat as there is no xposed for nougat and it seems there is no more custom rom with these options.
is it possible to get this module working with magisk?
satand said:
hello,
i used the xposed module "app settings" version 1.13 with android marshmallow before i updated to nougat. this module enables you to change DPI, font scale, locale, force fullscreen, persist in memory, etc. on a per app basis.
here is a link to the module:
https://forum.xda-developers.com/xp...2014-05-14-t2437377/post63835421#post63835421
i have not found any possibility to get this working on nougat as there is no xposed for nougat and it seems there is no more custom rom with these options.
is it possible to get this module working with magisk?
Click to expand...
Click to collapse
Downgrade to marshmallow or write xposed for nougat. The first is easy, the second will make many people happy over here.
Sent from my ONEPLUS A3003 using Tapatalk
satand said:
is it possible to get this module working with magisk?
Click to expand...
Click to collapse
Just to clarify on the above response: No.
Thanks Op, I also would love to have App Settings equivalent on Magisk or stand alone. Turns my 6.44" Mi Max into a desktop chrome browser almost
cobram3 said:
Thanks Op, I also would love to have App Settings equivalent on Magisk or stand alone. Turns my 6.44" Mi Max into a desktop chrome browser almost
Click to expand...
Click to collapse
It would be just ultra hard to code that, or just impossible.
years ago (before xposed got famous) some custom roms (paranoid,...) had these functions.
i would go back to marshmallow only because of this missing features but there is no marshmallow rom for my new oneplus 5.
is it really impossible to get it working with magisk? the code itself (version 1.13) worked without any problems on marshmallow.
satand said:
years ago (before xposed got famous) some custom roms (paranoid,...) had these functions.
i would go back to marshmallow only because of this missing features but there is no marshmallow rom for my new oneplus 5.
is it really impossible to get it working with magisk? the code itself (version 1.13) worked without any problems on marshmallow.
Click to expand...
Click to collapse
You'll need to manually edit files and apps and Magic Mount them with Magisk. Alternatively you could possibly do some things with some cumbersome scripts. Magisk can't change code of running apps, just replace/add already modified files and run scripts at boot.
In other words: No, IMO it's not worth the extreme hassle and you won't get the same thing as you would with Xposed.
Didgeridoohan said:
You'll need to manually edit files and apps and Magic Mount them with Magisk. Alternatively you could possibly do some things with some cumbersome scripts. Magisk can't change code of running apps, just replace/add already modified files and run scripts at boot.
In other words: No, IMO it's not worth the extreme hassle and you won't get the same thing as you would with Xposed.
Click to expand...
Click to collapse
thanks for your answer!
do you have more information about these "cumbersome scripts"? maybe it would work with tasker and a script per app.
i would be very happy...i like my smartphone much more with these features.
satand said:
thanks for your answer!
do you have more information about these "cumbersome scripts"? maybe it would work with tasker and a script per app.
i would be very happy...i like my smartphone much more with these features.
Click to expand...
Click to collapse
I wasn't gonna open up that can o' worms, but since you brought it up... :laugh:
Look up how to work with shell scripts. Tasker can run those (among other things). You could probably do some stuff with the resetprop tool as well (look here for details and syntax).
Don't expect miracles though...
Didgeridoohan said:
You'll need to manually edit files and apps and Magic Mount them with Magisk. Alternatively you could possibly do some things with some cumbersome scripts. Magisk can't change code of running apps, just replace/add already modified files and run scripts at boot.
In other words: No, IMO it's not worth the extreme hassle and you won't get the same thing as you would with Xposed.
Click to expand...
Click to collapse
Didgeridoohan said:
I wasn't gonna open up that can o' worms, but since you brought it up... :laugh:
Look up how to work with shell scripts. Tasker can run those (among other things). You could probably do some stuff with the resetprop tool as well (look here for details and syntax).
Don't expect miracles though...
Click to expand...
Click to collapse
thanks...but that is too high for me
Do we have a petition to develop this form? hahaha
I would like to have app settings on magisk too. I just wanted to change the app local instead of globe settings.
bush911 said:
I would like to have app settings on magisk too. I just wanted to change the app local instead of globe settings.
Click to expand...
Click to collapse
"App Locale 2" for Xposed can help you
And you can get Xposed systemlessly with Magisk.
Thank you so much for the advice.
My phone is 1st generation Pixel with latest android, mgaisk installed. I will try to figure it out.
daniel_m said:
"App Locale 2" for Xposed can help you
And you can get Xposed systemlessly with Magisk.
Click to expand...
Click to collapse
Anybody have a suggestion - I'm looking to change the dpi of chrome app (8.1) without Xposed
Maybe this could help
https://joyofandroid.com/change-screen-resolution/

IMPOSSIBLE to bypass mobile banking root check

Hello!
I'm trying to bypass the root check for this app
https://play.google.com/store/apps/details?id=ro.btrl.pay
however it's impossible I swear. I use Magisk Hide, no xposed, safetynet passes
If anyone manages to do it I'll be forever grateful. You can try to bypass it, the check is done on start so you don't have to log in
tommyzatt said:
Hello!
I'm trying to bypass the root check for this app
https://play.google.com/store/apps/details?id=ro.btrl.pay
however it's impossible I swear. I use Magisk Hide, no xposed, safetynet passes
If anyone manages to do it I'll be forever grateful. You can try to bypass it, the check is done on start so you don't have to log in
Click to expand...
Click to collapse
Did you also randomize the package name??
littleantony said:
Did you also randomize the package name??
Click to expand...
Click to collapse
I just did that and it doesn't work...
0xPraeT0Rian said:
I just did that and it doesn't work...
Click to expand...
Click to collapse
Did you clear the app data after doing so?
Gesendet von meinem Moto G (5) Plus mit Tapatalk
gothicVI said:
Did you clear the app data after doing so?
Gesendet von meinem Moto G (5) Plus mit Tapatalk
Click to expand...
Click to collapse
Yes
There are some apps that search for "Magisk" in the app name and trigger on that. But, there are plans on making MagiskHide change that as well... You could test if this is the case for this app by simply uninstalling the Magisk Manager and see if the app opens or not.
Didgeridoohan said:
There are some apps that search for "Magisk" in the app name and trigger on that. But, there are plans on making MagiskHide change that as well... You could test if this is the case for this app by simply uninstalling the Magisk Manager and see if the app opens or not.
Click to expand...
Click to collapse
This worked!
tommyzatt said:
This worked!
Click to expand...
Click to collapse
That means it's likely that the app looks for "Magisk" in the app make. There are plans to counter that in a future version of the Manager.
This one is also impossible
I need help with Japanese baking (digital token) app, it detects root with Magisk installed.
This is the app name: パスワードカード from 株式会社三井住友銀行
I tried using Magisk Hide, the SafetyNet passed, Magisk Hide props, Repacking Magisk Manager, USB debugging is off, Developer Options off. All that was done in conjunction and individually, forcing close the app and cleaning the app storage.
I also uninstalled Magisk completely and did not work. the only thing I have not tried is closing the bootloader.
This is the phone I'm using.
Model: OnePlus 5T
Android version: 9.0.5 stock OxigenOS (also 9.0.5) with April security patch
Magisk: version 19.1
Magisk Manager: version 7.1.2
IGDLTV said:
I need help with Japanese baking (digital token) app, it detects root with Magisk installed.
Click to expand...
Click to collapse
Try https://github.com/Ingan121/UDSBypass.
Edit: root is properly hidden without this script. Tested on Galaxy S7 (SM-G930L) 8.0 with Magisk 19.2 (currently same as 19.1).
error

XInsta magisk

Hi there,
Someone can port XInsta (Xposed Module) on magisk?
black_file said:
Hi there,
Someone can port XInsta (Xposed Module) on magisk?
Click to expand...
Click to collapse
Magisk is different from xposed... It doesn't work that way... [emoji6]
Sent from my MI 5 using Tapatalk
teddy0209 said:
Magisk is different from xposed... It doesn't work that way... [emoji6]
Sent from my MI 5 using Tapatalk
Click to expand...
Click to collapse
Thanks but why not processing same can you explain me [emoji846]
Think of Xposed as a code injector, that changes how an app or a process works while it's running.
Magisk, on the other hand, is a file injector that replaces system files at boot, and can also run scripts at boot (like init.d).
black_file said:
Thanks but why not processing same can you explain me [emoji846]
Click to expand...
Click to collapse
Xposed modifies code while magisk only modifies files
Didgeridoohan said:
Think of Xposed as a code injector, that changes how an app or a process works while it's running.
Magisk, on the other hand, is a file injector that replaces system files at boot, and can also run scripts at boot (like init.d).
Click to expand...
Click to collapse
Can't make script as code Injector?
black_file said:
Can't make script as code Injector?
Click to expand...
Click to collapse
Scripts can't inject code they can just execute linux/android shell comands,only xposed can alter an app's code
DanGLES3 said:
Scripts can't inject code they can just execute linux/android shell comands,only xposed can alter an app's code
Click to expand...
Click to collapse
Okay thank you [emoji846]
Nice work
I using this module on redmi 4x

Barclays banking app

I have installed the canary build as suggested by other people then used magiskhide to hide the banking app. I have also hidden the magisk app but still detects root.
Any other ideas?
Anyone got the barclays app working?
You need to hide magisk manager too inside its options. When you hide it (the option to hide is inside Magisk Manager) the app will be renamed Manager only
https://imgur.com/gallery/3Cc9ELx
Add Rootbeer to the Hide list as well, so you know for sure that MagiskHide is working as it should. If MagiskHide works all checkmarks should be green.
More hiding tips here:
https://www.didgeridoohan.com/magisk/MagiskHide#hn_Hiding_root_from_apps
@joluke They already have, as stated in the OP and it's also seen in the screenshot of the Manager.
Didgeridoohan said:
Add Rootbeer to the Hide list as well, so you know for sure that MagiskHide is working as it should. If MagiskHide works all checkmarks should be green.
@joluke They already have, as stated in the OP and it's also seen in the screenshot of the Manager.
Click to expand...
Click to collapse
Oh. Didn't notice then. Thanks for correcting me
stephenuk1996 said:
I have installed the canary build as suggested by other people then used magiskhide to hide the banking app. I have also hidden the magisk app but still detects root.
Any other ideas?
Anyone got the barclays app working?
Click to expand...
Click to collapse
Does it mean Paypal and Barclays app won't work because they see the root? I wanted to root my OP6 but didn't want to be in same position. I need either Paypal and Barclays app working... Thank you
Inviato dal mio ONEPLUS A6003 utilizzando Tapatalk
Didgeridoohan said:
Add Rootbeer to the Hide list as well, so you know for sure that MagiskHide is working as it should. If MagiskHide works all checkmarks should be green.
More hiding tips here:
https://www.didgeridoohan.com/magisk/MagiskHide#hn_Hiding_root_from_apps
@joluke They already have, as stated in the OP and it's also seen in the screenshot of the Manager.
Click to expand...
Click to collapse
Have done that now but still red Cross on the busybox section
islandman75 said:
Does it mean Paypal and Barclays app won't work because they see the root? I wanted to root my OP6 but didn't want to be in same position. I need either Paypal and Barclays app working... Thank you
Inviato dal mio ONEPLUS A6003 utilizzando Tapatalk
Click to expand...
Click to collapse
PayPal app works but barclays app is hard to bypass
stephenuk1996 said:
Have done that now but still red Cross on the busybox section
Click to expand...
Click to collapse
There you go... It's perfectly possible that's what the app is looking for. Remove any previously installed busybox (some systems comes with it preinstalled), and if you need it install from the Manager downloads instead.
Tried to remove it but can't find it, I reinstalled over it but still showing red cross
stephenuk1996 said:
Tried to remove it but can't find it, I reinstalled over it but still showing red cross
Click to expand...
Click to collapse
Disable the busybox module and reboot. After that, type which busybox in terminal and you'll find where it's located.
I deleted it from the sbin but after reboot it came back still red cross on the busybox section
Didgeridoohan said:
Disable the busybox module and reboot. After that, type which busybox in terminal and you'll find where it's located.
Click to expand...
Click to collapse
I deleted it from the sbin folder but comes back after reboot so still red cross showing
stephenuk1996 said:
I deleted it from the sbin folder but comes back after reboot so still red cross showing
Click to expand...
Click to collapse
In other words it's a part of your system and you won't be able to use the app until you figure that out (I've tested Barclays and Magisk can hide from it just fine). Could be the kernel that's installing it, as an example. If you're using a custom ROM and/or a custom kernel, ask for advice there.
And why the double posting in the general thread? As you see your just getting the same answers, and also adding noise...
stephenuk1996 said:
PayPal app works but barclays app is hard to bypass
Click to expand...
Click to collapse
Did you make Barclays works eventually?
islandman75 said:
Did you make Barclays works eventually?
Click to expand...
Click to collapse
See my previous post:
(I've tested Barclays and Magisk can hide from it just fine)
Click to expand...
Click to collapse
Didgeridoohan said:
See my previous post:
Click to expand...
Click to collapse
Thank you
Didgeridoohan said:
See my previous post:
Click to expand...
Click to collapse
Hi I'm still stuck. OP6, SmurfKernel and xXx Rom. Before the Rom, the Barclays app was working fine. After that when I open it, it recognizer that the device is rooted. I've notice the Rom installed BusyBox... Àny idea on how to make it work again? Thank you
islandman75 said:
Hi I'm still stuck. OP6, SmurfKernel and xXx Rom. Before the Rom, the Barclays app was working fine. After that when I open it, it recognizer that the device is rooted. I've notice the Rom installed BusyBox... Àny idea on how to make it work again? Thank you
Click to expand...
Click to collapse
Sounds like it's the ROM then. And, Busybox would be a likely suspect. I'd start by removing it...
Any news? Did you manage to understand if it's the rom giving you the problem?

Categories

Resources