Add a kernel module to sync S/PDIF volume

Author: yath

.gitmodules

@@ -10,3 +10,6 @@
 [submodule "third_party/procyon"]
 	path = third_party/procyon
 	url = https://github.com/yath/procyon-mirror.git
+[submodule "third_party/linux"]
+	path = third_party/linux
+	url = https://github.com/yath/mediatek-linux-3.10

Kbuild

@@ -0,0 +1,2 @@
+ccflags-y := -std=gnu99 -Wno-declaration-after-statement
+obj-m := audiosync.o

Makefile

@@ -17,6 +17,9 @@ TARGET_CFLAGS = $(CFLAGS) -mcpu=cortex-a17 -mfpu=neon
 
 CROSS := arm-none-eabi-
 
+# https://launchpad.net/linaro-toolchain-binaries/trunk/2013.10/+download/gcc-linaro-arm-linux-gnueabihf-4.8-2013.10_linux.tar.xz
+LINUX_CROSS := $$PWD/third_party/gcc-linaro-arm-linux-gnueabihf-4.8-2013.10_linux/bin/arm-linux-gnueabihf-
+
 INSTALL_DIR := /data/local/tmp
 INSTALL_TARGETS := loader patcher patcher-payload.so cli decrap
 
@@ -54,6 +57,14 @@ kernelutil: kernelutil.go
 decrypt: decrypt.c
 	$(CC) $(CFLAGS) -o $@ $< -lcrypto
 
+## kernel modules
+third_party/linux.stamp:
+	+$(MAKE) -C third_party LINUX_CROSS=$(LINUX_CROSS) linux.stamp
+
+.PHONY: *.ko
+*.ko: third_party/linux.stamp
+	$(MAKE) -C third_party/linux ARCH=arm CROSS_COMPILE=$(LINUX_CROSS) M=$$PWD $@
+
 ## debugging stuff
 
 # _Cust_dump_all_thread (b.da)

audiosync.c

@@ -0,0 +1,108 @@
+#include <linux/module.h>
+#include <linux/kernel.h>
+#include <linux/slab.h>
+#include <linux/kallsyms.h>
+
+#define DEBUG(fmt, args...) printk(KERN_INFO KBUILD_MODNAME ": "fmt"\n", ##args)
+
+#define ASSERT(condition) do { \
+    if (!(condition)) { \
+        WARN(true, "Assertion \""#condition"\" failed"); \
+        return -EINVAL; \
+    } \
+} while(0)
+
+typedef unsigned long word;
+
+#define FAR_JMP 0xe51ff004 // ldr pc, [pc, #-4]
+
+enum {
+    TI_BRANCH_HOOK_1 = 0, // FAR_JMP
+    TI_BRANCH_HOOK_2,     // addr of hook
+    TI_ORIG_INSN_1,       // overwritten first word of f
+    TI_ORIG_INSN_2,       // overwritten second word of f
+    TI_CALL_ORIG_1,       // FAR_JMP
+    TI_CALL_ORIG_2,       // addr of f+8
+    TI_CALL_MAX,
+} trampoline_instruction_t;
+
+static void hook_fun(word *f, void *hook, word **orig_fun) {
+    word *trampoline = kcalloc(TI_CALL_MAX, sizeof(word), GFP_KERNEL);
+
+    trampoline[TI_BRANCH_HOOK_1] = FAR_JMP;
+    trampoline[TI_BRANCH_HOOK_2] = (word)hook;
+    trampoline[TI_ORIG_INSN_1] = f[0];
+    trampoline[TI_ORIG_INSN_2] = f[1];
+    trampoline[TI_CALL_ORIG_1] = FAR_JMP;
+    trampoline[TI_CALL_ORIG_2] = (word)&f[2];
+
+    *orig_fun = &trampoline[TI_ORIG_INSN_1];
+
+    f[0] = FAR_JMP;
+    f[1] = (word)trampoline;
+
+    DEBUG("hook_fun(f=%pS (%px), hook=%pS (%px)), trampoline is at %px", f, f, hook, hook, trampoline);
+
+    for (int i = 0; i < TI_CALL_MAX; i++)
+        DEBUG("  trampoline[%d] = %lx", i, trampoline[i]);
+    for (int i = 0; i < 2; i++)
+        DEBUG("  set f[%d]: %lx", i, f[i]);
+}
+
+static int restore_fun(word **orig_fun) {
+    word *trampoline = *orig_fun - TI_ORIG_INSN_1;
+    ASSERT(trampoline[TI_BRANCH_HOOK_1] == FAR_JMP);
+    ASSERT(trampoline[TI_CALL_ORIG_1] == FAR_JMP);
+
+    word *f = ((word **)trampoline)[TI_CALL_ORIG_2] - 2;
+    DEBUG("restore_fun(orig_fun=%pS (%px)), trampoline is at %px, f=%pS (%px)", orig_fun, orig_fun, trampoline, f, f);
+
+    ASSERT(f[0] == FAR_JMP);
+    ASSERT(f[1] == (word)trampoline);
+
+    f[0] = trampoline[TI_ORIG_INSN_1];
+    f[1] = trampoline[TI_ORIG_INSN_2];
+
+    for (int i = 0; i < 2; i++)
+        DEBUG("  reset f[%d]: %lx", i, f[i]);
+
+    kfree(trampoline);
+    *orig_fun = NULL;
+
+    return 0;
+}
+
+int (*orig_MTAUD_SetChannelVolume)(int, int, int) = NULL;
+
+int my_MTAUD_SetChannelVolume(int decoder, int channel, int value) {
+    DEBUG("my_MTAUD_SetChannelVolume(%d, %d, %d)", decoder, channel, value);
+
+    if (channel == 0 || channel == 21) {
+        int ret = orig_MTAUD_SetChannelVolume(0, 6, value);
+        DEBUG("  also set channel 6, rc=%d", ret);
+    } else if (channel == 1 || channel == 22) {
+        int ret = orig_MTAUD_SetChannelVolume(0, 7, value);
+        DEBUG("  also set channel 7, rc=%d", ret);
+    }
+
+    return orig_MTAUD_SetChannelVolume(decoder, channel, value);
+}
+
+int init_module(void) {
+    word *p = (word *)kallsyms_lookup_name("_MTAUD_SetChannelVolume");
+    if (!p) {
+        printk(KERN_ERR "can't find symbol\n");
+        return -ENOENT;
+    }
+
+    hook_fun((word *)p, my_MTAUD_SetChannelVolume, (word **)&orig_MTAUD_SetChannelVolume);
+    DEBUG("loaded.");
+	return 0;
+}
+
+void cleanup_module(void) {
+    restore_fun((word **)&orig_MTAUD_SetChannelVolume);
+    DEBUG("unloaded.");
+}
+
+MODULE_LICENSE("GPL");

third_party/Makefile

@@ -15,6 +15,7 @@ clean:
 	cd dex2jar && rm -f *.sh && rm -rf out && $(GRADLE4) clean && rm -rf .gradle
 	cd procyon && rm -f procyon-decompiler.jar && $(GRADLE4) clean && rm -rf .gradle
 	cd vdexExtractor && ./make.sh clean
+	rm -f linux.stamp && cd linux && make distclean
 
 apktool/apktool.jar:
 	cd apktool && \
@@ -35,3 +36,12 @@ procyon/procyon-decompiler.jar:
 
 vdexExtractor/bin/vdexExtractor:
 	cd vdexExtractor && ./make.sh
+
+linux.stamp:
+ifndef LINUX_CROSS
+	$(error set LINUX_CROSS to cross compiler prefix)
+endif
+	sed -i -e 's/^ *YYLTYPE yylloc;/extern &/' linux/scripts/dtc/dtc-lexer.*
+	cp config-linux-3.10.79 linux/.config
+	+cd linux && $(MAKE) ARCH=arm CROSS_COMPILE=$(LINUX_CROSS) oldconfig modules
+	touch linux.stamp