How to make a "safe" patch?

Xcott's picture


I am impressed with the Safe Audio patch, and would love to know how you did it.

I have been trying to get QC animation, sandboxed in Quicktime, to get a datum from another application. Right now I have the RSS reader pointed at a local file, which is allowed; but wrapping an unsigned integer in an RSS file is as elegant as the post office delivering an entire mobile home to your door with a letter in the mailbox.

Any hints on how to accomplish this? A hexdump tells me that you seem to implement an isSafe method; I have tried this but with no luck, so I guess it is not that simple.

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

cwright's picture
2 words: Unofficial API

If you're using the apple template, there's nothing you can do to make a "safe" patch. It's trivial to hack around this limitation, but I don't feel that it's appropriate to discuss it in a public forum because abusing such a feature will cause 2 negative side effects:

1) people will abuse it, causing general problems in an otherwise safe environment. 2) Apple, in response, will probably be forced to make safety checking more stringent. This will be wasting their developers' precious time, and make future unofficial api developments more difficult (from Apple's perspective, that may be worth their developers' time though :)

Also, I recommend using ClassDump over a raw hex dump. Much more informative :)

(if you're interested in implementing this, please e-mail me and we can discuss this in private. I can be contacted at the e-mail address at the bottom of every page :)