We have a sandboxed Network Extension. Now we need to use /dev/auditpipe and this obviously doesn't work unless I turn sandboxing off. Is there a "temporary" exception entitlement for this kind of access? com.apple.security.temporary-exception.files.absolute-path.read-only and com.apple.security.temporary-exception.files.absolute-path.read-write have no effect on /dev/, apparently.

I've run into one weird issue in Xcode 13.2.1 (didn't test with others) when linking very specific code in a universal macOS application. Debug builds work fine for all platforms (Apple/Intel). Release build though fails in one function implementing Blowfish crypto only for arm64, works fine on Intel. A decrypt function returns garbage only in this very specific case. Intel code under Rosetta also works fine. After few hours of elimination I narrowed it down to Link-Time Optimization option (LTO) - when it's set to anything else but No it does create this problem on arm64 only. I can't reproduce this with a smaller project using same Blowfish code and even enabling LTO for Debug build doesn't reproduce this. It has to be Release, LTO, arm64 and some pixie dust. Does anybody have any idea what's going on? I'd really like to find what happens here!