fix(cli): use ditto instead of fs::copy to preserve macOS code signing by DorianZheng · Pull Request #113 · boxlite-ai/boxlite

DorianZheng · 2026-01-13T08:48:53Z

Summary

Replace Rust's fs::copy() with macOS ditto command in build.rs to preserve code signing metadata when copying runtime files
Use cp -R -T on Linux for similar behavior

Problem

CLI and shim binaries were killed with SIGKILL (exit 137) on macOS because fs::copy() creates new files that lose code signing extended attributes, causing "Invalid Page" code signature validation failures at dyld load time.

The crash report showed:

"signal":"SIGKILL (Code Signature Invalid)"
"termination":{"namespace":"CODESIGNING","indicator":"Invalid Page"}

Root Cause

fs::copy() creates a new file that doesn't preserve macOS code signing metadata
When binaries are copied from target/boxlite-runtime/ to ~/.local/share/boxlite/, the code signatures become invalid
macOS kills the process at dyld load time before any code executes

Solution

Use ditto on macOS which preserves extended attributes, resource forks, and code signing metadata.

Test plan

Clean rebuild: rm -rf ~/.local/share/boxlite && make cli
Test CLI: ./target/debug/boxlite -h shows help
Test shim: ~/.local/share/boxlite/boxlite-shim --help shows help

DorianZheng · 2026-01-13T08:50:20Z

@shayne-snap Hi, I found a bug when use rust std::fs::copy didn't preserve signing. Would you like to review?

Replace Rust's fs::copy() with macOS ditto command in build.rs to preserve code signing metadata when copying runtime files. Problem: CLI and shim binaries were killed with SIGKILL (exit 137) on macOS because fs::copy() creates new files that lose code signing extended attributes, causing "Invalid Page" code signature validation failures at dyld load time. Solution: Use ditto on macOS which preserves extended attributes, resource forks, and code signing metadata. Use cp -R -T on Linux.

shayne-snap · 2026-01-13T09:40:28Z

Hi @DorianZheng I haven't came across this problem on my laptop(Apple chip M2). Which platform are you on?

bcz I'm using runtime-debug?

boxlite/Makefile

Line 91 in 7d662d7

cli: runtime-debug

DorianZheng · 2026-01-13T10:03:41Z

Hi @DorianZheng I haven't came across this problem on my laptop(Apple chip M2). Which platform are you on?

bcz I'm using runtime-debug?

boxlite/Makefile

Line 91 in 7d662d7

cli: runtime-debug

Hi, my mac chip is Apple M1 Pro. I think maybe it's the cache thing. Can you try make clean and make cli?

shayne-snap · 2026-01-13T10:23:27Z

After executing make clean and make cli on different branches (twice), both version work on my laptop(./target/debug/boxlite -h works).

shayne-snap · 2026-01-13T10:23:43Z

LGTM

DorianZheng · 2026-01-13T12:37:41Z

After executing make clean and make cli on different branches (twice), both version work on my laptop(./target/debug/boxlite -h works).

@shayne-snap Ahhh, that's weird. I will paste the reproduce steps here in some time. Before that, I will leave this PR open and won't merge it.

uran0sH · 2026-01-13T15:50:00Z

I test on M2 chip and macOS Sequoia. It also works for me.

shayne-snap · 2026-01-29T14:54:16Z

After executing make clean and make cli on different branches (twice), both version work on my laptop(./target/debug/boxlite -h works).

@shayne-snap Ahhh, that's weird. I will paste the reproduce steps here in some time. Before that, I will leave this PR open and won't merge it.

I came across the same problem on my laptop after I created two dirs inboxlite-cliand move some files into the dirs. Don't know why make clean doesn't work.

shayne-snap · 2026-01-29T14:56:42Z

This PR works for me. Could you merge it into main? @DorianZheng

DorianZheng force-pushed the fix/cli-macos-copy-metadata branch from 886a8ed to eccbc7b Compare January 13, 2026 08:51

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(cli): use ditto instead of fs::copy to preserve macOS code signing#113

fix(cli): use ditto instead of fs::copy to preserve macOS code signing#113
DorianZheng wants to merge 1 commit intomainfrom
fix/cli-macos-copy-metadata

DorianZheng commented Jan 13, 2026

Uh oh!

DorianZheng commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 13, 2026

Uh oh!

DorianZheng commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 13, 2026

Uh oh!

DorianZheng commented Jan 13, 2026

Uh oh!

uran0sH commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 29, 2026 •

edited

Loading

Uh oh!

shayne-snap commented Jan 29, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

Conversation

DorianZheng commented Jan 13, 2026

Summary

Problem

Root Cause

Solution

Test plan

Uh oh!

DorianZheng commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 13, 2026

Uh oh!

DorianZheng commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 13, 2026

Uh oh!

DorianZheng commented Jan 13, 2026

Uh oh!

uran0sH commented Jan 13, 2026

Uh oh!

shayne-snap commented Jan 29, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

shayne-snap commented Jan 29, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

shayne-snap commented Jan 29, 2026 •

edited

Loading