Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
Document OS X limitations with inject-tcp method #268
Hey there, really appreciate this tool! We're hoping to use it to revamp the development of our services and it seems really promising.
While setting this up I ran into a pretty big pitfall around the interaction between the
It looks like in OS X El Capitan Apple introduced a feature called System Integrity Protection (SIP). This feature prevents, among other things, code injection into processes that originate from certain designated "protected directories" (including
It turns out that in practice it can be really hard to prevent some types of processes from at some going through a protected binary. We're using Telepresence to swap out services for a locally built version and build tools very frequently invoke shell scripts (which either directly invoke something like
We can't use the
Thanks for the detailed information. This is a great starting point for improved documentation.
Just to clarify, Telepresence attempts to work around SIP to some extent by creating duplicates of