3 Replies
      Latest reply on Jan 22, 2020 4:02 AM by RobHDt
      prokash Level 1 Level 1 (0 points)

        Folks,

         

        I have been looking for an xcode workspace that gives me form and structure about the 10.16 ( upcoming) OS's EndPoint Security Infra structure. Found some online code that tries to execute ( i.e. starting or loading the EndPoint Security framework - that I included in the work space like other framework.

         

        Now if I try to debug ( or run ), I get the message Starting EndPoint Security ... Then it fails. MY ASSUMPTION HERE IS THAT THERE IS A SYSTEM LEVEL SERVICE THAT WOULD BE LAUNCHED AS A PROCESS FOR SECURITY EXTENSION ( server ).

         

        It fails at the call to es_new_client(...)

         

        Since the doc says add an entry like the following in entitlement file --

         

        <key>com.apple.developer.endpoint-security.client</key>

            <true/>

         

        Adding it does not even load the program, crashed with

        Crashed Thread:        0

         

         

        Exception Type:        EXC_CRASH (Code Signature Invalid).   <----------------------------

        Exception Codes:       0x0000000000000000, 0x0000000000000000

        Exception Note:        EXC_CORPSE_NOTIFY

         

         

        DOES IT REALLY MEAN THAT THE ID I AM USING TO SIGN AUTOMATICALLY DOES NOT HAVE THE PERMISSION ????

         

        KEY CHAIN SHOWS ALL ARE VALID ID.

         

         

        THANKS MUCH

        Prokash

         

        FYI ... not important !!!

         

        kernel messages:

         

         

        VM Regions Near 0 (cr2):

        -->

            __TEXT                 0000000100000000-0000000100004000 [   16K] r-x/r-x SM=COW

         

         

        Thread 0 Crashed:

        0                                 0x000000010000e000 _dyld_start + 0

         

         

        Thread 0 crashed with X86 Thread State (64-bit):

          rax: 0x0000000000000000  rbx: 0x0000000000000000  rcx: 0x0000000000000000  rdx: 0x0000000000000000

          rdi: 0x0000000000000000  rsi: 0x0000000000000000  rbp: 0x0000000000000000  rsp: 0x00007ffeefbff6b0

           r8: 0x0000000000000000   r9: 0x0000000000000000  r10: 0x0000000000000000  r11: 0x0000000000000000

          r12: 0x0000000000000000  r13: 0x0000000000000000  r14: 0x0000000000000000  r15: 0x0000000000000000

          rip: 0x000000010000e000  rfl: 0x0000000000000200  cr2: 0x0000000000000000

         

        Logical CPU:     0

        Error Code:      0x00000000

        Trap Number:     0

         

         

         

         

        Binary Images:

               0x100000000 -        0x100003ff7 + (0) <540848E4-D991-3FD4-92F9-0E59DCF11C72>

               0x10000d000 -        0x10009b877 + (731.4) <C047D601-10E5-3D0A-BA98-87E22679F354>

         

         

        External Modification Summary:

          Calls made by other processes targeting this process:

            task_for_pid: 0

            thread_create: 0

            thread_set_state: 0

          Calls made by this process:

            task_for_pid: 0

            thread_create: 0

            thread_set_state: 0

          Calls made by all processes on this machine:

            task_for_pid: 179896339

            thread_create: 0

            thread_set_state: 598

         

         

        VM Region Summary:

        ReadOnly portion of Libraries: Total=836K resident=0K(0%) swapped_out_or_unallocated=836K(100%)

        Writable regions: Total=8404K written=0K(0%) resident=0K(0%) swapped_out=0K(0%) unallocated=8404K(100%)