It looks like the broken build has no entitlements: ``` $ codesign -d --entitlements - /Volumes/Firefox\ Nightly\ 1/Firefox\ Nightly.app Executable=/Volumes/Firefox Nightly 1/Firefox Nightly.app/Contents/MacOS/firefox ``` The crash under EnterJit for Apple's crash report then makes sense, we're not allowed to execute (unsigned) JIT code. Printing entitlements for a 'good' build on the other hand has this: ``` $ codesign -d --entitlements - /Volumes/Firefox\ Nightly\ 2/Firefox\ Nightly.app Executable=/Volumes/Firefox Nightly 2/Firefox Nightly.app/Contents/MacOS/firefox ??qH<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <!-- Entitlements to apply to the .app bundle and all executable files contained within it during codesigning of production channel builds that will be notarized. These entitlements enable hardened runtime protections to the extent possible for Firefox. --> <plist version="1.0"> <dict> <!-- Firefox does not use MAP_JIT for executable mappings --> <key>com.apple.security.cs.allow-jit</key><false/> <!-- Firefox needs to create executable pages (without MAP_JIT) --> <key>com.apple.security.cs.allow-unsigned-executable-memory</key><true/> ... more of the same ... ```
Bug 1689807 Comment 6 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
It looks like the broken build has no entitlements: ``` $ codesign -d --entitlements - /Volumes/Firefox\ Nightly\ 1/Firefox\ Nightly.app Executable=/Volumes/Firefox Nightly 1/Firefox Nightly.app/Contents/MacOS/firefox ``` The crash under EnterJit from Apple's crash report then makes sense, we're not allowed to execute (unsigned) JIT code. Printing entitlements for a 'good' build on the other hand has this: ``` $ codesign -d --entitlements - /Volumes/Firefox\ Nightly\ 2/Firefox\ Nightly.app Executable=/Volumes/Firefox Nightly 2/Firefox Nightly.app/Contents/MacOS/firefox ??qH<?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <!-- Entitlements to apply to the .app bundle and all executable files contained within it during codesigning of production channel builds that will be notarized. These entitlements enable hardened runtime protections to the extent possible for Firefox. --> <plist version="1.0"> <dict> <!-- Firefox does not use MAP_JIT for executable mappings --> <key>com.apple.security.cs.allow-jit</key><false/> <!-- Firefox needs to create executable pages (without MAP_JIT) --> <key>com.apple.security.cs.allow-unsigned-executable-memory</key><true/> ... more of the same ... ```