Startsida Utforska Hjälp
Logga in
rainestorme
/
murkmod
spegling av https://github.com/rainestorme/murkmod.git
Bevaka 1
Stjärnmärk 0
Fork 0
Filer Ärenden 0 Wiki
Träd: 4.0
Grenar Taggar
murkmod
/
fakemurk-daemon.sh

fakemurk-daemon.sh 5.3 KB
Permalänk Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206 
  1. #!/bin/bash
    2. 

  2. 

  3. run_plugin() {
    4. 

  4.     local script=$1
    5. 

  5.     while true; do
    6. 

  6.         bash "$script"
    7. 

  7.     done & disown
    8. 

  8. }
    9. 

  9. 

  10. get_largest_nvme_namespace() {
    11. 

  11.     # this function doesn't exist if the version is old enough, so we redefine it
    12. 

  12.     local largest size tmp_size dev
    13. 

  13.     size=0
    14. 

  14.     dev=$(basename "$1")
    15. 

  15. 

  16.     for nvme in /sys/block/"${dev%n*}"*; do
    17. 

  17.         tmp_size=$(cat "${nvme}"/size)
    18. 

  18.         if [ "${tmp_size}" -gt "${size}" ]; then
    19. 

  19.             largest="${nvme##*/}"
    20. 

  20.             size="${tmp_size}"
    21. 

  21.         fi
    22. 

  22.     done
    23. 

  23.     echo "${largest}"
    24. 

  24. }
    25. 

  25. 

  26. doas() {
    27. 

  27.     ssh -t -p 1337 -i /rootkey -oStrictHostKeyChecking=no root@127.0.0.1 "$@"
    28. 

  28. }
    29. 

  29. 

  30. lsbval() {
    31. 

  31.   local key="$1"
    32. 

  32.   local lsbfile="${2:-/etc/lsb-release}"
    33. 

  33. 

  34.   if ! echo "${key}" | grep -Eq '^[a-zA-Z0-9_]+$'; then
    35. 

  35.     return 1
    36. 

  36.   fi
    37. 

  37. 

  38.   sed -E -n -e \
    39. 

  39.     "/^[[:space:]]*${key}[[:space:]]*=/{
    40. 

  40.       s:^[^=]+=[[:space:]]*::
    41. 

  41.       s:[[:space:]]+$::
    42. 

  42.       p
    43. 

  43.     }" "${lsbfile}"
    44. 

  44. }
    45. 

  45. 

  46. get_booted_kernnum() {
    47. 

  47.     if doas "((\$(cgpt show -n \"$dst\" -i 2 -P) > \$(cgpt show -n \"$dst\" -i 4 -P)))"; then
    48. 

  48.         echo -n 2
    49. 

  49.     else
    50. 

  50.         echo -n 4
    51. 

  51.     fi
    52. 

  52. }
    53. 

  53. 

  54. opposite_num() {
    55. 

  55.     if [ "$1" == "2" ]; then
    56. 

  56.         echo -n 4
    57. 

  57.     elif [ "$1" == "4" ]; then
    58. 

  58.         echo -n 2
    59. 

  59.     elif [ "$1" == "3" ]; then
    60. 

  60.         echo -n 5
    61. 

  61.     elif [ "$1" == "5" ]; then
    62. 

  62.         echo -n 3
    63. 

  63.     else
    64. 

  64.         return 1
    65. 

  65.     fi
    66. 

  66. }
    67. 

  67. 

  68. {
    69. 

  69.     until tpm_manager_client take_ownership; do
    70. 

  70.         echo "Failed to take ownership of TPM!"
    71. 

  71.         sleep 0.5
    72. 

  72.     done
    73. 

  73. 

  74.     {
    75. 

  75.         launch_racer(){
    76. 

  76.             echo launching racer at "$(date)"
    77. 

  77.             {
    78. 

  78.                 while true; do
    79. 

  79.                     cryptohome --action=remove_firmware_management_parameters >/dev/null 2>&1
    80. 

  80.                 done
    81. 

  81.             } &
    82. 

  82.             RACERPID=$!
    83. 

  83.         }
    84. 

  84.         launch_racer
    85. 

  85.         while true; do
    86. 

  86.             echo "checking cryptohome status"
    87. 

  87.             if [ "$(cryptohome --action=is_mounted)" == "true" ]; then
    88. 

  88.                 if ! [ -z $RACERPID ]; then
    89. 

  89.                     echo "Logged in, waiting to kill racer..."
    90. 

  90.                     sleep 60
    91. 

  91.                     kill -9 $RACERPID
    92. 

  92.                     echo "Racer terminated at $(date)"
    93. 

  93.                     RACERPID=
    94. 

  94.                 fi
    95. 

  95.             else
    96. 

  96.                 if [ -z $RACERPID ]; then 
    97. 

  97.                     launch_racer
    98. 

  98.                 fi
    99. 

  99.             fi
    100. 

  100.             sleep 10
    101. 

  101.         done
    102. 

  102.     } &
    103. 

  103. 

  104.     {
    105. 

  105.         while true; do
    106. 

  106.             vpd -i RW_VPD -s check_enrollment=0 >/dev/null 2>&1
    107. 

  107.             vpd -i RW_VPD -s block_devmode=0 >/dev/null 2>&1
    108. 

  108.             crossystem.old block_devmode=0 >/dev/null 2>&1
    109. 

  109.             sleep 60
    110. 

  110.         done
    111. 

  111.     } &
    112. 

  112. } &
    113. 

  113. 

  114. {
    115. 

  115.     while true; do
    116. 

  116.         if test -d "/home/chronos/user/Downloads/disable-extensions"; then
    117. 

  117.             kill -9 $(pgrep -f "\-\-extension\-process") 2>/dev/null
    118. 

  118.             sleep 0.5
    119. 

  119.         else
    120. 

  120.             sleep 5
    121. 

  121.         fi
    122. 

  122.     done
    123. 

  123. } &
    124. 

  124. 

  125. 

  126. {
    127. 

  127.     while true; do
    128. 

  128.         if test -d "/home/chronos/user/Downloads/fix-mush"; then
    129. 

  129. 

  130.             cat << 'EOF' > /usr/bin/crosh
    131. 

  131. mush_info() {
    132. 

  132.     echo "This is an emergency backup shell! If you triggered this accidentally, type the following command at the prompt:"
    133. 

  133.     echo "bash <(curl -SLk https://raw.githubusercontent.com/rainestorme/murkmod/main/murkmod.sh)"
    134. 

  134. }
    135. 

  135. 

  136. doas() {
    137. 

  137.     ssh -t -p 1337 -i /rootkey -oStrictHostKeyChecking=no root@127.0.0.1 "$@"
    138. 

  138. }
    139. 

  139. 

  140. runjob() {
    141. 

  141.     trap 'kill -2 $! >/dev/null 2>&1' INT
    142. 

  142.     (
    143. 

  143.         # shellcheck disable=SC2068
    144. 

  144.         $@
    145. 

  145.     )
    146. 

  146.     trap '' INT
    147. 

  147. }
    148. 

  148. 

  149. mush_info
    150. 

  150. runjob doas "bash"
    151. 

  151. EOF
    152. 

  152. 

  153.             sleep 10
    154. 

  154.         else
    155. 

  155.             sleep 5
    156. 

  156.         fi
    157. 

  157.     done
    158. 

  158. } &
    159. 

  159. 

  160. {
    161. 

  161.     # technically this should go in chromeos_startup.sh but it would slow down the boot process
    162. 

  162.     echo "Waiting for boot on emergency restore (just in case)"
    163. 

  163.     sleep 60
    164. 

  164.     echo "Checking for restore flag..."
    165. 

  165.     if [ -f /restore-emergency-backup ]; then
    166. 

  166.         echo "Restore flag found!"
    167. 

  167.         echo "Looking for backup files..."
    168. 

  168.         dst=/dev/$(get_largest_nvme_namespace)
    169. 

  169.         tgt_kern=$(opposite_num $(get_booted_kernnum))
    170. 

  170.         tgt_root=$(( $tgt_kern + 1 ))
    171. 

  171. 

  172.         kerndev=${dst}p${tgt_kern}
    173. 

  173.         rootdev=${dst}p${tgt_root}
    174. 

  174. 

  175.         if [ -f /mnt/stateful_partition/murkmod/kern_backup.img ] && [ -f /mnt/stateful_partition/murkmod/root_backup.img ]; then
    176. 

  176.             echo "Backup files found!"
    177. 

  177.             echo "Restoring kernel..."
    178. 

  178.             dd if=/mnt/stateful_partition/murkmod/kern_backup.img of=$kerndev bs=4M status=progress
    179. 

  179.             echo "Restoring rootfs..."
    180. 

  180.             dd if=/mnt/stateful_partition/murkmod/root_backup.img of=$rootdev bs=4M status=progress
    181. 

  181.             echo "Removing restore flag..."
    182. 

  182.             rm /restore-emergency-backup
    183. 

  183.             echo "Removing backup files..."
    184. 

  184.             rm /mnt/stateful_partition/murkmod/kern_backup.img
    185. 

  185.             rm /mnt/stateful_partition/murkmod/root_backup.img
    186. 

  186.             echo "Restored successfully!"
    187. 

  187.         else
    188. 

  188.             echo "Missing backup image, removing restore flag and aborting!"
    189. 

  189.             rm /restore-emergency-backup
    190. 

  190.         fi
    191. 

  191.     else 
    192. 

  192.         echo "No need to restore."
    193. 

  193.     fi
    194. 

  194. } &
    195. 

  195. 

  196. {
    197. 

  197.     echo "Witing for boot on daemon plugins (also just in case)"
    198. 

  198.     sleep 60
    199. 

  199.     echo "Finding daemon plugins..."
    200. 

  200.     for file in /mnt/stateful_partition/murkmod/plugins/*.sh; do
    201. 

  201.         if grep -q "daemon_plugin" "$file"; then
    202. 

  202.             echo "Spawning plugin $file..."
    203. 

  203.             run_plugin $file
    204. 

  204.         fi
    205. 

  205.     done
    206. 

  206. } &
    207.