• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: loading kext from a daemon program
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: loading kext from a daemon program

  • Subject: Re: loading kext from a daemon program
  • From: Terry Lambert <email@hidden>
  • Date: Thu, 4 May 2006 13:33:49 -0700
On May 4, 2006, at 1:04 PM, Matt Ginzton wrote:

int result = execlp("kextload", "kextload", "<path to my kext>" (char *)0);
this does load the kext but exists my daemon program, I am guessing because of what the documentation says that it replaces the current process image with the new process image.

The normal Unix way of doing this is a combination of fork, exec, and wait. Fork creates a separate process, in which you can exec kextload, and then the parent process waits for the child to exit.

Alternately, the fork()/exec()/wait() is encapsulated for you as well, if you use the system() library routine.

Using execlp() is not necessarily the best approach: it exec's a binary using the PATH lookup, which means someone could force your application to run malicious code as root by changing the PATH environment variable so that their trojan, also named "kextload", is the first "kextload" it sees and executes.

If you have to do this, for simplicity (safety) sake, I would recommend using an absolute path, and the simplest method that would let you check the failure of the kextload command, e.g.:


	#include <sys/wait.h>

	#define PATH_TO_KEXT "/usrlocal/bin/mykext"		/* or wherever... */
	...

		int status;

		status = system("/sbin/kextload " PATH_TO_KEXT);

		if (WIFEXITED(status)) {
			/* kextload exited normally */
			if (WEXITSTATUS(status) == 0) {
				/* and the KEXT was successfully loaded */
				....
			} else {
				/* handle the error and quit */
			}
		} else {
			/* handle the error and quit */
		}

		/* Do my success thing here... */
		...

NB: You can be marginally faster by unrolling the function to avoid the use of the shell interpreter by system(); however safety should not be impacted by this, since the path to the shell is hard-coded in libc, and the "-c" argument makes it ignore the circumvention points that would otherwise be in effect if you did it yourself and forgot the "-c".

-- Terry
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden




  • Follow-Ups:

      

    • Re: loading kext from a daemon program

      • From: Quinn <email@hidden>
      • 

    • Re: loading kext from a daemon program

      • From: Rob Crawford <email@hidden>
      • 





References: 


 >Kext loading daemon (From: Rob Crawford <email@hidden>)


 >Re: Kext loading daemon (From: "Justin C. Walker" <email@hidden>)


 >Re: loading kext from a daemon program (From: Rob Crawford <email@hidden>)


 >Re: loading kext from a daemon program (From: "Justin C. Walker" <email@hidden>)


 >Re: loading kext from a daemon program (From: Rob Crawford <email@hidden>)


 >Re: loading kext from a daemon program (From: "Justin C. Walker" <email@hidden>)


 >Re: loading kext from a daemon program (From: Rob Crawford <email@hidden>)


 >Re: loading kext from a daemon program (From: Matt Ginzton <email@hidden>)






    

  • Prev by Date:
Re: loading kext from a daemon program

    • 

  • Next by Date:
Re: loading kext from a daemon program

    • 

  • Previous by thread:
Re: loading kext from a daemon program

    • 

  • Next by thread:
Re: loading kext from a daemon program

    • 

  • Index(es):

      

    • Date
      • 

    • Thread
      • 

    

    •