[MacPorts] #39850: Sandbox denies access when prefix/portdbpath not normalised
MacPorts
noreply at macports.org
Mon Aug 19 08:12:22 PDT 2013
#39850: Sandbox denies access when prefix/portdbpath not normalised
-------------------------+--------------------------------
Reporter: jwhowse4@… | Owner: macports-tickets@…
Type: defect | Status: new
Priority: Normal | Milestone:
Component: base | Version: 2.2.0
Resolution: | Keywords:
Port: |
-------------------------+--------------------------------
Comment (by rjvbertin@…):
Replying to [comment:8 jwhowse4@…]:
> > The entire /opt directory is a symlink. This was done in order to
place /opt on a different physical disk than the operating system.
>
> Do you think it would resolve the situation if I changed the symlink to
an Apple alias?
Almost certainly not, MacPorts works in MacOSX's "Unix" bowels and unless
things have changed after 10.6, Apple aliases/shortcuts are different
beasts from Unix symbolic links even if the latter show up the same as the
former in Finder windows.
Mac OS X has ALWAYS had a habit of resolving symbolic links, look e.g. at
shared library dependencies. Annoying, but I presume there are security
reasonings behind this.
My /opt/local is a symlink in order to have the MacPorts tree off the boot
partition. That started causing troubles not so long ago, but the solution
is very easy, esp. since from what I saw the housekeeping apps had always
been aware of the true location of the tree. I just changed the prefix and
all other variables referring to /opt/local in
/opt/local/etc/macports/macports.conf to the tree's true location. That
seems to have worked - after all, it's not MacPort's business if I decide
to access its tree through an indirection, is it now? :)
--
Ticket URL: <https://trac.macports.org/ticket/39850#comment:38>
MacPorts <http://www.macports.org/>
Ports system for OS X
More information about the macports-tickets
mailing list