Lists

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: loading kext from a daemon program

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: loading kext from a daemon program

Subject: Re: loading kext from a daemon program
From: Rob Crawford <email@hidden>
Date: Thu, 4 May 2006 16:57:16 -0400

thank you all, that seemed to do the trick.

thanks,
Rob
On May 4, 2006, at 4:33 PM, Terry Lambert wrote:

On May 4, 2006, at 1:04 PM, Matt Ginzton wrote:
int result = execlp("kextload", "kextload", "<path to my kext>" (char *)0); this does load the kext but exists my daemon program, I am guessing because of what the documentation says that it replaces the current process image with the new process image.
The normal Unix way of doing this is a combination of fork, exec, and wait. Fork creates a separate process, in which you can exec kextload, and then the parent process waits for the child to exit.
Alternately, the fork()/exec()/wait() is encapsulated for you as well, if you use the system() library routine.

Using execlp() is not necessarily the best approach: it exec's a binary using the PATH lookup, which means someone could force your application to run malicious code as root by changing the PATH environment variable so that their trojan, also named "kextload", is the first "kextload" it sees and executes.

If you have to do this, for simplicity (safety) sake, I would recommend using an absolute path, and the simplest method that would let you check the failure of the kextload command, e.g.:
	#include <sys/wait.h>
	#define PATH_TO_KEXT "/usrlocal/bin/mykext"		/* or wherever... */
	...
		int status;
		status = system("/sbin/kextload " PATH_TO_KEXT);
		if (WIFEXITED(status)) {
			/* kextload exited normally */
			if (WEXITSTATUS(status) == 0) {
				/* and the KEXT was successfully loaded */
				....
			} else {
				/* handle the error and quit */
			}
		} else {
			/* handle the error and quit */
		}
		/* Do my success thing here... */
		...
NB: You can be marginally faster by unrolling the function to avoid the use of the shell interpreter by system(); however safety should not be impacted by this, since the path to the shell is hard-coded in libc, and the "-c" argument makes it ignore the circumvention points that would otherwise be in effect if you did it yourself and forgot the "-c".

-- Terry


_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden


Follow-Ups:

Re: loading kext from a daemon program
From: Kevin Elliott <email@hidden>


References:  
  >Kext loading daemon (From: Rob Crawford <email@hidden>)
  >Re: Kext loading daemon (From: "Justin C. Walker" <email@hidden>)
  >Re: loading kext from a daemon program (From: Rob Crawford <email@hidden>)
  >Re: loading kext from a daemon program (From: "Justin C. Walker" <email@hidden>)
  >Re: loading kext from a daemon program (From: Rob Crawford <email@hidden>)
  >Re: loading kext from a daemon program (From: "Justin C. Walker" <email@hidden>)
  >Re: loading kext from a daemon program (From: Rob Crawford <email@hidden>)
  >Re: loading kext from a daemon program (From: Matt Ginzton <email@hidden>)
  >Re: loading kext from a daemon program (From: Terry Lambert <email@hidden>)




Prev by Date:
Re: loading kext from a daemon program

Next by Date:
Re: loading kext from a daemon program

Previous by thread:
Re: loading kext from a daemon program

Next by thread:
Re: loading kext from a daemon program

Index(es):

Date
Thread