[Bug 47944] Wine64 tries to change permissions in /private/tmp/ that fails on macOS 10.15 Catalina
WineHQ Bugzilla
wine-bugs at winehq.org
Thu Oct 17 14:11:32 CDT 2019
https://bugs.winehq.org/show_bug.cgi?id=47944
Ken Thomases <ken at codeweavers.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |ken at codeweavers.com
--- Comment #6 from Ken Thomases <ken at codeweavers.com> ---
Created attachment 65458
--> https://bugs.winehq.org/attachment.cgi?id=65458
Example entitlements file
In theory, this is due to hardened runtime restrictions. The hardened runtime
used to be opt-in, but it seems like its always-on in Catalina.
I expect that if you explicitly enable the hardened runtime and use an
entitlements file that disables the relevant restrictions — that is, if you opt
in to insecure behavior — these problems would probably go away. I'm attaching
an example entitlements file that allows everything that Wine may need (I
think).
You'll need a code-signing identity certficate. Then, you would do:
codesign -s <identity> -o runtime --entitlements /path/to/Hardened.entitlements
<path to executable>
You'll need to do this for any affected Wine executables, such as wineserver,
wine-preloader, and wine64-preloader. Maybe others.
Mind you, I may have some of the specifics wrong. Also, for actual
code-signing security, you'd want to specify designated requirements.
--
Do not reply to this email, post in Bugzilla using the
above URL to reply.
You are receiving this mail because:
You are watching all bug changes.
More information about the wine-bugs
mailing list