Sandbox - killall Operation not permitted

问题

I'm writing a small Mac application (in Obj-C) which runs the following command:

system("killall Finder");

I wanted to see what would happen if I sandbox the app (as sandboxing will be required on June 01), and the app wouldn't work. I got the following response:

killall: warning: kill -TERM 6524: Operation not permitted

Is there any way to get around that? As in a specific entitlement to add or another way to run the command?

Thanks in advance.

回答1:

Your app completely goes against the spirit of the sandbox, so there's almost no chance that the MAS reviewers will accept it. Also, you may be surprised at what "defaults write com.apple.finder" does from inside your sandbox—basically, nothing useful. You'll have to use a temporary exception entitlement to home-relative /Library/Preferences/com.apple.finder.plist, use some non-sandbox-affected API to get the path to home (e.g., getpwent()->pw_dir), and load and save the plist directly. And then you'll discover that there is no way to call on a non-child process from a sandboxed app, period, no way around it—and if you try to system killall, it ends up running inside the same sandbox as you, and therefore has the same limitations.

However, you asked a specific question as to whether there's a way around that system killall failing, and there are at least three (not counting holes in the sandbox which have either been plugged by 10.7.4 or will surely be plugged soon):

1. You can create a helper app that isn't sandboxed, that does the killall for you. The only two App Store-approved ways to do this are XPC and SMLoginItemSetEnabled. And you're not allowed to enable the helper without the user explicitly telling you to do so.

2. You can send Finder an Apple Event asking it to quit, instead of signaling it. The easiest way to do this is to execute the Applescript 'tell app "Finder" to quit'. At least for 10.7.3 and earlier, you'll need a temporary exception entitlement to send Apple Events to com.apple.finder. (There may be different mechanisms for future OS versions, but nobody can discuss them outside the NDA forums.)

3. You can send an Apple Event to some other process—like System Events—to kill Finder on your behalf.

And so on.

回答2:

If you have a good reason you can still kill applications like this: How can I terminate my app in a helper app with sanboxing enabled?

来源：https://stackoverflow.com/questions/10808258/sandbox-killall-operation-not-permitted