Are macports builds prevented from accessing /dev/random ?
Chris Jones
jonesc at hep.phy.cam.ac.uk
Wed Jun 14 13:44:01 UTC 2017
Thanks !
On 14/06/17 13:56, Joshua Root wrote:
> On 2017-6-14 19:21 , Chris Jones wrote:
>>
>>
>> On 14/06/17 00:20, Joshua Root wrote:
>>> On 2017-6-14 08:18 , Christopher Jones wrote:
>>>>
>>>> Had a look into this. The ROOT source never explicitly opens
>>>> /dev/random in read/write mode. Only read only.
>>>>
>>>> However, it also uses a number of external library calls, like
>>>> std::rand(), and my best bet is one of these is doing it. As writing
>>>> to /dev/random is allowed, to update the entropy pool, I don’t think
>>>> this in itself is an issue.
>>>>
>>>> So is it OK to add /dev/random to the allowed locations for the
>>>> sandbox ?
>>>
>>> Yes, that would be fine.
>>
>> So, should I submit an MR for this, or can you do it ? If you want me
>> to, where in base should I go looking for the allowed list ?
>
> <https://github.com/macports/macports-base/commit/c8c1565f42a60c2b9e85a204603a66052f444c43>
>
>
> - Josh
More information about the macports-dev
mailing list