I know that SIP needs to be disabled in order for TF to work properly. Hackintosh users can get very specific about which thing to allow/disallow. Do you know which one of the below is actually responsible for TF to work?
CSR_ALLOW_UNTRUSTED_KEXTS - 0x1
CSR_ALLOW_UNRESTRICTED_FS - 0x2
CSR_ALLOW_TASK_FOR_PID - 0x4
CSR_ALLOW_KERNEL_DEBUGGER - 0x8
CSR_ALLOW_APPLE_INTERNAL - 0x10
CSR_ALLOW_UNRESTRICTED_DTRACE - 0x20
CSR_ALLOW_UNRESTRICTED_NVRAM - 0x40
CSR_ALLOW_DEVICE_CONFIGURATION - 0x80
CSR_ALLOW_ANY_RECOVERY_OS - 0x100
CSR_ALLOW_UNAPPROVED_KEXTS - 0x200
CSR_ALLOW_EXECUTABLE_POLICY_OVERRIDE - 0x400
darwin
October 2, 2021, 3:14pm
2
CSR_ALLOW_TASK_FOR_PID and CSR_ALLOW_UNRESTRICTED_FS should be enabled for TotalFinder to work.
When using csrutil, please look here as well:
1_unexpected.txt
# in recovery mode
❯ csrutil enable --without debug
# note that prior macOS 11.0 this would disable "Debugging Restrictions"
# since macOS 11.0 it seems to be disabling "Apple Internal" and "Filesystem Protections"
❯ csrutil status
System Integrity Protection status: unknown (Custom Configuration).
Configuration:show original
2_workaround.txt
# in recovery mode
❯ csrutil disable --with kext --with dtrace --with nvram --with basesystem
# this seems to do what we wanted, not sure what Apple Internal does
❯ csrutil status
System Integrity Protection status: unknown (Custom Configuration).
Configuration:
Apple Internal: disabledshow original
_readme.md
Credits: https://github.com/koekeishiya/yabai/wiki/Disabling-System-Integrity-Protection
There are more than three files. show original
1 Like
Oh man thanks for this! I can’t wait to try it.
Used this setting and all is perfect! Thanks!!
1 Like
If you are updating to macOS Sonoma and need to have your Broadcom wireless working, you will need to use 07080000 as your csr-active-config.