3party/crashpad
0
0
Fork 0
mirror of https://github.com/chromium/crashpad.git synced 2025-03-09 14:06:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

handler/mac: Log a warning when an exception message has a suspicious

Browse Source 
origin.

This adds AuditPIDFromMachMessageTrailer() to get the process ID of a
Mach message’s sender. Exception messages are considered suspicious when
not sent by the kernel or the exception process.

TEST=crashpad_util_test
R=rsesek@chromium.org

Review URL: https://codereview.chromium.org/1001943002
This commit is contained in:
Mark Mentovai 2015-03-12 14:00:38 -04:00
parent 995e762a45
commit 5f19d639e1
9 changed files with 186 additions and 46 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
handler/mac/crash_report_exception_handler.cc
View File

@ -29,6 +29,7 @@
#include "util/mach/exc_client_variants.h" #include "util/mach/exc_client_variants.h"
#include "util/mach/exception_behaviors.h" #include "util/mach/exception_behaviors.h"
#include "util/mach/mach_extensions.h" #include "util/mach/mach_extensions.h"
#include "util/mach/mach_message.h"
#include "util/mach/scoped_task_suspend.h" #include "util/mach/scoped_task_suspend.h"
#include "util/misc/tri_state.h" #include "util/misc/tri_state.h"
#include "util/misc/uuid.h" #include "util/misc/uuid.h"
@ -119,6 +120,22 @@ kern_return_t CrashReportExceptionHandler::CatchMachException(
return KERN_FAILURE; return KERN_FAILURE;
} }
// Check for suspicious message sources. A suspicious exception message comes
// from a source other than the kernel or the process that the exception
// purportedly occurred in.
//
// TODO(mark): Consider exceptions outside of the range (0, 32) from the
// kernel to be suspicious, and exceptions other than kMachExceptionSimulated
// from the process itself to be suspicious.
pid_t audit_pid = AuditPIDFromMachMessageTrailer(trailer);
if (audit_pid != -1 && audit_pid != 0) {
pid_t exception_pid = process_snapshot.ProcessID();
if (exception_pid != audit_pid) {
LOG(WARNING) << "exception for pid " << exception_pid << " sent by pid "
<< audit_pid;
}
}
CrashpadInfoClientOptions client_options; CrashpadInfoClientOptions client_options;
process_snapshot.GetCrashpadOptions(&client_options); process_snapshot.GetCrashpadOptions(&client_options);

13
handler/mac/exception_handler_server.cc
View File

@ -26,9 +26,8 @@ namespace crashpad {
namespace { namespace {
class ExceptionHandlerServerRun class ExceptionHandlerServerRun : public UniversalMachExcServer::Interface,
: public UniversalMachExcServer::Interface, public NotifyServer::Interface {
public NotifyServer::Interface {
public: public:
ExceptionHandlerServerRun( ExceptionHandlerServerRun(
mach_port_t exception_port, mach_port_t exception_port,
@ -100,7 +99,7 @@ class ExceptionHandlerServerRun
mach_msg_return_t mr = mach_msg_return_t mr =
MachMessageServer::Run(&composite_mach_message_server_, MachMessageServer::Run(&composite_mach_message_server_,
server_port_set, server_port_set,
MACH_MSG_OPTION_NONE, kMachMessageReceiveAuditTrailer,
MachMessageServer::kOneShot, MachMessageServer::kOneShot,
MachMessageServer::kReceiveLargeIgnore, MachMessageServer::kReceiveLargeIgnore,
kMachMessageTimeoutWaitIndefinitely); kMachMessageTimeoutWaitIndefinitely);
@ -148,9 +147,9 @@ class ExceptionHandlerServerRun
// NotifyServer::Interface: // NotifyServer::Interface:
kern_return_t DoMachNotifyPortDeleted( kern_return_t DoMachNotifyPortDeleted(
notify_port_t notify, notify_port_t notify,
mach_port_name_t name, mach_port_name_t name,
const mach_msg_trailer_t* trailer) override { const mach_msg_trailer_t* trailer) override {
return UnimplementedNotifyRoutine(notify); return UnimplementedNotifyRoutine(notify);
} }

4
util/mach/exception_ports_test.cc
View File

@ -197,6 +197,8 @@ class TestExceptionPorts : public MachMultiprocess,
SetExpectedChildTermination(kTerminationSignal, signal); SetExpectedChildTermination(kTerminationSignal, signal);
} }
EXPECT_EQ(0, AuditPIDFromMachMessageTrailer(trailer));
return ExcServerSuccessfulReturnValue(behavior, false); return ExcServerSuccessfulReturnValue(behavior, false);
} }
@ -443,7 +445,7 @@ class TestExceptionPorts : public MachMultiprocess,
kern_return_t kr = kern_return_t kr =
MachMessageServer::Run(&universal_mach_exc_server, MachMessageServer::Run(&universal_mach_exc_server,
local_port, local_port,
MACH_MSG_OPTION_NONE, kMachMessageReceiveAuditTrailer,
MachMessageServer::kOneShot, MachMessageServer::kOneShot,
MachMessageServer::kReceiveLargeError, MachMessageServer::kReceiveLargeError,
kTimeoutMs); kTimeoutMs);

36
util/mach/mach_message.cc
View File

@ -14,9 +14,13 @@
#include "util/mach/mach_message.h" #include "util/mach/mach_message.h"
#include <AvailabilityMacros.h>
#include <bsm/libbsm.h>
#include <limits> #include <limits>
#include "base/basictypes.h" #include "base/basictypes.h"
#include "base/logging.h"
#include "util/misc/clock.h" #include "util/misc/clock.h"
namespace crashpad { namespace crashpad {
@ -213,4 +217,36 @@ const mach_msg_trailer_t* MachMessageTrailerFromHeader(
return reinterpret_cast<const mach_msg_trailer_t*>(trailer_address); return reinterpret_cast<const mach_msg_trailer_t*>(trailer_address);
} }
pid_t AuditPIDFromMachMessageTrailer(const mach_msg_trailer_t* trailer) {
if (trailer->msgh_trailer_type != MACH_MSG_TRAILER_FORMAT_0) {
LOG(ERROR) << "unexpected msgh_trailer_type " << trailer->msgh_trailer_type;
return -1;
}
if (trailer->msgh_trailer_size <
REQUESTED_TRAILER_SIZE(kMachMessageReceiveAuditTrailer)) {
LOG(ERROR) << "small msgh_trailer_size " << trailer->msgh_trailer_size;
return -1;
}
const mach_msg_audit_trailer_t* audit_trailer =
reinterpret_cast<const mach_msg_audit_trailer_t*>(trailer);
#if MAC_OS_X_VERSION_MIN_REQUIRED < MAC_OS_X_VERSION_10_8
pid_t audit_pid;
audit_token_to_au32(audit_trailer->msgh_audit,
nullptr,
nullptr,
nullptr,
nullptr,
nullptr,
&audit_pid,
nullptr,
nullptr);
#else
pid_t audit_pid = audit_token_to_pid(audit_trailer->msgh_audit);
#endif
return audit_pid;
}
} // namespace crashpad } // namespace crashpad

26
util/mach/mach_message.h
View File

@ -17,9 +17,19 @@
#include <mach/mach.h> #include <mach/mach.h>
#include <stdint.h> #include <stdint.h>
#include <sys/types.h>
namespace crashpad { namespace crashpad {
//! \brief A Mach message option specifying that an audit trailer should be
//! delivered during a receive operation.
//!
//! This constant is provided because the macros normally used to request this
//! behavior are cumbersome.
const mach_msg_option_t kMachMessageReceiveAuditTrailer =
MACH_RCV_TRAILER_TYPE(MACH_MSG_TRAILER_FORMAT_0) |
MACH_RCV_TRAILER_ELEMENTS(MACH_RCV_TRAILER_AUDIT);
//! \brief Special constants used as `mach_msg_timeout_t` values. //! \brief Special constants used as `mach_msg_timeout_t` values.
enum : mach_msg_timeout_t { enum : mach_msg_timeout_t {
//! \brief When passed to MachMessageDeadlineFromTimeout(), that function will //! \brief When passed to MachMessageDeadlineFromTimeout(), that function will
@ -148,6 +158,22 @@ void SetMIGReplyError(mach_msg_header_t* out_header, kern_return_t error);
const mach_msg_trailer_t* MachMessageTrailerFromHeader( const mach_msg_trailer_t* MachMessageTrailerFromHeader(
const mach_msg_header_t* header); const mach_msg_header_t* header);
//! \brief Returns the process ID of a Mach messages sender from its audit
//! trailer.
//!
//! For the audit trailer to be present, the message must have been received
//! with #kMachMessageReceiveAuditTrailer or its macro equivalent specified in
//! the receive options.
//!
//! If the kernel is the messages sender, a process ID of `0` will be returned.
//!
//! \param[in] trailer The trailer received with a Mach message.
//!
//! \return The process ID of the messages sender, or `-1` on failure with a
//! message logged. It is considered a failure for \a trailer to not contain
//! audit information.
pid_t AuditPIDFromMachMessageTrailer(const mach_msg_trailer_t* trailer);
} // namespace crashpad } // namespace crashpad
#endif // CRASHPAD_UTIL_MACH_MACH_MESSAGE_H_ #endif // CRASHPAD_UTIL_MACH_MACH_MESSAGE_H_

44
util/mach/mach_message_test.cc
View File

@ -14,9 +14,13 @@
#include "util/mach/mach_message.h" #include "util/mach/mach_message.h"
#include <unistd.h>
#include "base/basictypes.h" #include "base/basictypes.h"
#include "base/mac/scoped_mach_port.h"
#include "gtest/gtest.h" #include "gtest/gtest.h"
#include "util/mach/mach_extensions.h" #include "util/mach/mach_extensions.h"
#include "util/test/mac/mach_errors.h"
namespace crashpad { namespace crashpad {
namespace test { namespace test {
@ -104,6 +108,46 @@ TEST(MachMessage, MachMessageTrailerFromHeader) {
EXPECT_EQ(&test.receive.trailer, MachMessageTrailerFromHeader(&test.receive)); EXPECT_EQ(&test.receive.trailer, MachMessageTrailerFromHeader(&test.receive));
} }
TEST(MachMessage, AuditPIDFromMachMessageTrailer) {
base::mac::ScopedMachReceiveRight port(NewMachPort(MACH_PORT_RIGHT_RECEIVE));
ASSERT_NE(kMachPortNull, port);
mach_msg_empty_send_t send = {};
send.header.msgh_bits = MACH_MSGH_BITS(MACH_MSG_TYPE_MAKE_SEND_ONCE, 0);
send.header.msgh_size = sizeof(send);
send.header.msgh_remote_port = port;
mach_msg_return_t mr =
MachMessageWithDeadline(&send.header,
MACH_SEND_MSG,
0,
MACH_PORT_NULL,
kMachMessageDeadlineNonblocking,
MACH_PORT_NULL,
false);
ASSERT_EQ(MACH_MSG_SUCCESS, mr)
<< MachErrorMessage(mr, "MachMessageWithDeadline send");
struct EmptyReceiveMessageWithAuditTrailer : public mach_msg_empty_send_t {
union {
mach_msg_trailer_t trailer;
mach_msg_audit_trailer_t audit_trailer;
};
};
EmptyReceiveMessageWithAuditTrailer receive;
mr = MachMessageWithDeadline(&receive.header,
MACH_RCV_MSG | kMachMessageReceiveAuditTrailer,
sizeof(receive),
port,
kMachMessageDeadlineNonblocking,
MACH_PORT_NULL,
false);
ASSERT_EQ(MACH_MSG_SUCCESS, mr)
<< MachErrorMessage(mr, "MachMessageWithDeadline receive");
EXPECT_EQ(getpid(), AuditPIDFromMachMessageTrailer(&receive.trailer));
}
} // namespace } // namespace
} // namespace test } // namespace test
} // namespace crashpad } // namespace crashpad

67
util/mach/notify_server_test.cc
View File

@ -30,7 +30,6 @@ namespace {
using testing::AllOf; using testing::AllOf;
using testing::Eq; using testing::Eq;
using testing::Invoke; using testing::Invoke;
using testing::Ne;
using testing::Pointee; using testing::Pointee;
using testing::ResultOf; using testing::ResultOf;
using testing::Return; using testing::Return;
@ -239,7 +238,7 @@ class NotifyServerTestBase : public testing::Test,
mach_msg_return_t mr = mach_msg_return_t mr =
MachMessageServer::Run(&notify_server, MachMessageServer::Run(&notify_server,
ServerPort(), ServerPort(),
MACH_MSG_OPTION_NONE, kMachMessageReceiveAuditTrailer,
MachMessageServer::kPersistent, MachMessageServer::kPersistent,
MachMessageServer::kReceiveLargeError, MachMessageServer::kReceiveLargeError,
kMachMessageTimeoutNonblocking); kMachMessageTimeoutNonblocking);
@ -315,12 +314,14 @@ TEST_F(NotifyServerTest, MachNotifyPortDeleted) {
SendOnceRightFromReceiveRight(receive_right)); SendOnceRightFromReceiveRight(receive_right));
ASSERT_NE(kMachPortNull, send_once_right); ASSERT_NE(kMachPortNull, send_once_right);
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(
send_once_right, MACH_NOTIFY_DEAD_NAME, 0)); RequestMachPortNotification(send_once_right, MACH_NOTIFY_DEAD_NAME, 0));
EXPECT_CALL(*this, DoMachNotifyPortDeleted(ServerPort(), EXPECT_CALL(
send_once_right.get(), *this,
Ne(nullptr))) DoMachNotifyPortDeleted(ServerPort(),
send_once_right.get(),
ResultOf(AuditPIDFromMachMessageTrailer, 0)))
.WillOnce(Return(MIG_NO_REPLY)) .WillOnce(Return(MIG_NO_REPLY))
.RetiresOnSaturation(); .RetiresOnSaturation();
@ -339,10 +340,12 @@ TEST_F(NotifyServerTest, MachNotifyPortDestroyed) {
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(RequestMachPortNotification(
receive_right, MACH_NOTIFY_PORT_DESTROYED, 0)); receive_right, MACH_NOTIFY_PORT_DESTROYED, 0));
EXPECT_CALL(*this, DoMachNotifyPortDestroyed(ServerPort(), EXPECT_CALL(
ResultOf(IsReceiveRight, true), *this,
Ne(nullptr), DoMachNotifyPortDestroyed(ServerPort(),
Pointee(Eq(false)))) ResultOf(IsReceiveRight, true),
ResultOf(AuditPIDFromMachMessageTrailer, 0),
Pointee(Eq(false))))
.WillOnce(DoAll(SetArgPointee<3>(true), Return(MIG_NO_REPLY))) .WillOnce(DoAll(SetArgPointee<3>(true), Return(MIG_NO_REPLY)))
.RetiresOnSaturation(); .RetiresOnSaturation();
@ -371,10 +374,12 @@ TEST_F(NotifyServerTest, MachNotifyNoSenders_NoSendRight) {
NewMachPort(MACH_PORT_RIGHT_RECEIVE)); NewMachPort(MACH_PORT_RIGHT_RECEIVE));
ASSERT_NE(kMachPortNull, receive_right); ASSERT_NE(kMachPortNull, receive_right);
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(
receive_right, MACH_NOTIFY_NO_SENDERS, 0)); RequestMachPortNotification(receive_right, MACH_NOTIFY_NO_SENDERS, 0));
EXPECT_CALL(*this, DoMachNotifyNoSenders(ServerPort(), 0, Ne(nullptr))) EXPECT_CALL(*this,
DoMachNotifyNoSenders(
ServerPort(), 0, ResultOf(AuditPIDFromMachMessageTrailer, 0)))
.WillOnce(Return(MIG_NO_REPLY)) .WillOnce(Return(MIG_NO_REPLY))
.RetiresOnSaturation(); .RetiresOnSaturation();
@ -393,10 +398,12 @@ TEST_F(NotifyServerTest, MachNotifyNoSenders_SendRightDeallocated) {
SendRightFromReceiveRight(receive_right)); SendRightFromReceiveRight(receive_right));
ASSERT_NE(kMachPortNull, send_right); ASSERT_NE(kMachPortNull, send_right);
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(
receive_right, MACH_NOTIFY_NO_SENDERS, 1)); RequestMachPortNotification(receive_right, MACH_NOTIFY_NO_SENDERS, 1));
EXPECT_CALL(*this, DoMachNotifyNoSenders(ServerPort(), 1, Ne(nullptr))) EXPECT_CALL(*this,
DoMachNotifyNoSenders(
ServerPort(), 1, ResultOf(AuditPIDFromMachMessageTrailer, 0)))
.WillOnce(Return(MIG_NO_REPLY)) .WillOnce(Return(MIG_NO_REPLY))
.RetiresOnSaturation(); .RetiresOnSaturation();
@ -420,8 +427,8 @@ TEST_F(NotifyServerTest, MachNotifyNoSenders_NoNotification) {
SendRightFromReceiveRight(receive_right)); SendRightFromReceiveRight(receive_right));
ASSERT_NE(kMachPortNull, send_right_1); ASSERT_NE(kMachPortNull, send_right_1);
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(
receive_right, MACH_NOTIFY_NO_SENDERS, 1)); RequestMachPortNotification(receive_right, MACH_NOTIFY_NO_SENDERS, 1));
send_right_1.reset(); send_right_1.reset();
@ -438,7 +445,9 @@ TEST_F(NotifyServerTest, MachNotifySendOnce_ExplicitDeallocation) {
SendOnceRightFromReceiveRight(ServerPort())); SendOnceRightFromReceiveRight(ServerPort()));
ASSERT_NE(kMachPortNull, send_once_right); ASSERT_NE(kMachPortNull, send_once_right);
EXPECT_CALL(*this, DoMachNotifySendOnce(ServerPort(), Ne(nullptr))) EXPECT_CALL(*this,
DoMachNotifySendOnce(ServerPort(),
ResultOf(AuditPIDFromMachMessageTrailer, 0)))
.WillOnce(Return(MIG_NO_REPLY)) .WillOnce(Return(MIG_NO_REPLY))
.RetiresOnSaturation(); .RetiresOnSaturation();
@ -470,7 +479,9 @@ TEST_F(NotifyServerTest, MachNotifySendOnce_ImplicitDeallocation) {
MACH_PORT_NULL); MACH_PORT_NULL);
ASSERT_EQ(MACH_MSG_SUCCESS, mr) << MachErrorMessage(mr, "mach_msg"); ASSERT_EQ(MACH_MSG_SUCCESS, mr) << MachErrorMessage(mr, "mach_msg");
EXPECT_CALL(*this, DoMachNotifySendOnce(ServerPort(), Ne(nullptr))) EXPECT_CALL(*this,
DoMachNotifySendOnce(ServerPort(),
ResultOf(AuditPIDFromMachMessageTrailer, 0)))
.WillOnce(Return(MIG_NO_REPLY)) .WillOnce(Return(MIG_NO_REPLY))
.RetiresOnSaturation(); .RetiresOnSaturation();
@ -491,8 +502,8 @@ TEST_F(NotifyServerTest, MachNotifyDeadName) {
SendOnceRightFromReceiveRight(receive_right)); SendOnceRightFromReceiveRight(receive_right));
ASSERT_NE(kMachPortNull, send_once_right); ASSERT_NE(kMachPortNull, send_once_right);
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(
send_once_right, MACH_NOTIFY_DEAD_NAME, 0)); RequestMachPortNotification(send_once_right, MACH_NOTIFY_DEAD_NAME, 0));
// send_once_right becomes a dead name with the send-once rights original // send_once_right becomes a dead name with the send-once rights original
// user reference count of 1, but the dead-name notification increments the // user reference count of 1, but the dead-name notification increments the
@ -502,9 +513,9 @@ TEST_F(NotifyServerTest, MachNotifyDeadName) {
DoMachNotifyDeadName(ServerPort(), DoMachNotifyDeadName(ServerPort(),
AllOf(send_once_right.get(), AllOf(send_once_right.get(),
ResultOf(DeadNameRightRefCount, 2)), ResultOf(DeadNameRightRefCount, 2)),
Ne(nullptr))) ResultOf(AuditPIDFromMachMessageTrailer, 0)))
.WillOnce(DoAll(WithArg<1>(Invoke(MachPortDeallocate)), .WillOnce(
Return(MIG_NO_REPLY))) DoAll(WithArg<1>(Invoke(MachPortDeallocate)), Return(MIG_NO_REPLY)))
.RetiresOnSaturation(); .RetiresOnSaturation();
receive_right.reset(); receive_right.reset();
@ -529,8 +540,8 @@ TEST_F(NotifyServerTest, MachNotifyDeadName_NoNotification) {
SendOnceRightFromReceiveRight(receive_right)); SendOnceRightFromReceiveRight(receive_right));
ASSERT_NE(kMachPortNull, send_once_right); ASSERT_NE(kMachPortNull, send_once_right);
ASSERT_TRUE(RequestMachPortNotification( ASSERT_TRUE(
send_once_right, MACH_NOTIFY_DEAD_NAME, 0)); RequestMachPortNotification(send_once_right, MACH_NOTIFY_DEAD_NAME, 0));
RunServer(); RunServer();

24
util/test/mac/mach_multiprocess.cc
View File

@ -28,6 +28,7 @@
#include "gtest/gtest.h" #include "gtest/gtest.h"
#include "util/file/file_io.h" #include "util/file/file_io.h"
#include "util/mach/mach_extensions.h" #include "util/mach/mach_extensions.h"
#include "util/mach/mach_message.h"
#include "util/misc/scoped_forbid_return.h" #include "util/misc/scoped_forbid_return.h"
#include "util/test/errors.h" #include "util/test/errors.h"
#include "util/test/mac/mach_errors.h" #include "util/test/mac/mach_errors.h"
@ -40,7 +41,10 @@ struct SendHelloMessage : public mach_msg_base_t {
}; };
struct ReceiveHelloMessage : public SendHelloMessage { struct ReceiveHelloMessage : public SendHelloMessage {
mach_msg_audit_trailer_t audit_trailer; union {
mach_msg_trailer_t trailer;
mach_msg_audit_trailer_t audit_trailer;
};
}; };
} // namespace } // namespace
@ -120,15 +124,13 @@ task_t MachMultiprocess::ChildTask() const {
void MachMultiprocess::MultiprocessParent() { void MachMultiprocess::MultiprocessParent() {
ReceiveHelloMessage message = {}; ReceiveHelloMessage message = {};
kern_return_t kr = kern_return_t kr = mach_msg(&message.header,
mach_msg(&message.header, MACH_RCV_MSG | kMachMessageReceiveAuditTrailer,
MACH_RCV_MSG | MACH_RCV_TRAILER_TYPE(MACH_MSG_TRAILER_FORMAT_0) | 0,
MACH_RCV_TRAILER_ELEMENTS(MACH_RCV_TRAILER_AUDIT), sizeof(message),
0, info_->local_port,
sizeof(message), MACH_MSG_TIMEOUT_NONE,
info_->local_port, MACH_PORT_NULL);
MACH_MSG_TIMEOUT_NONE,
MACH_PORT_NULL);
ASSERT_EQ(MACH_MSG_SUCCESS, kr) << MachErrorMessage(kr, "mach_msg"); ASSERT_EQ(MACH_MSG_SUCCESS, kr) << MachErrorMessage(kr, "mach_msg");
// Comb through the entire message, checking every field against its expected // Comb through the entire message, checking every field against its expected
@ -186,6 +188,8 @@ void MachMultiprocess::MultiprocessParent() {
EXPECT_EQ(getgid(), audit_rgid); EXPECT_EQ(getgid(), audit_rgid);
ASSERT_EQ(ChildPID(), audit_pid); ASSERT_EQ(ChildPID(), audit_pid);
ASSERT_EQ(ChildPID(), AuditPIDFromMachMessageTrailer(&message.trailer));
auditinfo_addr_t audit_info; auditinfo_addr_t audit_info;
int rv = getaudit_addr(&audit_info, sizeof(audit_info)); int rv = getaudit_addr(&audit_info, sizeof(audit_info));
ASSERT_EQ(0, rv) << ErrnoMessage("getaudit_addr"); ASSERT_EQ(0, rv) << ErrnoMessage("getaudit_addr");

1
util/util.gyp
View File

@ -199,6 +199,7 @@
'$(SDKROOT)/System/Library/Frameworks/CoreFoundation.framework', '$(SDKROOT)/System/Library/Frameworks/CoreFoundation.framework',
'$(SDKROOT)/System/Library/Frameworks/Foundation.framework', '$(SDKROOT)/System/Library/Frameworks/Foundation.framework',
'$(SDKROOT)/System/Library/Frameworks/IOKit.framework', '$(SDKROOT)/System/Library/Frameworks/IOKit.framework',
'$(SDKROOT)/usr/lib/libbsm.dylib',
], ],
}, },
}], }],