Re: Obtaining non-exported symbol from kernel on runtime (without the debug symbols)
Re: Obtaining non-exported symbol from kernel on runtime (without the debug symbols)
- Subject: Re: Obtaining non-exported symbol from kernel on runtime (without the debug symbols)
- From: "John D." <email@hidden>
- Date: Tue, 16 Dec 2008 21:57:19 +0100
SEBSD/SEDarwin are both external projects (developed by Sparta Inc.
and contributors), with inspiration from the original Flask project
(now SElinux since a few years...). I wonder if the AVC and such are
exact implementations of the original design. That said, I wonder if
Apple has provided means to let KEXTs interact with the MAC framework,
set its own hooks, etc.
In addition, Seatbelt is closed source and Apple itself discourages
its usage by third-parties since the interfaces are subject to
changes, besides being largely undocumented.
On Tue, Dec 16, 2008 at 5:49 AM, Michael Smith <email@hidden> wrote:
>
> On Dec 14, 2008, at 10:16 PM, John D. wrote:
>
>> On other hand. I still think kauth is severely limited (crippled) as it is
>> implemented right now.
>
> Kauth was a means to an end. It has been largely superseded in a broad
> sense by the MAC framework, which in turn facilitates Seatbelt and several
> other useful features. You will note that this supercession was not
> achieved by removing the Kauth symbols from the KPI.
>
> = Mike
>
>
--
- John Denkar
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden