blob: b71fe31cb694dff7a4c5f1003fdd88cb9bbccf3f (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
|
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<!--
Entitlements to apply during codesigning of developer builds. These
differ from the production entitlements in that they allow debugging of
executables and allow dyld environment variables to be used. This set of
entitlements is intended to be used for signing of builds used in
automated testing or local developer builds where debugging of a signed
build might be necessary. The com.apple.security.get-task-allow
entitlement must be set to true to allow debuggers to attach to
application processes but prohibits notarization with the notary service.
dyld environment variables are used for some tests and may be useful for
developers.
This file is based on the developer.entitlements.xml file used for Firefox.
-->
<plist version="1.0">
<dict>
<!-- Thunderbird does not use MAP_JIT for executable mappings -->
<key>com.apple.security.cs.allow-jit</key><false/>
<!-- Thunderbird needs to create executable pages (without MAP_JIT) -->
<key>com.apple.security.cs.allow-unsigned-executable-memory</key><true/>
<!-- Code paged in from disk should match the signature at page-in time -->
<key>com.apple.security.cs.disable-executable-page-protection</key><false/>
<!-- Allow loading third party libraries. Possibly needed by some legacy extensions. -->
<key>com.apple.security.cs.disable-library-validation</key><true/>
<!-- Allow dyld environment variables for gtests and debugging -->
<key>com.apple.security.cs.allow-dyld-environment-variables</key><true/>
<!-- Allow debuggers to attach to running executables -->
<key>com.apple.security.get-task-allow</key><true/>
<!-- Thunderbird needs to access the microphone on sites the user allows -->
<key>com.apple.security.device.audio-input</key><true/>
<!-- Thunderbird needs to access the camera on sites the user allows -->
<key>com.apple.security.device.camera</key><true/>
<!-- Thunderbird needs to access the location on sites the user allows -->
<key>com.apple.security.personal-information.location</key><true/>
<!-- Thunderbird uses the macOS addressbook for contacts storage. -->
<key>com.apple.security.personal-information.addressbook</key><true/>
<!-- Allow Thunderbird to send Apple events to other applications. Needed
for native messaging webextension helper applications launched by
Thunderbird which rely on Apple Events to signal other processes. -->
<key>com.apple.security.automation.apple-events</key><true/>
<!-- For SmartCardServices(7) -->
<key>com.apple.security.smartcard</key><true/>
</dict>
</plist>
|