Kernel signing / .kexts on iPhone
I'm trying to find out if its at all possible to run a .kext on an unjailbroken iPhone.
When the kernel is loaded, is the signature for the entire kernel image verified? Or just the signatures of any plugins there might be i.e. the .kext?
If the entire kernel image signature is checked then I presume there's no chance of a .kext running unless it was inside the kernel when signed, thus no possibility at all of running a .kext.
If however its not the entire kernel that is checked, but .kexts' signatures are checked individually when loaded, then there is a slim chance perhaps that I am able to sign the .kext with a specific certificate tied to the device's IMEI or similar, and thus would be able to load the .kext on one phone only (which would suit my purposes).