• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Re: accessing argv on exec
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: accessing argv on exec


  • Subject: Re: accessing argv on exec
  • From: Peter Moody <email@hidden>
  • Date: Wed, 12 Nov 2014 10:45:41 -0800

On Tue, Nov 11 2014 at 22:52, Manu . wrote:
> You may also want to look at task_info. While it only gives you the all loaded images list, there is some code that
> you can find which can use task_info or get the offset of the structure in memory. There is a gContext variable in
> dyld that contains argv[] so if one can retrieve the loaded modules structure address, it should be possible to get
> the rest. Kind of wish that the arguments would be kept in the proc_t and made available (like on Windows EPROCESS
> -> PEB -> command line), alas it's not the case.

Hey Manu,

I'm probably missing something super obvious, but task_info() doesn't
appear to be resolvable from a kext. Were you suggesting doing this from
userspace?

> Date: Tue, 11 Nov 2014 16:25:46 -0800
> Subject: Re: accessing argv on exec
> From: email@hidden
> To: email@hidden
> CC: email@hidden; email@hidden


> Hi Peter,Here's some simple code form the days of 10.6. I expect it should still work with minor tweaks (and
> commenting the printfs).

This is awesome! Thanks, Evan.
 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Darwin-kernel mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden


  • Follow-Ups:
    • RE: accessing argv on exec
      • From: "Manu ." <email@hidden>
References: 
 >accessing argv on exec (From: Peter Moody <email@hidden>)
 >Re: accessing argv on exec (From: Evan Lojewski <email@hidden>)
 >Re: accessing argv on exec (From: Peter Moody <email@hidden>)
 >Re: accessing argv on exec (From: Evan Lojewski <email@hidden>)
 >RE: accessing argv on exec (From: "Manu ." <email@hidden>)

  • Prev by Date: Re: KPI: socket filter’s sf_data_in not called for data over IPSec VPN
  • Next by Date: RE: accessing argv on exec
  • Previous by thread: RE: accessing argv on exec
  • Next by thread: RE: accessing argv on exec
  • Index(es):
    • Date
    • Thread