GnuPG and macOS App Sandbox
Ingo Klöcker
kloecker at kde.org
Sat May 21 17:08:42 CEST 2022
On Samstag, 21. Mai 2022 10:48:20 CEST Patrick Brunschwig wrote:
> Saturneric via Gnupg-devel wrote on 19.05.2022 11:34:
> > Hi, Is there any way to put GnuPG into a macOS App Bundle? Or has anyone
> > already tried it? Especially the macOS App Bundle, when the security
> > sandbox mechanism is on, access to executable files or resources outside
> > the App Bundle is prohibited.
> >
> > Also, I am concerned that even if it is possible to wrap gpg into a
> > macOS App Bundle, it may need access to some additional resources, which
> > is not allowed in the sandbox.
>
> I that it's not possible to put GnuPG into a macOS App Bundle. GnuPG
> works with absolute paths for its helper tools and daemons. Even though
> the default installation location for Apps on macOS is in /Applications,
> a macOS App Bundle may be installed or started from anywhere in the file
> system. This collides with the absolute paths of GnuPG.
This isn't true anymore. GnuPG works perfectly well as part of an AppImage
which is mounted at a different path on each start. The AppImage uses a
wrapper script to set up the necessary environment variables. For the App
Bundle a similar wrapper script may be needed.
Regards,
Ingo
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: This is a digitally signed message part.
URL: <https://lists.gnupg.org/pipermail/gnupg-devel/attachments/20220521/3fc8c206/attachment.sig>
More information about the Gnupg-devel
mailing list