I have a notarized application that's embedding a lots of frameworks. When installed on Big Sur, it can be run normally as a local non admin user. When executed as Active Directory user however I'm getting the following error message:
"The application with bundle ID x.y.z is running setugid(), which is not allowed. Exiting."
I removed all calls to setegid and that sort, traced calls with dtruss and I'm pretty sure no privilege elevation is being done.
Any help would be much appreciated.
That log message is generated by AppKit when you try to use NSApplication or NSWindow in a process where issetugid returns true. See the issetugid man page for details on how that call works.
For this to happen something must be messing around with Unix-y privileges. I’ve no idea what that might be, but I suspect that it’s a combination of your code and your execution environment. I recommend that you tease these apart by creating a new test app from the Cocoa > App template in Xcode and then running it through the signing, notarisation, and deployment process that you use for your main app. Does it exhibit the same problem?
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"
