Changeset 83033 in vbox

Timestamp:

Feb 10, 2020 1:40:54 PM (5 years ago)

Author:

vboxsync

svn:sync-xref-src-repo-rev:

136055

Message:

/Config.kmk,/Makefile.kmk,Installer/darwin,FE/QT,SUPHard: Eliminated the symlinks under Resources/VirtualBoxVM.app to avoid confusing codesign and notarization. bugref:9466
Note! Best to do a clean build on mac (or at a minimum rm -Rf out/darwin.amd64/*/dist/VirtualBox.app/Contents/Frameworks/ out/darwin.amd64/*/dist/VirtualBox.app/Contents/plugins/).

• SUPHard: Added new location SUPSECMAIN_FLAGS_LOC_OSX_HLP_APP (darwin only) for indicating a helper application and that hardened dylib and the rest of VirtualBox isn't in the executable directory.
• SUPHard: Added a corresponding internal path ID kSupID_AppMacHelper (darwin only) for finding VirtualBoxVM for verification now that it is no longer in the main app binary directory.
• /Config.kmk: Run install_name_tool after linking Qt binaries on darwin fix the Qt import paths (@executable_path/../Frameworks/ doesn't work for VirtualBoxVM any more).
• /Makefile.kmk: Run install_name_tool during installation of Qt frameworks and plugins to use @rpath in non-hardened builds and the absolute paths in hardened ones (latter done by Installer/darwin/Makefile.kmk previously).
• FE/Qt,Installer/darwin: Adjustments and path hacks.

Location:

trunk

Files:

• Config.kmk (modified) (1 diff)
• Makefile.kmk (modified) (1 diff)
• include/VBox/sup.h (modified) (2 diffs)
• src/VBox/Frontends/VirtualBox/Makefile.kmk (modified) (6 diffs)
• src/VBox/Frontends/VirtualBox/src/hardenedmain.cpp (modified) (1 diff)
• src/VBox/Frontends/VirtualBox/src/main.cpp (modified) (5 diffs)
• src/VBox/HostDrivers/Support/SUPLibInternal.h (modified) (2 diffs)
• src/VBox/HostDrivers/Support/SUPR3HardenedMain.cpp (modified) (5 diffs)
• src/VBox/HostDrivers/Support/SUPR3HardenedVerify.cpp (modified) (8 diffs)
• src/VBox/Installer/darwin/Makefile.kmk (modified) (5 diffs)

trunk/Config.kmk

@@ -6758 +6758 @@
  endif # not darwin, os2 or win
 
+ ifeq ($(KBUILD_TARGET),darwin)
+  TEMPLATE_VBOXQTGUIEXE_POST_CMDS = $(QUIET)install_name_tool $(foreach qtmod, $(VBOX_QT_MOD_NAMES), \
+        $(foreach prefix, @executable_path/../Frameworks/ $(VBOX_PATH_QT)/Frameworks/ $(PATH_SDK_QT)/, \
+                -change "$(prefix)$(qtmod).framework/Versions/5/$(qtmod)" \
+                        "$(if $(VBOX_WITH_HARDENING),/Applications/VirtualBox.app/Contents/Frameworks,@rpath)/$(qtmod).framework/Versions/5/$(qtmod)" ) ) "$(out)"
+ endif
 
  #

trunk/Makefile.kmk

@@ -179 +179 @@
         Frameworks/$(qtmod).framework/$(qtmod)=>Versions/5/$(qtmod) \
         Frameworks/$(qtmod).framework/Resources=>Versions/5/Resources)
+ qt5-bin_INSTALLER = $(INSTALL) $(if $(uid),-o $(uid)) $(if $(gid),-g $(gid)) $(if $(mode),-m $(mode)) $(4) -- \
+                        "$(1)" "$(2)" $(if-expr "$(source_type_prefix)" == "EXEC_" \
+                        ,$(NLTAB)install_name_tool \
+                        $(if-expr "$(suffix $2)" == "", -id "$(if $(VBOX_WITH_HARDENING),/Applications/VirtualBox.app/Contents/Framework,@rpath)/$(notdir $(2)).framework/Version/5/$(notdir $(2))",) \
+                        $(foreach qtmod, $(VBOX_QT_MOD_NAMES), \
+                                $(foreach prefix, @executable_path/../Frameworks/ $(VBOX_PATH_QT)/Frameworks/ $(PATH_SDK_QT)/, \
+                                -change "$(prefix)$(qtmod).framework/Versions/5/$(qtmod)" \
+                                        "$(if $(VBOX_WITH_HARDENING),/Applications/VirtualBox.app/Contents/Frameworks,@rpath)/$(qtmod).framework/Versions/5/$(qtmod)" ) ) \
+                        "$(2)",) # HACK ALERT! Using $(source_type_prefix) to detect EXEC_SOURCES.
 else # win x11
  if1of ($(KBUILD_TARGET), linux solaris)

trunk/include/VBox/sup.h

@@ -1184 +1184 @@
 /** The hardened DLL has a "TrustedError" function (see FNSUPTRUSTEDERROR). */
 #define SUPSECMAIN_FLAGS_TRUSTED_ERROR      RT_BIT_32(1)
-/** Hack for making VirtualBoxVM use VirtualBox.dylib on Mac OS X. */
+/** Hack for making VirtualBoxVM use VirtualBox.dylib on Mac OS X.
+ * @note Not used since 6.0  */
 #define SUPSECMAIN_FLAGS_OSX_VM_APP         RT_BIT_32(2)
 /** Program binary location mask. */
-#define SUPSECMAIN_FLAGS_LOC_MASK           UINT32_C(0x00000010)
+#define SUPSECMAIN_FLAGS_LOC_MASK           UINT32_C(0x00000030)
 /** Default binary location is the application binary directory.  Does
  * not need to be given explicitly (it's 0).  */
@@ -1194 +1195 @@
  * default application binary directory. */
 #define SUPSECMAIN_FLAGS_LOC_TESTCASE       UINT32_C(0x00000010)
-/** The first process. */
-#define SUPSECMAIN_FLAGS_FIRST_PROCESS      UINT32_C(0x00000020)
+/** The binary is located in a nested application bundle under Resources/ in the
+ * main Mac OS X application (think Resources/VirtualBoxVM.app).  */
+#define SUPSECMAIN_FLAGS_LOC_OSX_HLP_APP    UINT32_C(0x00000020)
+/** The first process.
+ * @internal  */
+#define SUPSECMAIN_FLAGS_FIRST_PROCESS      UINT32_C(0x00000100)
 /** @} */
 

trunk/src/VBox/Frontends/VirtualBox/Makefile.kmk

@@ -55 +55 @@
 ifdef VBOX_WITH_HARDENING
 VirtualBoxHardenedVM_TEMPLATE = VBOXR3HARDENEDEXE
+VirtualBoxHardenedVM_INST.darwin = $(INST_VIRTUALBOX)Contents/Resources/VirtualBoxVM.app/Contents/MacOS/
+VirtualBoxHardenedVM_NAME = VirtualBoxVM
 VirtualBoxHardenedVM_SOURCES = src/hardenedmain.cpp
-VirtualBoxHardenedVM_NAME = VirtualBoxVM
 VirtualBoxHardenedVM_LDFLAGS.win = /SUBSYSTEM:$(if-expr "$(KBUILD_TYPE)" != "release",console,windows)
 $(call VBOX_SET_VER_INFO_EXE,VirtualBoxHardenedVM,VirtualBox Virtual Machine,$(VBOX_WINDOWS_ICON_FILE))
@@ -161 +162 @@
 VirtualBoxVM_TEMPLATE       := $(if $(VBOX_WITH_HARDENING),VBOXQTGUI,VBOXQTGUIEXE)
 VirtualBoxVM_NAME           = VirtualBoxVM
+ifndef VBOX_WITH_HARDENING
+VirtualBoxVM_INST.darwin    = $(INST_VIRTUALBOX)Contents/Resources/VirtualBoxVM.app/Contents/MacOS/
+endif
 VirtualBoxVM_DEPS           = $(UICommon_0_OUTDIR)/include/COMWrappers
 VirtualBoxVM_SDKS.win       = ReorderCompilerIncs $(VBOX_WINPSDK) $(VBOX_WINDDK)
@@ -388 +392 @@
 
 VirtualBox_LDFLAGS.darwin = \
+        $(if $(VBOX_WITH_HARDENING),,-rpath @executable_path/../MacOS -rpath @executable_path/../Frameworks) \
         -framework AppKit -framework Carbon -framework IOKit
 
@@ -422 +427 @@
 
 VirtualBoxVM_LDFLAGS.darwin = \
+        $(if $(VBOX_WITH_HARDENING)\
+        ,-install_name $(VBOX_DYLD_EXECUTABLE_PATH)/VirtualBoxVM.dylib \
+        ,-rpath @executable_path/../../../../MacOS \
+        -rpath @executable_path/../../../../Frameworks) \
         -framework AppKit -framework Carbon -framework IOKit \
-        $(if $(VBOX_WITH_HARDENING),-install_name $(VBOX_DYLD_EXECUTABLE_PATH)/VirtualBoxVM.dylib)
 
 if defined(VBOX_WITH_VIDEOHWACCEL) || defined(VBOX_GUI_USE_QGL)
@@ -447 +455 @@
 
 UICommon_LDFLAGS.darwin = \
-        -install_name $(VBOX_DYLD_EXECUTABLE_PATH)/UICommon.dylib \
+        -install_name "$(VBOX_DYLD_EXECUTABLE_PATH)/UICommon.dylib" \
         -framework AppKit \
         -framework Carbon \
@@ -1778 +1786 @@
         $(VirtualBoxVM.app_0_OUTDIR)/VM-Info.plist=>Info.plist \
         $(foreach mysrc,$(VirtualBox.app_SOURCES),$(if-expr $(pos =>Resources/,$(mysrc)) > 0,$(mysrc),))
- VirtualBoxVM.app_SYMLINKS = \
-        MacOS=>../../../MacOS/ \
-        plugins=>../../../plugins/ \
-        Frameworks=>../../../Frameworks/
 
  $$(VirtualBoxVM.app_0_OUTDIR)/VM-Info.plist: $(PATH_SUB_CURRENT)/src/platform/darwin/VM-Info.plist $(VBOX_VERSION_MK) | $$(@D)/

trunk/src/VBox/Frontends/VirtualBox/src/hardenedmain.cpp

@@ -64 +64 @@
 
     uint32_t fFlags = (fStartVM && !fSeparateProcess) ? 0 : SUPSECMAIN_FLAGS_DONT_OPEN_DEV;
+#ifdef RT_OS_DARWIN
+    fFlags |= SUPSECMAIN_FLAGS_LOC_OSX_HLP_APP;
+#endif
 
     return SUPR3HardenedMain("VirtualBoxVM",

trunk/src/VBox/Frontends/VirtualBox/src/main.cpp

@@ -54 +54 @@
 # include <iprt/ctype.h>
 #endif
+#if defined(VBOX_RUNTIME_UI) && defined(VBOX_WS_MAC)
+# include <iprt/path.h>
+#endif
 
 /* Other includes: */
@@ -59 +62 @@
 # include <dlfcn.h>
 # include <sys/mman.h>
+# ifdef VBOX_RUNTIME_UI
+//# include <mach-o/dyld.h>
+extern "C" const char *_dyld_get_image_name(uint32_t);
+# endif
 #endif /* VBOX_WS_MAC */
 #ifdef VBOX_WS_X11
@@ -702 +709 @@
         /* Instantiate own NSApplication before QApplication do it for us: */
         UICocoaApplication::instance();
+
+# ifdef VBOX_RUNTIME_UI
+        /* If we're a helper app inside Resources in the main application bundle,
+           we need to amend the library path so the platform plugin can be found.
+           Note! This builds on the initIprtForDarwinHelperApp() hack. */
+        {
+            char szExecDir[RTPATH_MAX];
+            int vrc = RTPathExecDir(szExecDir, sizeof(szExecDir));
+            AssertRC(vrc);
+            RTPathStripTrailingSlash(szExecDir); /* .../Contents/MacOS */
+            RTPathStripFilename(szExecDir);      /* .../Contents */
+            RTPathAppend(szExecDir, sizeof(szExecDir), "plugins");      /* .../Contents/plugins */
+            QCoreApplication::addLibraryPath(QString::fromUtf8(szExecDir));
+        }
+# endif
 #endif /* VBOX_WS_MAC */
 
@@ -842 +864 @@
 
 #if !defined(VBOX_WITH_HARDENING) || !defined(VBOX_RUNTIME_UI)
+
+# if defined(RT_OS_DARWIN) && defined(VBOX_RUNTIME_UI)
+/** Init runtime with the executable path pointing into the
+ * VirtualBox.app/Contents/MacOS/ rather than
+ * VirtualBox.app/Contents/Resource/VirtualBoxVM.app/Contents/MacOS/.
+ *
+ * This is a HACK to make codesign and friends happy on OS X.   The idea is to
+ * improve and eliminate this over time.
+ */
+DECL_NO_INLINE(static, int) initIprtForDarwinHelperApp(int cArgs, char ***ppapszArgs, uint32_t fFlags)
+{
+    const char *pszImageName = _dyld_get_image_name(0);
+    AssertReturn(pszImageName, VERR_INTERNAL_ERROR);
+
+    char szTmpPath[PATH_MAX + 1];
+    const char *psz = realpath(pszImageName, szTmpPath);
+    int rc;
+    if (psz)
+    {
+        char *pszFilename = RTPathFilename(szTmpPath);
+        if (pszFilename)
+        {
+            char const chSavedFilename0 = *pszFilename;
+            *pszFilename = '\0';
+            RTPathStripTrailingSlash(szTmpPath); /* VirtualBox.app/Contents/Resources/VirtualBoxVM.app/Contents/MacOS */
+            RTPathStripFilename(szTmpPath);      /* VirtualBox.app/Contents/Resources/VirtualBoxVM.app/Contents/ */
+            RTPathStripFilename(szTmpPath);      /* VirtualBox.app/Contents/Resources/VirtualBoxVM.app */
+            RTPathStripFilename(szTmpPath);      /* VirtualBox.app/Contents/Resources */
+            RTPathStripFilename(szTmpPath);      /* VirtualBox.app/Contents */
+            char *pszDst = strchr(szTmpPath, '\0');
+            pszDst = (char *)memcpy(pszDst, RT_STR_TUPLE("/MacOS/")) + sizeof("/MacOS/") - 1; /** @todo where is mempcpy? */
+            *pszFilename = chSavedFilename0;
+            memmove(pszDst, pszFilename, strlen(pszFilename) + 1);
+
+            return RTR3InitEx(RTR3INIT_VER_CUR, fFlags, cArgs, ppapszArgs, szTmpPath);
+        }
+        rc = VERR_INVALID_NAME;
+    }
+    else
+        rc = RTErrConvertFromErrno(errno);
+    AssertMsgRCReturn(rc, ("rc=%Rrc pszLink=\"%s\"\nhex: %.*Rhxs\n", rc, pszImageName, strlen(pszImageName), pszImageName), rc);
+    return rc;
+}
+# endif
+
 
 int main(int argc, char **argv, char **envp)
@@ -871 +938 @@
 
     uint32_t fFlags = fStartVM && !fSeparateProcess ? RTR3INIT_FLAGS_SUPLIB : 0;
+# ifdef RT_OS_DARWIN
+    int rc = initIprtForDarwinHelperApp(argc, &argv, fFlags);
 # else
-    uint32_t fFlags = 0;
-# endif
     int rc = RTR3InitExe(argc, &argv, fFlags);
+# endif
+# else
+    int rc = RTR3InitExe(argc, &argv, 0 /*fFlags*/);
+# endif
 
     /* Initialization failed: */

trunk/src/VBox/HostDrivers/Support/SUPLibInternal.h

@@ -185 +185 @@
     kSupID_AppPrivNoArch,
     kSupID_Testcase,
+#ifdef RT_OS_DARWIN
+    kSupID_AppMacHelper,
+#endif
     kSupID_End
 } SUPINSTDIR;
@@ -448 +451 @@
 
 DECLHIDDEN(int)     supR3HardenedVerifyAll(bool fFatal, const char *pszProgName, const char *pszExePath, uint32_t fMainFlags);
-DECLHIDDEN(int)     supR3HardenedVerifyFixedDir(SUPINSTDIR enmDir, bool fFatal);
+DECLHIDDEN(int)     supR3HardenedVerifyFixedDir(SUPINSTDIR enmDir, bool fFatal, PCSUPINSTFILE pFile);
 DECLHIDDEN(int)     supR3HardenedVerifyFixedFile(const char *pszFilename, bool fFatal);
 DECLHIDDEN(int)     supR3HardenedVerifyDir(const char *pszDirPath, bool fRecursive, bool fCheckFiles, PRTERRINFO pErrInfo);

trunk/src/VBox/HostDrivers/Support/SUPR3HardenedMain.cpp

@@ -452 +452 @@
 #include <iprt/initterm.h>
 #include <iprt/param.h>
+#include <iprt/path.h>
 
 #include "SUPLibInternal.h"
@@ -542 +543 @@
 /** The application bin directory path. */
 static char             g_szSupLibHardenedAppBinPath[RTPATH_MAX];
+/** The offset into g_szSupLibHardenedExePath of the executable name. */
+static size_t           g_offSupLibHardenedExecName;
+/** The length of the executable name in g_szSupLibHardenedExePath. */
+static size_t           g_cchSupLibHardenedExecName;
 
 /** The program name. */
@@ -1345 +1350 @@
     suplibHardenedPathStripFilename(g_szSupLibHardenedAppBinPath);
 
+    g_offSupLibHardenedExecName = suplibHardenedStrLen(g_szSupLibHardenedAppBinPath);
+    while (RTPATH_IS_SEP(g_szSupLibHardenedExePath[g_offSupLibHardenedExecName]))
+           g_offSupLibHardenedExecName++;
+    g_cchSupLibHardenedExecName = suplibHardenedStrLen(&g_szSupLibHardenedExePath[g_offSupLibHardenedExecName]);
+
     if (g_enmSupR3HardenedMainState < SUPR3HARDENEDMAINSTATE_HARDENED_MAIN_CALLED)
         supR3HardenedFatal("supR3HardenedExecDir: Called before SUPR3HardenedMain! (%d)\n", g_enmSupR3HardenedMainState);
@@ -1354 +1364 @@
             suplibHardenedPathStripFilename(g_szSupLibHardenedAppBinPath);
             break;
+#ifdef RT_OS_DARWIN
+        case SUPSECMAIN_FLAGS_LOC_OSX_HLP_APP:
+        {
+            /* We must ascend to the parent bundle's Contents directory then decend into its MacOS: */
+            static const RTSTRTUPLE s_aComponentsToSkip[] =
+            { { RT_STR_TUPLE("MacOS") }, { RT_STR_TUPLE("Contents") }, { NULL /*some.app*/, 0 }, { RT_STR_TUPLE("Resources") } };
+            size_t cchPath = suplibHardenedStrLen(g_szSupLibHardenedAppBinPath);
+            for (uintptr_t i = 0; i < RT_ELEMENTS(s_aComponentsToSkip); i++)
+            {
+                while (cchPath > 1 && g_szSupLibHardenedAppBinPath[cchPath - 1] == '/')
+                    cchPath--;
+                size_t const cchMatch = s_aComponentsToSkip[i].cch;
+                if (cchMatch > 0)
+                {
+                    if (   cchPath >= cchMatch + sizeof("VirtualBox.app/Contents")
+                        && g_szSupLibHardenedAppBinPath[cchPath - cchMatch - 1] == '/'
+                        && suplibHardenedMemComp(&g_szSupLibHardenedAppBinPath[cchPath - cchMatch],
+                                                 s_aComponentsToSkip[i].psz, cchMatch) == 0)
+                        cchPath -= cchMatch;
+                    else
+                        supR3HardenedFatal("supR3HardenedExecDir: Bad helper app path (tail component #%u '%s'): %s\n",
+                                           i, s_aComponentsToSkip[i].psz, g_szSupLibHardenedAppBinPath);
+                }
+                else if (   cchPath > g_cchSupLibHardenedExecName  + sizeof("VirtualBox.app/Contents/Resources/.app")
+                         && suplibHardenedMemComp(&g_szSupLibHardenedAppBinPath[cchPath - 4], ".app", 4) == 0
+                         && suplibHardenedMemComp(&g_szSupLibHardenedAppBinPath[cchPath - 4 - g_cchSupLibHardenedExecName],
+                                                  &g_szSupLibHardenedExePath[g_offSupLibHardenedExecName],
+                                                  g_cchSupLibHardenedExecName) == 0)
+                    cchPath -= g_cchSupLibHardenedExecName + 4;
+                else
+                    supR3HardenedFatal("supR3HardenedExecDir: Bad helper app path (tail component #%u '%s.app'): %s\n",
+                                       i, &g_szSupLibHardenedExePath[g_offSupLibHardenedExecName], g_szSupLibHardenedAppBinPath);
+            }
+            suplibHardenedMemCopy(&g_szSupLibHardenedAppBinPath[cchPath], "MacOS", sizeof("MacOS"));
+            break;
+        }
+#endif /* RT_OS_DARWIN */
         default:
             supR3HardenedFatal("supR3HardenedExecDir: Unknown program binary location: %#x\n", g_fSupHardenedMain);
@@ -2326 +2373 @@
     {
         case SUPSECMAIN_FLAGS_LOC_APP_BIN:
+#ifdef RT_OS_DARWIN
+        case SUPSECMAIN_FLAGS_LOC_OSX_HLP_APP:
+#endif
             pszSubDirSlash = "/";
             break;

trunk/src/VBox/HostDrivers/Support/SUPR3HardenedVerify.cpp

@@ -195 +195 @@
 //#ifdef VBOX_WITH_QTGUI
     {   kSupIFT_Exe,  kSupID_AppBin,             true, "VirtualBox" SUPLIB_EXE_SUFF },
+# ifdef RT_OS_DARWIN
+    {   kSupIFT_Exe,  kSupID_AppMacHelper,       true, "VirtualBoxVM" SUPLIB_EXE_SUFF },
+# else
     {   kSupIFT_Exe,  kSupID_AppBin,             true, "VirtualBoxVM" SUPLIB_EXE_SUFF },
+# endif
     {   kSupIFT_Dll,  kSupID_AppPrivArch,        true, "VirtualBoxVM" SUPLIB_DLL_SUFF },
     {   kSupIFT_Dll,  kSupID_AppPrivArch,        true, "UICommon" SUPLIB_DLL_SUFF },
@@ -267 +271 @@
  * @param   cchDst              The size of the buffer.
  * @param   fFatal              Whether failures should be treated as fatal (true) or not (false).
- */
-static int supR3HardenedMakePath(SUPINSTDIR enmDir, char *pszDst, size_t cchDst, bool fFatal)
+ * @param   pFile               The file (for darwin helper app paths).
+ */
+static int supR3HardenedMakePath(SUPINSTDIR enmDir, char *pszDst, size_t cchDst, bool fFatal, PCSUPINSTFILE pFile)
 {
     int rc;
@@ -307 +312 @@
             }
             break;
+#ifdef RT_OS_DARWIN
+        case kSupID_AppMacHelper:
+            rc = supR3HardenedPathAppBin(pszDst, cchDst);
+            if (RT_SUCCESS(rc))
+            {
+                /* Up one level from the VirtualBox.app/Contents/MacOS directory: */
+                size_t offDst = suplibHardenedStrLen(pszDst);
+                while (offDst > 1 && pszDst[offDst - 1] == '/')
+                    offDst--;
+                while (offDst > 1 && pszDst[offDst - 1] != '/')
+                    offDst--;
+
+                /* Construct the path to the helper application's Contents/MacOS directory: */
+                size_t cchFile = suplibHardenedStrLen(pFile->pszFile);
+                if (offDst + cchFile + sizeof("Resources/.app/Contents/MacOS") <= cchDst)
+                {
+                    suplibHardenedMemCopy(&pszDst[offDst], RT_STR_TUPLE("Resources/"));
+                    offDst += sizeof("Resources/") - 1;
+                    suplibHardenedMemCopy(&pszDst[offDst], pFile->pszFile, cchFile);
+                    offDst += cchFile;
+                    suplibHardenedMemCopy(&pszDst[offDst], RT_STR_TUPLE(".app/Contents/MacOS") + 1);
+                }
+                else
+                    rc = VERR_BUFFER_OVERFLOW;
+            }
+            break;
+#endif
         default:
             return supR3HardenedError(VERR_INTERNAL_ERROR, fFatal,
@@ -314 +346 @@
         supR3HardenedError(rc, fFatal,
                            "supR3HardenedMakePath: enmDir=%d rc=%d\n", enmDir, rc);
+    NOREF(pFile);
     return rc;
 }
@@ -336 +369 @@
      * Combine supR3HardenedMakePath and the filename.
      */
-    int rc = supR3HardenedMakePath(pFile->enmDir, pszDst, cchDst, fFatal);
+    int rc = supR3HardenedMakePath(pFile->enmDir, pszDst, cchDst, fFatal, pFile);
     if (RT_SUCCESS(rc) && fWithFilename)
     {
@@ -363 +396 @@
  * @param   fFatal              Whether validation failures should be treated as
  *                              fatal (true) or not (false).
- */
-DECLHIDDEN(int) supR3HardenedVerifyFixedDir(SUPINSTDIR enmDir, bool fFatal)
+ * @param   pFile               The file (for darwin helper app paths).
+ */
+DECLHIDDEN(int) supR3HardenedVerifyFixedDir(SUPINSTDIR enmDir, bool fFatal, PCSUPINSTFILE pFile)
 {
     /*
@@ -391 +425 @@
      */
     char szPath[RTPATH_MAX];
-    int rc = supR3HardenedMakePath(enmDir, szPath, sizeof(szPath), fFatal);
+    int rc = supR3HardenedMakePath(enmDir, szPath, sizeof(szPath), fFatal, pFile);
     if (RT_SUCCESS(rc))
     {
@@ -676 +710 @@
      *  use openat if we wish.)
      */
-    int rc = supR3HardenedVerifyFixedDir(pFile->enmDir, fFatal);
+    int rc = supR3HardenedVerifyFixedDir(pFile->enmDir, fFatal, pFile);
     if (RT_SUCCESS(rc))
     {

trunk/src/VBox/Installer/darwin/Makefile.kmk

@@ -361 +361 @@
 
 VBOX_DI_VBAPP_PROGS_HARDENED = \
-        MacOS/VirtualBoxVM \
+        Resources/VirtualBoxVM.app/Contents/MacOS/VirtualBoxVM \
         MacOS/VBoxHeadless \
         MacOS/VBoxNetDHCP \
@@ -414 +414 @@
 endif
 ifdef VBOX_WITH_HARDENING
- VBOX_DI_VBAPP_DYLIBS += $(addsuffix .dylib,$(VBOX_DI_VBAPP_PROGS_HARDENED))
+ VBOX_DI_VBAPP_DYLIBS += $(addprefix MacOS/,$(addsuffix .dylib,$(notdir $(VBOX_DI_VBAPP_PROGS_HARDENED))))
 endif
 ifdef VBOX_WITH_HDDPARALLELS_INSTALL
@@ -522 +522 @@
 
 VBOX_DI_VBAPP_SYMLINKS = \
-        Resources/VirtualBoxVM.app/Contents/MacOS=>../../../MacOS/ \
-        Resources/VirtualBoxVM.app/Contents/plugins=>../../../plugins/ \
-        Resources/VirtualBoxVM.app/Contents/Frameworks=>../../../Frameworks/ \
         Resources/vmstarter.app/Contents/MacOS=>../../../MacOS/ \
         $(foreach qtmod, $(VBOX_QT_MOD_NAMES) \
@@ -684 +681 @@
         $(foreach prog, $(VBOX_DI_VBAPP_PROGS) $(VBOX_DI_VBAPP_PROGS_HARDENED) \
                 ,$(INSTALL) -m 0755 $(VBOX_PATH_DIST)/VirtualBox.app/Contents/$(prog)           $(VBOX_PATH_VBOX_APP_TMP)/Contents/$(prog)$(NLTAB))
-#ifdef VBOX_WITH_HARDENING - disabled temporarily
-if 1
-        @# We cannot use @executable_path together with setuid binaries, dyld gets upset about it. So, fix Qt libs and users.
-        $(foreach qtmod, $(VBOX_QT_MOD_NAMES) \
-                ,install_name_tool -id /Applications/VirtualBox.app/Contents/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                        $(VBOX_PATH_VBOX_APP_TMP)/Contents/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod)$(NLTAB) )
-        $(foreach f, \
-                $(VBOX_DI_VBAPP_DYLIBS) \
-                $(VBOX_DI_VBAPP_DYLIBS.$(KBUILD_TARGET_ARCH)) \
-                $(VBOX_DI_VBAPP_PROGS) \
-                $(VBOX_DI_VBAPP_PROGS_HARDENED) \
-                ,install_name_tool \
-                        $(foreach qtmod, $(VBOX_QT_MOD_NAMES), \
-                                -change           @executable_path/../Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                /Applications/VirtualBox.app/Contents/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                -change               $(VBOX_PATH_QT)/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                /Applications/VirtualBox.app/Contents/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                -change                           $(PATH_SDK_QT)/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                /Applications/VirtualBox.app/Contents/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                -change                                          $(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                /Applications/VirtualBox.app/Contents/Frameworks/$(qtmod).framework/Versions/$(VBOX_QT_VERSION_MAJOR)/$(qtmod) \
-                                ) \
-                        $(VBOX_PATH_VBOX_APP_TMP)/Contents/$(f)$(NLTAB) )
-endif
 ifdef VBOX_UNATTENDED_TEMPLATES
 # Unattended installation template scripts.
@@ -780 +753 @@
         sudo chmod u+s $(VBOX_PATH_VBOX_APP_TMP)/Contents/MacOS/VBoxNetAdpCtl
 ifdef VBOX_WITH_HARDENING
-        sudo chmod u+s \
-                $(foreach bin,VBoxHeadless VirtualBoxVM VBoxNetDHCP VBoxNetNAT,\
-                        $(VBOX_PATH_VBOX_APP_TMP)/Contents/MacOS/$(bin))
+        sudo chmod u+s $(foreach bin,$(VBOX_DI_VBAPP_PROGS_HARDENED),$(VBOX_PATH_VBOX_APP_TMP)/Contents/$(bin))
+endif
+if 0 # Handy for testing the app bundle w/o having to reinstall all the time (just untar it into -C /Applications/)
+        $(RM) -f -- "$(PATH_OUT)/VirtualBox.app.tar.gz"
+        tar -czf "$(PATH_OUT)/VirtualBox.app.tar.gz" -C "$(VBOX_PATH_VBOX_APP_TMP)/.." VirtualBox.app
 endif
         @# Do keyword replacement in the package info and description files.