User Profile

Post not yet marked as solved

3 Replies

599 Views

Post marked as unsolved with 3 replies, 599 views

Why can't I write to /Library/SystemExtensions?

The folder doesn't appear to be SIP protected / restricted. But when I run sudo touch /Library/SystemExtensions/testing123 It fails. Clearly there's a protection I'm unaware of but can't figure it out. If it's not SIP, not TCC (FDA), then what could it be? This is not for an app, I'm just trying to understand macOS and this is a gap in my understanding.

• Privacy
• Files and Storage

Posted

by kranebrain.

Last updated

.

Post not yet marked as solved

1 Replies

556 Views

Post marked as unsolved with 1 replies, 556 views

security endpoint does not require system extension?

I was under the impression that a security endpoint required a system extension, but that does not appear to be the case. Apparently daemons can create endpoint extensions without needed a system extension. Why would I use an endpoint in a system extension rather than a daemon, or vice versa? I'm not understanding the value of a system extension with regards to a security endpoint. Someone please enlighten me.

• System Extensions
• Endpoint Security

Posted

by kranebrain.

Last updated

.

Post not yet marked as solved

0 Replies

663 Views

Post marked as unsolved with 0 replies, 663 views

How to control the max es_clients for system extension endpoint (ES_NEW_CLIENT_RESULT_ERR_TOO_MANY_CLIENTS)

I noticed when I create multiple clients in my swift endpoint project, everything is great. But when I call the below in my C/C++ project es\_new\_client More than once I get the following result ES\_NEW\_CLIENT\_RESULT\_ERR\_TOO\_MANY\_CLIENTS How do I control the max number of clients for a specific project?

• System Extensions
• Endpoint Security

Posted

by kranebrain.

Last updated

.

Post not yet marked as solved

1 Replies

370 Views

Post marked as unsolved with 1 replies, 370 views

How do I change the system extension in the SimpleFirewall example to endpoint security?

I'm trying to learn system extensions through fiddling. One thing I'm trying to do is take the existing SimpleFirewall code project and make it endpoint security. The problem is when I remove "Network Extensions" array from the extension entitlement file & add "com.apple.developer.endpoint" to the same entitlement file, I get the following error from sysextd. "System extension does not appear to belong to any extension categories" How do I tell the OS that this is an endpoint sysext? I've changed the plist and entitlement files of both app and extension to look like the endpoint example.

• System Extensions

Posted

by kranebrain.

Last updated

.