“codesign”

I'm using my 3rd Party Developer and 3rd Party Installer certs to codesign an app bundle and then the package for that app for non-MAS distribution. Both operations report success and running codesign -vv /Applications/application.app reports:/Applications/application.app: valid on disk/Applications/application.app: satisfies its Designated RequirementHowever, when I transfer the PKG file to a server and then download it onto another system, Gatekeeper tells me that the app is from an unidentified developer. I have verified my certificates in Keychain Access and they match what is included with my developer account on developer.apple.com.Anyone have pointers as to what to check next?

Hello there,I am trying to import my ios distribution certificate and key to a custom keychain so I can codesign my unsigned .app file with the following script:#!/bin/bash PASS='12345' KC=$HOME/Library/Keychains/custom.keychain LKC='login.keychain' CERT_FOLDER=$PWD/certificates PROFILE_NAME='MOBPROFILE.mobileprovision' PROFILE=$CERT_FOLDER/$PROFILE_NAME KEY=$CERT_FOLDER/private_key.pem CERT=$CERT_FOLDER/ios_distribution.cer APP=$PWD/myapp.app WWDR=$CERT_FOLDER/AppleWWDRCA.cer TMP_FOLDER=$PWD/tmp CONFIG='iPhone Distribution: ORG (TEAMID)' SHARED_PROFILE_FOLDER=$HOME/Library/MobileDevice/Provisioning Profiles prepare () { mkdir -p $SHARED_PROFILE_FOLDER cp $PROFILE $SHARED_PROFILE_FOLDER mkdir -p $TMP_FOLDER security create-keychain -p $PASS $KC security list-keychains -d user -s $LKC $KC security import $WWDR -k $KC -t cert -A -P '' security import $KEY -k $KC -t priv -A -P '' security import $CERT -k $KC -t cert -A -P '' security default-keychain -d user -s $KC security unlock-keychain -p $PASS $KC

My app won't run and I get the message:Code Sign Error:SecKey API returned: -25304, (null)/Users/scottglickman/Library/Developer/Xcode/DerivedData/------------alygwtpfdrajvmaamwzrurcxzuuz/Build/Products/Debug-iphoneos/---------.app: unknown error -1=ffffffffffffffffCommand /usr/bin/codesign failed with exit code 1I've sent two separate requests to Apple for support and they just won't respond.I have an automatic manage signing and an XCode Managed Profile.I've cleaned the project and deleted derived data multiple times. I've rebooted the computer. Nothing works.Can anyone tell me how to fix this?Thanks

Problem:I have a command line tool that is codesigned with a valid Developer ID Application certificate/identity (which expires in 2018)When this command line tool is checked in its build folder with codesign -vvvvvvvvv, everything is OK:mytool: valid on diskmytool: satisfies its Designated RequirementWhen this command line tool is checked in its installed location with codesign -vvvvvvvvv, there is a problem:mytool: invalid signature (code or signature have been modified)In architecture: x86_64Now, the weird part:- the md5 for the 2 instances are the same- the sha-1 for the 2 instances are the same- if I rename the instance in the installed location like this:mv mytool mytool2and then check with codesign -vvvvvvvv, everything is OK.If I put back the old name and check it with codesign -vvvvvvvv, same problem about the invalid signature.Note:If the running process mytool (in the installed location) is checked with SecCodeCheckValidityWithErrors, an error is returne

Hi All,I am receiving the code sign error :I cant test with the in-built simulator or archive. CodeSign /Users/winston/Library/Developer/Xcode/DerivedData/Oddbods_Stickers-hfazfvyucidfdghkyqchigqfnpyt/Build/Products/Debug-iphonesimulator/Oddbods Stickers.app cd /Users/winston/Desktop/Oddbods Stickers export CODESIGN_ALLOCATE=/Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/codesign_allocate export PATH=/Applications/Xcode.app/Contents/Developer/Platforms/iPhoneSimulator.platform/Developer/usr/bin:/Applications/Xcode.app/Contents/Developer/usr/bin:/usr/local/bin:/usr/bin:/bin:/usr/sbin:/sbin Signing Identity: - /usr/bin/codesign --force --sign - --timestamp=none /Users/winston/Library/Developer/Xcode/DerivedData/Oddbods_Stickers-hfazfvyucidfdghkyqchigqfnpyt/Build/Products/Debug-iphonesimulator/Oddbods Stickers.app/Users/winston/Library/Developer/Xcode/DerivedData/Oddbods_Stickers-hfazfvyucidfdghkyqchigqfnpyt/Build/Products/Debug-iphonesimulator/Oddbods St

Observations:In which specific version of Mac OS X, OS X, macOS did the validation code for Kernel Extension changed?In macOS Sierra 10.12.4b, trying to load a kernel extension with extra files in the _CodeSignature folder fails and codesign -vvvvv explains the reason: unsealed contents present in the bundle root.In OS X 10.11.6, the same kernel extension (with the extra files) loads fine and codesign -vvvvvv states that all the requirements are met.Question:Did this change with macOS Sierra 10.12.3? Has there been a release note about this?

I'm trying to launch an app generated with Xcode that should get a sandbox receipt in 10.12.4 Beta (16E189a). The app checks whether it has a receipt and if it doesn't, it exits with 173 so that macOS can show the App Store login dialog and generate a receipt. This used to work.However, on said beta, when I click on the freshly built app the icon appears in the dock for a very short time, then disappears… and nothing else happens. No dialog. No receipt.In the console log, I can see this:default 11:08:20.480048 +0100 storeassetd MacOS error: -67050 default 11:08:20.480695 +0100 storeassetd MacOS error: -67050 default 11:08:20.480934 +0100 storeassetd ISCodeSignatureOperation: isDeveloperSigned = 0 default 11:08:20.485024 +0100 storeassetd MacOS error: -67050 default 11:08:20.485099 +0100 storeassetd MacOS error: -67050 default 11:08:20.485292 +0100 storeassetd ISCodeSignatureOperation: isAppleSigned = 0 default 11:08:20.485475 +0100 storeassetd Unsigned app (/path/to/test.app). default 11:08:20.485797 +0100 st

I am attempting to ship an umbrella dynamic framework for other apps to use. I understand that Apple recommends not to use umbrella frameworks but in this case I am the owner of the umbrella framework and *all* of its subframeworks.It turns out that when a developer consumes my umbrella framework only the umbrella one ends up codesigned and the sub frameworks are not code signed. This causes a crash when launching the app.Is there a way to tell Xcode to code sign all the sub frameworks as well or a setting to enable this? Do I have to force developers to include a build phase script that re-signs the internal frameworks? The latter sounds like a bad experience and would prefer to avoid it.