What is "CFSM dynamic blacklist"

App & System Services Networking
AndyCheng OP
Created Aug ’17
Replies 5
Boosts 0
Views 2.1k
Participants 3

Hi

I'm not sure is it CFNetworking related question or not.

Sometimes, I aware that Network Extension cannot intercept any traffic when the VPN is on.

However, I find these logs in device log.

It seems that our Network Extension bundle name is listed in the blacklist.


My question is that what's "CFSM dynamic blacklist"?

How does it work?

Thanks


Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: Entry, display name com.companyname.NetworkExtension uuid 41FDD55D-658B-3193-9936-BB8922665D75 pid 1456 isFront 0

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: Check for bundle name com.trendmicro.mobile.iOS.APAC.iTMMS returns 0

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: app name com.trendmicro.mobile.iOS.APAC.iTMMS isForeground 0 hasForegroundApps 1, current idea of foreground 1 disp (null)

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: Continue with bundle name com.trendmicro.mobile.iOS.APAC.iTMMS, is front 0

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: com.trendmicro.mobile.iOS.APAC.iTMMS: Foreground: false

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: Remove appCompactState key com.trendmicro.mobile.iOS.APAC.iTMMS

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: returning: {

canUseOnAlternate = {

codes = {

"com.apple.Preferences" = 1;

"com.apple.mobilemail" = 1;

"com.companyname.NetworkExtension" = 0;

};

reasons = {

"com.apple.Preferences" = AppWhitelisted;

"com.apple.mobilemail" = AppWhitelisted;

"com.companyname.NetworkExtension" = AppUnknown;

};

};

}

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: CFSM dynamic blacklist returning (value/reason): {

"com.apple.Preferences" = 1;

"com.apple.mobilemail" = 1;

"com.companyname.NetworkExtension" = 0;

}/{

"com.apple.Preferences" = AppWhitelisted;

"com.apple.mobilemail" = AppWhitelisted;

"com.companyname.NetworkExtension" = AppUnknown;

}

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: Entry, display name com.companyname.NetworkExtension uuid 41FDD55D-658B-3193-9936-BB8922665D75 pid 1456 isFront 0

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: UUID 41FDD55D-658B-3193-9936-BB8922665D75 already removed

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(SymptomEvaluator)[127] <Notice>: AWDAgent: posting metric type 0x300008, 0x1004c0670, count 2

Aug 4 18:11:46 FA5940-iPhone-6S symptomsd(WirelessDiagnostics)[127] <Info>: metric:#I Creating a metric container for metric id: 0x300008

Replies  5
Boosts  0
Views  2.1k
Participants  3
DTS Engineer OP
Apple
Aug ’17

I'm not sure is it CFNetworking related question or not.

It is not. The “CF” is “CFSM” stands for “cellular fallback”. The “CFSM dynamic blacklist” is a private subsystem with no real public exposure.

Share and Enjoy

Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware 

let myEmail = "eskimo" + "1" + "@apple.com"
0
AndyCheng OP
Aug ’17

Hello eskimo

Thank you for your response. We understand it's a private system of iOS and it's not related this Networking Forum question now.

However, it seems that "CFSM dynamic blacklist" will affect our Network Extension app sometimes.

So, we still reply our question here.

We are not sure whether there are other factors or behaviors of Network Extension app should be avoided which we don't know. (In Network Extension, memory usage is an important point)

In order to prevent our app listed in the blacklist, we would like to confirm this.

Thanks!

0
KMT OP
Aug ’17

>In order to prevent our app listed in the blacklist


As defined, there is a calculation involved that is outside your ability to know the details of. If those details were public, it would defeat the purpose of blacklisting. Asking how seems odd, I think, and not just doing it here.


As for your app, I doubt there is much you could do either way that would influence triggering such an event in any case....there are other primary factors that would kick in long before your app had a chance to do any avoidance....it's not being blacklisted itself, so much as the activity it promotes during a call in general.

0
DTS Engineer OP
Apple
Aug ’17

We are not sure whether there are other factors or behaviors of Network Extension app should be avoided which we don't know.

Honestly, I wouldn’t worry about this. iOS is a very complex system. There are lots and lots of plates spinning underneath the public APIs that you interact with. Unless one of those plates is specifically causing problems for your product, my recommendation is that you stay focused on the system’s documented API.

On a personal note, I have no idea what the CFSM dynamic blacklist does. I could research this but I would only do that if it were having a material effect on someone’s product.

Share and Enjoy

Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware 

let myEmail = "eskimo" + "1" + "@apple.com"
0
AndyCheng OP
Aug ’17

Hi eskimo

Thank you for your response, we will keep monitoring our Network Extension app and follow your recommendation.


Thanks

0
What is "CFSM dynamic blacklist"
First post date Last post date
 
 
Q