Sandbox Violation on Runtime Exec
Michael Hall
mik3hall at gmail.com
Thu Jun 14 12:25:49 PDT 2012
On Jun 14, 2012, at 12:01 PM, David DeHaven wrote:
>
>
>> There would be no way to give the application a entitlement correcting the
>> deny file-read-data /dev/fad
>> as a work-around? (That would not result in the application being rejected App Store).
>
> The short term (ugly) workaround would be to use a JNI call to invoke posix_spawn or NSTask directly, I don't see any other way if Runtime is absolutely unusable.
If there are entitlements that aren't possible at all to workaround things like this I would think that could be a concern.
I sort of wondered if everything goes through the same test suite and if that wouldn't have caught this. Some situations thats probably not possible.
Thanks for the response.
More information about the macosx-port-dev
mailing list