Closed indygreg closed 9 months ago
SMPrivilegedExecutables
seems to be unrelated to code signing. https://developer.apple.com/documentation/servicemanagement/1431078-smjobbless?language=objc
Closing this issue as I think there's nothing to be done here.
As part of debugging signing verification failures, It looks like the
Info.plist
SMPrivilegedExecutables
key contains a code requirements expression which matches the designated requirements in the signed binary.e.g. on Firefox.app's
Contents/MacOS/updater.app
:This matches the DR embedded in the CD of the
Contents/MacOS/updater.app/Contents/MacOS/org.mozilla.updater
Mach-O binary.We may need to synchronize these expressions. But more research is needed. Filing this issue to track.