v2.1

[Mzdyl]

Summary by Sourcery

为 OneUI CSC 功能文件引入基于哈希的增量处理和覆盖（overlay）式部署，以减少重复工作，并与 Magisk/KSU 挂载集成。

增强内容：

• 添加哈希计算与缓存，通过跨重启跳过未变更的 CSC 相关文件。
• 用适配 overlay 的部署方式替换手工 bind 挂载，统一规范目标路径并保留 SELinux 上下文。
• 改进对 floating_feature 的处理，提供更清晰的 system/etc 回退逻辑和统一的部署流程。
• 确保 CSC 工具在运行时可执行，并清理日志与调试处理逻辑。

Original summary in English

Summary by Sourcery

Introduce hash-based incremental processing and overlay deployment for OneUI CSC feature files to reduce redundant work and integrate with Magisk/KSU mounting.

Enhancements:

• Add hash calculation and caching to skip unchanged CSC-related files across boots.
• Replace manual bind mounts with overlay-friendly deployment that normalizes target paths and preserves SELinux context.
• Improve floating_feature handling with clearer system/etc fallback logic and unified deployment flow.
• Ensure CSC tool is executable at runtime and clean up logging and debug handling.

[sourcery-ai]

审阅者指南

将 CSC 功能的 post-fs 脚本重构为使用基于哈希的增量处理，以及 Magisk/KSU 的 overlay 风格部署来替代直接的 bind mount，同时加强对 floating_feature 的路径处理，并确保 CSC 工具可执行；对 service.sh 进行了一处轻微注释调整。

更新后的功能文件处理与 overlay 部署时序图

sequenceDiagram
    participant PostFsScript
    participant CSCTool
    participant Filesystem
    participant MagiskKSU

    Note over PostFsScript: process_feature_file(label, filename, config_name)

    PostFsScript->>Filesystem: find_file for origin_path
    alt origin_path not found and label ff
        PostFsScript->>Filesystem: check /system/etc/floating_feature.xml
        alt exists
            PostFsScript->>PostFsScript: set origin_path=/system/etc/floating_feature.xml
        else not exists
            PostFsScript->>Filesystem: check /etc/floating_feature.xml
            alt exists
                PostFsScript->>PostFsScript: set origin_path=/etc/floating_feature.xml
            else not exists
                PostFsScript-->>PostFsScript: log skip and return
            end
        end
    else origin_path found
        PostFsScript-->>PostFsScript: use found origin_path
    end

    PostFsScript->>Filesystem: read user_config from CONFIG_PATH
    PostFsScript->>PostFsScript: calc_hash(origin_path, user_config, TOOL)
    PostFsScript->>Filesystem: read old_hash from HASH_DIR/label.md5
    PostFsScript->>PostFsScript: compare current_hash with old_hash
    PostFsScript->>Filesystem: check MODDIR+normalized_origin_path exists

    alt hash unchanged and deployed file exists
        PostFsScript-->>PostFsScript: log no change, skip processing
    else changed or first run
        Note over PostFsScript: label ff plaintext path
        alt label == ff
            PostFsScript->>Filesystem: cp origin_path to decoded_file
            alt user_config exists
                PostFsScript->>CSCTool: --patch decoded_file user_config patched_file
                CSCTool-->>PostFsScript: patched_file
            else no user_config
                PostFsScript->>Filesystem: cp decoded_file to patched_file
            end
            PostFsScript->>Filesystem: deploy_for_mount patched_file -> target_path
            PostFsScript->>Filesystem: write current_hash to HASH_DIR/label.md5
        else non ff encrypted path
            PostFsScript->>CSCTool: --decode origin_path decoded_file
            CSCTool-->>PostFsScript: decoded_file
            alt decoded_file missing
                PostFsScript-->>PostFsScript: log decode failure and return
            else decoded_file ok
                alt user_config exists
                    PostFsScript->>CSCTool: --patch decoded_file user_config patched_file
                    CSCTool-->>PostFsScript: patched_file
                else no user_config
                    PostFsScript->>Filesystem: cp decoded_file to patched_file
                end
                PostFsScript->>CSCTool: --encode patched_file final_file
                CSCTool-->>PostFsScript: final_file or failure
                alt final_file exists
                    PostFsScript->>Filesystem: deploy_for_mount final_file -> /system+origin_path
                else encode failed
                    PostFsScript->>Filesystem: deploy_for_mount patched_file -> /system+origin_path
                end
                PostFsScript->>Filesystem: write current_hash to HASH_DIR/label.md5
            end
        end
    end

    Note over MagiskKSU,Filesystem: Later, Magisk/KSU uses module files under MODDIR for OverlayFS/Magic Mount

Loading

文件级改动

变更	详情	文件
从直接 bind mount 切换为 Magisk/KSU overlay 风格的文件部署，并保留 SELinux 上下文。	移除使用 umount/mount --bind 作用于目标文件的 safe_mount 包装函数。 新增 deploy_for_mount，用于将 /etc 路径规范化为 /system/etc，将文件镜像到模块目录中，并通过 chcon 应用 SELinux 上下文。 更新 process_feature_file 中所有调用点，改为使用 deploy_for_mount，而不是直接挂载并调用 restorecon。	module_files/post-fs-data.sh
增加使用组合文件哈希的增量处理，使功能文件仅在输入变化时才重新处理。	在模块目录中引入 HASH_DIR，并在 prepare_log 中创建。 新增 calc_hash 辅助函数，用于对源文件、用户配置和工具二进制计算 md5。 按 label 存储和比较 md5 文件；当哈希匹配且已存在部署文件时跳过处理；在成功或回退路径上持久化哈希。	module_files/post-fs-data.sh
强化对 floating_feature 以及通用 CSC 处理的源文件解析与处理逻辑。	调整 ff 回退逻辑，优先使用 /system/etc/floating_feature.xml，然后是 /etc/floating_feature.xml，并记录所选路径。 在检查已部署文件时，将基于 /etc 的源路径标准化为 /system/etc。 确保 cp 使用 -f，并且对于非 ff 文件的加密路径部署，目标为 /system$origin_path；在编码失败时回退到明文部署。	module_files/post-fs-data.sh
提升 CSC 工具执行的健壮性与基础设置。	在 prepare_log 中创建 HASH_DIR，并略微简化调试/日志辅助函数及注释。 在使用前通过 chmod +x 确保 CSC 工具二进制具有可执行权限。 对脚本头部注释文本做了小幅调整。	module_files/post-fs-data.sh
对 service.sh 中注释做了轻微措辞调整。	更新结尾处描述开启实验室菜单限制的中文注释。 保持 service.sh 的功能行为不变。	module_files/service.sh

---

提示与命令

与 Sourcery 交互

• 触发新的审阅： 在 pull request 中评论 @sourcery-ai review。
• 继续讨论： 直接回复 Sourcery 的审阅评论。
• 根据审阅评论生成 GitHub issue： 在某条审阅评论下回复，请求 Sourcery 从该评论创建 issue。你也可以回复该审阅评论 @sourcery-ai issue 来从中创建 issue。
• 生成 pull request 标题： 在 pull request 标题中任意位置写上 @sourcery-ai，即可随时生成标题。你也可以在 pull request 中评论 @sourcery-ai title 来（重新）生成标题。
• 生成 pull request 摘要： 在 pull request 内容中任意位置写上 @sourcery-ai summary，即可在该位置生成 PR 摘要。你也可以在 pull request 中评论 @sourcery-ai summary 来在任意时间（重新）生成摘要。
• 生成审阅者指南： 在 pull request 中评论 @sourcery-ai guide，即可在任意时间（重新）生成审阅者指南。
• 批量解决所有 Sourcery 评论： 在 pull request 中评论 @sourcery-ai resolve 来将所有 Sourcery 评论标记为已解决。如果你已经处理了所有评论并且不想再看到它们，这会很有用。
• 忽略所有 Sourcery 审阅： 在 pull request 中评论 @sourcery-ai dismiss 来忽略所有现有的 Sourcery 审阅。特别适用于你想从头开始一次新的审阅时——别忘了再次评论 @sourcery-ai review 来触发新的审阅！

自定义你的体验

访问你的控制面板 以：

• 启用或禁用审阅功能，例如 Sourcery 生成的 pull request 摘要、审阅者指南等。
• 更改审阅语言。
• 添加、移除或编辑自定义审阅指令。
• 调整其他审阅设置。

获取帮助

• 如有问题或反馈，请联系支持团队。
• 访问我们的文档以获取详细指南与信息。
• 通过关注 X/Twitter、LinkedIn 或 GitHub 与 Sourcery 团队保持联系。

Original review guide in English

Reviewer's Guide

Refactors the CSC feature post-fs script to use hash-based incremental processing and Magisk/KSU overlay-style deployment instead of direct bind mounts, adds more robust path handling for floating_feature, and ensures the CSC tool is executable; minor comment tweak in service.sh.

Sequence diagram for updated feature file processing and overlay deployment

sequenceDiagram
    participant PostFsScript
    participant CSCTool
    participant Filesystem
    participant MagiskKSU

    Note over PostFsScript: process_feature_file(label, filename, config_name)

    PostFsScript->>Filesystem: find_file for origin_path
    alt origin_path not found and label ff
        PostFsScript->>Filesystem: check /system/etc/floating_feature.xml
        alt exists
            PostFsScript->>PostFsScript: set origin_path=/system/etc/floating_feature.xml
        else not exists
            PostFsScript->>Filesystem: check /etc/floating_feature.xml
            alt exists
                PostFsScript->>PostFsScript: set origin_path=/etc/floating_feature.xml
            else not exists
                PostFsScript-->>PostFsScript: log skip and return
            end
        end
    else origin_path found
        PostFsScript-->>PostFsScript: use found origin_path
    end

    PostFsScript->>Filesystem: read user_config from CONFIG_PATH
    PostFsScript->>PostFsScript: calc_hash(origin_path, user_config, TOOL)
    PostFsScript->>Filesystem: read old_hash from HASH_DIR/label.md5
    PostFsScript->>PostFsScript: compare current_hash with old_hash
    PostFsScript->>Filesystem: check MODDIR+normalized_origin_path exists

    alt hash unchanged and deployed file exists
        PostFsScript-->>PostFsScript: log no change, skip processing
    else changed or first run
        Note over PostFsScript: label ff plaintext path
        alt label == ff
            PostFsScript->>Filesystem: cp origin_path to decoded_file
            alt user_config exists
                PostFsScript->>CSCTool: --patch decoded_file user_config patched_file
                CSCTool-->>PostFsScript: patched_file
            else no user_config
                PostFsScript->>Filesystem: cp decoded_file to patched_file
            end
            PostFsScript->>Filesystem: deploy_for_mount patched_file -> target_path
            PostFsScript->>Filesystem: write current_hash to HASH_DIR/label.md5
        else non ff encrypted path
            PostFsScript->>CSCTool: --decode origin_path decoded_file
            CSCTool-->>PostFsScript: decoded_file
            alt decoded_file missing
                PostFsScript-->>PostFsScript: log decode failure and return
            else decoded_file ok
                alt user_config exists
                    PostFsScript->>CSCTool: --patch decoded_file user_config patched_file
                    CSCTool-->>PostFsScript: patched_file
                else no user_config
                    PostFsScript->>Filesystem: cp decoded_file to patched_file
                end
                PostFsScript->>CSCTool: --encode patched_file final_file
                CSCTool-->>PostFsScript: final_file or failure
                alt final_file exists
                    PostFsScript->>Filesystem: deploy_for_mount final_file -> /system+origin_path
                else encode failed
                    PostFsScript->>Filesystem: deploy_for_mount patched_file -> /system+origin_path
                end
                PostFsScript->>Filesystem: write current_hash to HASH_DIR/label.md5
            end
        end
    end

    Note over MagiskKSU,Filesystem: Later, Magisk/KSU uses module files under MODDIR for OverlayFS/Magic Mount

Loading

File-Level Changes

Change	Details	Files
Switch from direct bind mounts to Magisk/KSU overlay-style file deployment with SELinux context preservation.	Remove safe_mount wrapper that used umount/mount --bind on target files. Introduce deploy_for_mount to normalize /etc paths to /system/etc, mirror files into the module directory, and apply SELinux context with chcon. Update all call sites in process_feature_file to use deploy_for_mount instead of mounting directly and calling restorecon.	module_files/post-fs-data.sh
Add incremental processing using combined file hashes so feature files are only reprocessed when inputs change.	Introduce HASH_DIR in the module directory and create it in prepare_log. Add calc_hash helper to compute an md5 over origin file, user config, and tool binary. Store and compare per-label md5 files; skip processing when hash matches and a previously deployed file exists; persist hash on success or fallback paths.	module_files/post-fs-data.sh
Harden origin file resolution and handling for floating_feature and general CSC processing.	Adjust ff fallback to prefer /system/etc/floating_feature.xml, then /etc/floating_feature.xml, and log selected path. Standardize /etc-based origin paths to /system/etc when checking for existing deployed files. Ensure cp uses -f and that encoded-path deployment for non-ff files targets /system$origin_path, with a plaintext fallback when encode fails.	module_files/post-fs-data.sh
General robustness and setup improvements for the CSC tool execution.	Create HASH_DIR in prepare_log and slightly simplify debug/log helpers and comments. Ensure the CSC tool binary is marked executable via chmod +x before use. Slightly adjust script header comment text.	module_files/post-fs-data.sh
Minor comment wording adjustment in service.sh.	Update trailing Chinese comment describing limitations of enabling the lab menu. Keep functional behavior of service.sh unchanged.	module_files/service.sh

---

Tips and commands

Interacting with Sourcery

• Trigger a new review: Comment @sourcery-ai review on the pull request.
• Continue discussions: Reply directly to Sourcery's review comments.
• Generate a GitHub issue from a review comment: Ask Sourcery to create an
  issue from a review comment by replying to it. You can also reply to a
  review comment with @sourcery-ai issue to create an issue from it.
• Generate a pull request title: Write @sourcery-ai anywhere in the pull
  request title to generate a title at any time. You can also comment
  @sourcery-ai title on the pull request to (re-)generate the title at any time.
• Generate a pull request summary: Write @sourcery-ai summary anywhere in
  the pull request body to generate a PR summary at any time exactly where you
  want it. You can also comment @sourcery-ai summary on the pull request to
  (re-)generate the summary at any time.
• Generate reviewer's guide: Comment @sourcery-ai guide on the pull
  request to (re-)generate the reviewer's guide at any time.
• Resolve all Sourcery comments: Comment @sourcery-ai resolve on the
  pull request to resolve all Sourcery comments. Useful if you've already
  addressed all the comments and don't want to see them anymore.
• Dismiss all Sourcery reviews: Comment @sourcery-ai dismiss on the pull
  request to dismiss all existing Sourcery reviews. Especially useful if you
  want to start fresh with a new review - don't forget to comment
  @sourcery-ai review to trigger a new review!

Customizing Your Experience

Access your dashboard to:

• Enable or disable review features such as the Sourcery-generated pull request
  summary, the reviewer's guide, and others.
• Change the review language.
• Add, remove or edit custom review instructions.
• Adjust other review settings.

Getting Help

• Contact our support team for questions or feedback.
• Visit our documentation for detailed guides and information.
• Keep in touch with the Sourcery team by following us on X/Twitter, LinkedIn or GitHub.

[sourcery-ai]

Hey - 我发现了 3 个问题，并给出了一些整体反馈：

• 在非 ff 分支中，你调用了 deploy_for_mount "$final_file" "/system$origin_path"（回退路径同理），但 origin_path 可能已经是 /system 下或其他根路径下的绝对路径；建议直接传入原始的 origin_path，并让 deploy_for_mount 自行处理规范化，以避免生成诸如 /system/optics/... 这样的无效路径。
• /etc/* → /system/etc/* 的路径规范化逻辑同时出现在增量 Hash 校验和 deploy_for_mount 内部；你可以把这段路径规范化逻辑集中到一个统一的辅助函数中，避免“检查文件是否存在”和“实际部署文件的位置”之间出现细微不一致。

供 AI 代理使用的提示（Prompt for AI Agents）

Please address the comments from this code review:

## Overall Comments
- In the non-ff branch you call `deploy_for_mount "$final_file" "/system$origin_path"` (and similarly for the fallback), but `origin_path` may already be an absolute path under `/system` or another root; consider passing the raw `origin_path` and letting `deploy_for_mount` handle any normalization to avoid generating invalid paths like `/system/optics/...`.
- The `/etc/*` → `/system/etc/*` normalization logic appears in both the incremental hash check and inside `deploy_for_mount`; you could centralize this path normalization in a single helper to avoid subtle inconsistencies between where you check for existing files and where you actually deploy them.

## Individual Comments

### Comment 1
<location path="module_files/post-fs-data.sh" line_range="190-194" />
<code_context>
-        safe_mount "$final_file" "$origin_path"
-        restorecon "$origin_path"
+        debug "部署加密文件以供挂载"
+        deploy_for_mount "$final_file" "/system$origin_path"
+        echo "$current_hash" > "$hash_file" # 记录 Hash
     else
-        log "注意: 加密失败，尝试挂载明文文件"
-        safe_mount "$patched_file" "$origin_path"
-        restorecon "$origin_path"
+        log "注意: 加密失败，尝试部署明文文件"
+        deploy_for_mount "$patched_file" "/system$origin_path"
+        # 即使失败使用明文，依然保存Hash，避免每次重启重复失败操作
+        echo "$current_hash" > "$hash_file" 
</code_context>
<issue_to_address>
**issue (bug_risk):** 在这里使用 "/system$origin_path" 很可能会生成错误的覆盖目标路径。

在这个分支中，`origin_path` 已经是真实的源路径（例如 `/optics/configs/...`），之前也被直接作为挂载目标使用。把调用改成 `deploy_for_mount "$final_file" "/system$origin_path"` 会把路径重写为 `/system/optics/...`，这是另一个位置，可能会导致覆盖层无法作用于真正的配置文件。同时也把 `/etc -> /system/etc` 的细节泄露到了调用方。请传递真实的目标路径（例如 `origin_path` 或其规范化结果），并把所有 `/system` 相关的规范化逻辑都保留在 `deploy_for_mount` 内部。
</issue_to_address>

### Comment 2
<location path="module_files/post-fs-data.sh" line_range="123-128" />
<code_context>
+    [ -f "$hash_file" ] && old_hash=$(cat "$hash_file")
+    
+    # 检查标准化后的部署路径是否存在文件
+    local check_path="$origin_path"
+    case "$check_path" in
+        /etc/*) check_path="/system$check_path" ;;
+    esac
+    
+    if [ "$current_hash" = "$old_hash" ] && [ -f "$MODDIR$check_path" ]; then
+        log "增量更新校验通过: $label 无变动，跳过处理。"
+        return
</code_context>
<issue_to_address>
**issue (bug_risk):** 基于 Hash 的“短路”逻辑使用的目标路径与后续部署使用的目标路径不同，会导致不必要的重复处理。

在非 `ff` 流程中，你最终部署到 `/system$origin_path`，但 Hash 短路逻辑检查的是 `$MODDIR$origin_path`（只有 `/etc/*` 会加上 `/system` 前缀）。对于非 `/etc` 路径，这会保证 `-f` 检查必然失败，从而在 Hash 相同的情况下仍然强制重复处理。请考虑：（a）让 `check_path` 与最终 `deploy_for_mount` 的目标路径保持一致，或者（b）把“目标路径计算”抽取成一个共享的辅助函数，供 Hash 检查和部署逻辑共同使用。
</issue_to_address>

### Comment 3
<location path="module_files/post-fs-data.sh" line_range="77" />
<code_context>
+    cp -f "$src_file" "$module_target_path"
+    
+    # 同步 SELinux 上下文
+    if [ -f "$origin_path" ]; then
+        local ctx=$(ls -Z "$origin_path" | awk '{print $1}')
+        [ -n "$ctx" ] && chcon "$ctx" "$module_target_path"
     fi
+    
</code_context>
<issue_to_address>
**suggestion:** 当所选的 origin 路径不存在时，SELinux 上下文复制可能会静默失败。

在 `deploy_for_mount` 中，调用者可能会传入一个“合成”的 `origin_path`（例如 `"/system$origin_path"`），这个路径可能尚不存在，因此该检查会直接跳过上下文复制，让覆盖层文件保持默认的 SELinux 上下文。如果你确实需要镜像原始文件的 SELinux 上下文，建议使用一个一定存在的路径作为 `ls -Z` 的来源（例如真实的原始文件路径或某个规范化路径）；或者当 `$origin_path` 不存在时，退回到对 `"$module_target_path"` 调用 `restorecon`，而不是什么也不做。

```suggestion
    # 同步 SELinux 上下文
    # 优先从真实存在的 origin_path 复制 SELinux 上下文；
    # 若 origin_path 不存在或无法获取上下文，则回退为对目标执行 restorecon。
    if [ -n "$origin_path" ] && [ -e "$origin_path" ]; then
        local ctx
        ctx=$(ls -Z "$origin_path" 2>/dev/null | awk '{print $1}')
        if [ -n "$ctx" ]; then
            chcon "$ctx" "$module_target_path" 2>/dev/null || {
                # chcon 失败时回退 restorecon（若可用）
                if command -v restorecon >/dev/null 2>&1; then
                    restorecon "$module_target_path" 2>/dev/null
                fi
            }
        else
            # 未能解析出上下文，直接回退 restorecon（若可用）
            if command -v restorecon >/dev/null 2>&1; then
                restorecon "$module_target_path" 2>/dev/null
            fi
        fi
    else
        # origin_path 不存在或为空时，不再静默跳过，改为回退 restorecon（若可用）
        if command -v restorecon >/dev/null 2>&1; then
            restorecon "$module_target_path" 2>/dev/null
        fi
    fi
```
</issue_to_address>

---

Sourcery 对开源项目免费 —— 如果你觉得这份评审对你有帮助，欢迎分享给更多人 ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{帮我变得更有用！请在每条评论上点 👍 或 👎，我会根据你的反馈改进后续的评审质量。}

Original comment in English

Hey - I've found 3 issues, and left some high level feedback:

• In the non-ff branch you call deploy_for_mount "$final_file" "/system$origin_path" (and similarly for the fallback), but origin_path may already be an absolute path under /system or another root; consider passing the raw origin_path and letting deploy_for_mount handle any normalization to avoid generating invalid paths like /system/optics/....
• The /etc/* → /system/etc/* normalization logic appears in both the incremental hash check and inside deploy_for_mount; you could centralize this path normalization in a single helper to avoid subtle inconsistencies between where you check for existing files and where you actually deploy them.

Prompt for AI Agents

Please address the comments from this code review:

## Overall Comments
- In the non-ff branch you call `deploy_for_mount "$final_file" "/system$origin_path"` (and similarly for the fallback), but `origin_path` may already be an absolute path under `/system` or another root; consider passing the raw `origin_path` and letting `deploy_for_mount` handle any normalization to avoid generating invalid paths like `/system/optics/...`.
- The `/etc/*` → `/system/etc/*` normalization logic appears in both the incremental hash check and inside `deploy_for_mount`; you could centralize this path normalization in a single helper to avoid subtle inconsistencies between where you check for existing files and where you actually deploy them.

## Individual Comments

### Comment 1
<location path="module_files/post-fs-data.sh" line_range="190-194" />
<code_context>
-        safe_mount "$final_file" "$origin_path"
-        restorecon "$origin_path"
+        debug "部署加密文件以供挂载"
+        deploy_for_mount "$final_file" "/system$origin_path"
+        echo "$current_hash" > "$hash_file" # 记录 Hash
     else
-        log "注意: 加密失败，尝试挂载明文文件"
-        safe_mount "$patched_file" "$origin_path"
-        restorecon "$origin_path"
+        log "注意: 加密失败，尝试部署明文文件"
+        deploy_for_mount "$patched_file" "/system$origin_path"
+        # 即使失败使用明文，依然保存Hash，避免每次重启重复失败操作
+        echo "$current_hash" > "$hash_file" 
</code_context>
<issue_to_address>
**issue (bug_risk):** Using "/system$origin_path" here likely produces an incorrect overlay target path.

In this branch, `origin_path` is already the real source path (e.g. `/optics/configs/...`) and was previously used directly as the mount target. Changing the call to `deploy_for_mount "$final_file" "/system$origin_path"` rewrites that to `/system/optics/...`, which is a different location and may prevent the overlay from affecting the actual config file. It also spreads `/etc -> /system/etc` concerns into the caller. Please pass the real target path (e.g. `origin_path` or a canonicalized variant) and keep any `/system` normalization inside `deploy_for_mount`.
</issue_to_address>

### Comment 2
<location path="module_files/post-fs-data.sh" line_range="123-128" />
<code_context>
+    [ -f "$hash_file" ] && old_hash=$(cat "$hash_file")
+    
+    # 检查标准化后的部署路径是否存在文件
+    local check_path="$origin_path"
+    case "$check_path" in
+        /etc/*) check_path="/system$check_path" ;;
+    esac
+    
+    if [ "$current_hash" = "$old_hash" ] && [ -f "$MODDIR$check_path" ]; then
+        log "增量更新校验通过: $label 无变动，跳过处理。"
+        return
</code_context>
<issue_to_address>
**issue (bug_risk):** Hash-based short‑circuit uses a different target path than the later deployment, causing unnecessary reprocessing.

In non-`ff` flows you deploy to `/system$origin_path`, but the hash short‑circuit probes `$MODDIR$origin_path` (only `/etc/*` gets the `/system` prefix). For non-`/etc` paths this guarantees the `-f` check fails and forces reprocessing even when hashes match. Please either (a) make `check_path` match the final `deploy_for_mount` target, or (b) factor target-path computation into a shared helper used by both the hash check and deployment.
</issue_to_address>

### Comment 3
<location path="module_files/post-fs-data.sh" line_range="77" />
<code_context>
+    cp -f "$src_file" "$module_target_path"
+    
+    # 同步 SELinux 上下文
+    if [ -f "$origin_path" ]; then
+        local ctx=$(ls -Z "$origin_path" | awk '{print $1}')
+        [ -n "$ctx" ] && chcon "$ctx" "$module_target_path"
     fi
+    
</code_context>
<issue_to_address>
**suggestion:** SELinux context copy may fail silently when the chosen origin path does not exist.

In `deploy_for_mount`, callers may pass a synthetic `origin_path` (e.g. `"/system$origin_path"`) that doesn’t exist yet, so this check just skips context copy and leaves the overlay with a default context. If you need to mirror the original file’s SELinux context, consider using a path that’s guaranteed to exist as the `ls -Z` source (e.g. the real origin file or a canonical path), or falling back to `restorecon "$module_target_path"` when `$origin_path` is missing instead of doing nothing.

```suggestion
    # 同步 SELinux 上下文
    # 优先从真实存在的 origin_path 复制 SELinux 上下文；
    # 若 origin_path 不存在或无法获取上下文，则回退为对目标执行 restorecon。
    if [ -n "$origin_path" ] && [ -e "$origin_path" ]; then
        local ctx
        ctx=$(ls -Z "$origin_path" 2>/dev/null | awk '{print $1}')
        if [ -n "$ctx" ]; then
            chcon "$ctx" "$module_target_path" 2>/dev/null || {
                # chcon 失败时回退 restorecon（若可用）
                if command -v restorecon >/dev/null 2>&1; then
                    restorecon "$module_target_path" 2>/dev/null
                fi
            }
        else
            # 未能解析出上下文，直接回退 restorecon（若可用）
            if command -v restorecon >/dev/null 2>&1; then
                restorecon "$module_target_path" 2>/dev/null
            fi
        fi
    else
        # origin_path 不存在或为空时，不再静默跳过，改为回退 restorecon（若可用）
        if command -v restorecon >/dev/null 2>&1; then
            restorecon "$module_target_path" 2>/dev/null
        fi
    fi
```
</issue_to_address>

---

Sourcery is free for open source - if you like our reviews please consider sharing them ✨

• X
• Mastodon
• LinkedIn
• Facebook

_{Help me be more useful! Please click 👍 or 👎 on each comment and I'll use the feedback to improve your reviews.}

[sourcery-ai]

issue (bug_risk): 在这里使用 "/system$origin_path" 很可能会生成错误的覆盖目标路径。

在这个分支中，origin_path 已经是真实的源路径（例如 /optics/configs/...），之前也被直接作为挂载目标使用。把调用改成 deploy_for_mount "$final_file" "/system$origin_path" 会把路径重写为 /system/optics/...，这是另一个位置，可能会导致覆盖层无法作用于真正的配置文件。同时也把 /etc -> /system/etc 的细节泄露到了调用方。请传递真实的目标路径（例如 origin_path 或其规范化结果），并把所有 /system 相关的规范化逻辑都保留在 deploy_for_mount 内部。

Original comment in English

issue (bug_risk): Using "/system$origin_path" here likely produces an incorrect overlay target path.

In this branch, origin_path is already the real source path (e.g. /optics/configs/...) and was previously used directly as the mount target. Changing the call to deploy_for_mount "$final_file" "/system$origin_path" rewrites that to /system/optics/..., which is a different location and may prevent the overlay from affecting the actual config file. It also spreads /etc -> /system/etc concerns into the caller. Please pass the real target path (e.g. origin_path or a canonicalized variant) and keep any /system normalization inside deploy_for_mount.

[sourcery-ai]

issue (bug_risk): 基于 Hash 的“短路”逻辑使用的目标路径与后续部署使用的目标路径不同，会导致不必要的重复处理。

在非 ff 流程中，你最终部署到 /system$origin_path，但 Hash 短路逻辑检查的是 $MODDIR$origin_path（只有 /etc/* 会加上 /system 前缀）。对于非 /etc 路径，这会保证 -f 检查必然失败，从而在 Hash 相同的情况下仍然强制重复处理。请考虑：（a）让 check_path 与最终 deploy_for_mount 的目标路径保持一致，或者（b）把“目标路径计算”抽取成一个共享的辅助函数，供 Hash 检查和部署逻辑共同使用。

Original comment in English

issue (bug_risk): Hash-based short‑circuit uses a different target path than the later deployment, causing unnecessary reprocessing.

In non-ff flows you deploy to /system$origin_path, but the hash short‑circuit probes $MODDIR$origin_path (only /etc/* gets the /system prefix). For non-/etc paths this guarantees the -f check fails and forces reprocessing even when hashes match. Please either (a) make check_path match the final deploy_for_mount target, or (b) factor target-path computation into a shared helper used by both the hash check and deployment.

[sourcery-ai]

suggestion: 当所选的 origin 路径不存在时，SELinux 上下文复制可能会静默失败。

在 deploy_for_mount 中，调用者可能会传入一个“合成”的 origin_path（例如 "/system$origin_path"），这个路径可能尚不存在，因此该检查会直接跳过上下文复制，让覆盖层文件保持默认的 SELinux 上下文。如果你确实需要镜像原始文件的 SELinux 上下文，建议使用一个一定存在的路径作为 ls -Z 的来源（例如真实的原始文件路径或某个规范化路径）；或者当 $origin_path 不存在时，退回到对 "$module_target_path" 调用 restorecon，而不是什么也不做。

Suggested change

	# 同步 SELinux 上下文
	# 同步 SELinux 上下文
	# 优先从真实存在的 origin_path 复制 SELinux 上下文；
	# 若 origin_path 不存在或无法获取上下文，则回退为对目标执行 restorecon。
	if [ -n "$origin_path" ] && [ -e "$origin_path" ]; then
	local ctx
	ctx=$(ls -Z "$origin_path" 2>/dev/null | awk '{print $1}')
	if [ -n "$ctx" ]; then
	chcon "$ctx" "$module_target_path" 2>/dev/null || {
	# chcon 失败时回退 restorecon（若可用）
	if command -v restorecon >/dev/null 2>&1; then
	restorecon "$module_target_path" 2>/dev/null
	fi
	}
	else
	# 未能解析出上下文，直接回退 restorecon（若可用）
	if command -v restorecon >/dev/null 2>&1; then
	restorecon "$module_target_path" 2>/dev/null
	fi
	fi
	else
	# origin_path 不存在或为空时，不再静默跳过，改为回退 restorecon（若可用）
	if command -v restorecon >/dev/null 2>&1; then
	restorecon "$module_target_path" 2>/dev/null
	fi
	fi

Original comment in English

suggestion: SELinux context copy may fail silently when the chosen origin path does not exist.

In deploy_for_mount, callers may pass a synthetic origin_path (e.g. "/system$origin_path") that doesn’t exist yet, so this check just skips context copy and leaves the overlay with a default context. If you need to mirror the original file’s SELinux context, consider using a path that’s guaranteed to exist as the ls -Z source (e.g. the real origin file or a canonical path), or falling back to restorecon "$module_target_path" when $origin_path is missing instead of doing nothing.

Suggested change

	# 同步 SELinux 上下文
	# 同步 SELinux 上下文
	# 优先从真实存在的 origin_path 复制 SELinux 上下文；
	# 若 origin_path 不存在或无法获取上下文，则回退为对目标执行 restorecon。
	if [ -n "$origin_path" ] && [ -e "$origin_path" ]; then
	local ctx
	ctx=$(ls -Z "$origin_path" 2>/dev/null | awk '{print $1}')
	if [ -n "$ctx" ]; then
	chcon "$ctx" "$module_target_path" 2>/dev/null || {
	# chcon 失败时回退 restorecon（若可用）
	if command -v restorecon >/dev/null 2>&1; then
	restorecon "$module_target_path" 2>/dev/null
	fi
	}
	else
	# 未能解析出上下文，直接回退 restorecon（若可用）
	if command -v restorecon >/dev/null 2>&1; then
	restorecon "$module_target_path" 2>/dev/null
	fi
	fi
	else
	# origin_path 不存在或为空时，不再静默跳过，改为回退 restorecon（若可用）
	if command -v restorecon >/dev/null 2>&1; then
	restorecon "$module_target_path" 2>/dev/null
	fi
	fi