Since Ventura Beta 9 our endpoint-client system extension seems to be failing due to lacking FDA TCC permission.
The same notarized app seems to had no issues running on Ventura beta8 or earlier.
es_new_client
seems to be failing with ES_NEW_CLIENT_RESULT_ERR_NOT_PERMITTED due to system extension not being granted FDA.
This causes our extension to fail early and take up cpu core + quite a bit of Logd spam:
error 18:24:37.120364+0200 com.vendor.endpoint Failed to open service: 0xe00002d8: Caller lacks TCC authorization for Full Disk Access
error 18:24:37.120407+0200 kernel Task has not been granted user permission to connect
Any help or insight would be much appreciated. Have a nice day.
Sidenote: We have noticed that a new TCC policy type has appeared for our endpoint extension, kTCCServiceEndpointSecurityClient
but we haven't found documentation regarding what it is for.