An notarization exported macOS networkextension app, says “Signature check failed: code failed to satisfy specified code requirement(s)", but there is no error in xcode running mode.
Any ideas? Thanks
2022-02-24 21:33:03.089673+0800 0x9f08c5 Default 0x9e468a 33246 0 TunnelExtension: (NetworkExtension) [com.apple.networkextension:] Signature check failed: code failed to satisfy specified code requirement(s)`
Any ideas?
Try building and running the app bundle from the /Applications directory. There are some cases where non-fatal logs like this can show up for a Network System Extension but the extension still runs fine. It depends on what is being called out as the issue in the logs. A common one that I've seen is an app-groups issue with the signature. If there was a true entitlement / provisioning profile issue on the provider it would typically result in a code signature crash.
Matt Eaton
DTS Engineering, CoreOS
meaton3@apple.com
and there is no error in the process of notarization. the exported app was placed in /Application, and the app still doesn't work. Indeed, " Signature check failed" appears in xcode running mode, and the tunnel extension works well. so wired
Your workflow here does not add up. You mention that you are Notarizing your app and running it from /Applications and the you mention "Xcode running mode," how are you testing your app?
Also, what is the actual error that you are receiving other than, "Signature check failed?" Your signature can fail for a variety of different reasons.
If you are running this with SIP disabled, make sure to enable SIP. You are just making life harder on yourself by disabling SIP.
If you are not setting the Sandbox entitlement for both your Network System Extension and your container app, make sure and do that.
Matt Eaton
DTS Engineering, CoreOS
meaton3@apple.com