vrr/vpnhide
2
0
Fork 0
mirror of https://github.com/okhsunrog/vpnhide.git synced 2026-04-29 15:12:31 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

security: restrict target list visibility from apps

Browse source 
- /proc/vpnhide_targets: change from 0644 to 0600 (root only).
  Apps could read the UID list and discover which apps are targeted.
- Remove /data/local/tmp/vpnhide_targets.txt copies from service.sh
  and WebUI (no longer needed after get_module_dir() fix).
This commit is contained in:
okhsunrog 2026-04-12 02:06:39 +03:00
parent 6a4862fb69
commit a8bed7e044
3 changed files with 5 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

2
zygisk/module/webroot/index.html
View file

@ -289,7 +289,7 @@
const b64 = btoa(body);
// Step 1: save package names to targets.txt (persistent + module dir for Magisk SELinux compat)
const step1 = `mkdir -p ${PERSIST_DIR} && echo '${b64}' | base64 -d > ${TARGETS_PATH} && chmod 644 ${TARGETS_PATH} && cp ${TARGETS_PATH} ${MODULE_TARGETS_PATH} 2>/dev/null && cp ${TARGETS_PATH} /data/local/tmp/vpnhide_targets.txt 2>/dev/null && chmod 644 /data/local/tmp/vpnhide_targets.txt 2>/dev/null`;
const step1 = `mkdir -p ${PERSIST_DIR} && echo '${b64}' | base64 -d > ${TARGETS_PATH} && chmod 644 ${TARGETS_PATH} && cp ${TARGETS_PATH} ${MODULE_TARGETS_PATH} 2>/dev/null`;
const r1 = await ksuExec(step1);
if (r1.errno !== 0) throw new Error(r1.stderr || `step1 errno=${r1.errno}`);