[MacPorts] #39850: Sandbox denies access when prefix/portdbpath not normalised

[MacPorts]

#39850: Sandbox denies access when prefix/portdbpath not normalised
-------------------------+--------------------------------
  Reporter:  jwhowse4@…  |      Owner:  macports-tickets@…
      Type:  defect      |     Status:  new
  Priority:  Normal      |  Milestone:
 Component:  base        |    Version:  2.2.0
Resolution:              |   Keywords:
      Port:              |
-------------------------+--------------------------------

Comment (by rjvbertin@…):

 Replying to [comment:8 jwhowse4@…]:
 > > The entire /opt directory is a symlink.  This was done in order to
 place /opt on a different physical disk than the operating system.
 >
 > Do you think it would resolve the situation if I changed the symlink to
 an Apple alias?

 Almost certainly not, MacPorts works in MacOSX's "Unix" bowels and unless
 things have changed after 10.6, Apple aliases/shortcuts are different
 beasts from Unix symbolic links even if the latter show up the same as the
 former in Finder windows.

 Mac OS X has ALWAYS had a habit of resolving symbolic links, look e.g. at
 shared library dependencies. Annoying, but I presume there are security
 reasonings behind this.

 My /opt/local is a symlink in order to have the MacPorts tree off the boot
 partition. That started causing troubles not so long ago, but the solution
 is very easy, esp. since from what I saw the housekeeping apps had always
 been aware of the true location of the tree. I just changed the prefix and
 all other variables referring to /opt/local in
 /opt/local/etc/macports/macports.conf to the tree's true location. That
 seems to have worked - after all, it's not MacPort's business if I decide
 to access its tree through an indirection, is it now? :)

-- 
Ticket URL: <https://trac.macports.org/ticket/39850#comment:38>
MacPorts <http://www.macports.org/>
Ports system for OS X