Our app offers a encrypted filesystem. It mounts a user-space volume, which lets users read/write/create files to it. The data is actually stored to an encrypted vault inside application directory as backend storage for mounted volume.
App works fine until we sandboxed it, and mount fails. I find following in console.
04/02/2015 2:56:10.000 pm kernel[0]: Sandbox: deny file-write-create /Volumes/Personal Vault
Does anybody know how to allow sandbox app to mount a volume under /Volumes. I didn't find an entitlement to do so.