I'm going to publish an update for my application on the Mac AppStore and want to check for sandbox errors. Compiled my application with permissions and signed it with code ... it works, Activity Monitor confirms that it is using an isolated environment.
My problem is that the Console does not show the line coming from sandboxd. Even if I intentionally imitate a violation: how to disable user-selected read / write access to files and try to open a file, OpenPanel never appears (I think the sandbox blocks it), but the line never reports in the console informing about it. The only line I get if I look for a console for "sandboxd" is the story of the unknown POSIXSpawnInterface.
My doubts / questions:
1) (deleted!)
2) If my application can do everything that I need (I open MIDI inputs, so I had to turn on a temporary exception for accessing global global access) does this mean that I'm fine with the sandbox if the console does not report any violations ?!
3) My application is looking for a file (application package), requesting the system for the path through its application identifier (the one that reads as com.company.appname), then I use NSBundle to retrieve only its version. Do these operations need a temporary exception for access read-only to the application folder (in fact, I do not know the exact path, because it depends on where the user installed the application)?
Thank you for the suggestions you can provide. Regards, Peter.
Peter source share