I try to notarize my macOS application. I’ve done `codesign -dvv --force --timestamp --sign ***` for...

aleksey.tomin

03/01/2021, 12:12 PM

I try to notarize my macOS application. I’ve done

codesign -dvv --force --timestamp --sign ***

for all dylib’s and my kexe with a

Mac App Distribution

certificate Next I’ve signed

productsign --sign

and

codesign -dvv --force --timestamp --sign

with a

Mac Installer Distribution

certificate And the last:

xcrun altool --notarize-app --primary-bundle-id "ID"

- AppID configuration. After this in the log I see

Copy code

{
      "severity": "error",
      "code": null,
      "path": "MY.pkg xpoint-sdk.kexe",
      "message": "The binary is not signed with a valid Developer ID certificate.",
      "docUrl": null,
      "architecture": "x86_64"
    },
   {
      "severity": "error",
      "code": null,
      "path": "MY.pkg .../xpoint-sdk.kexe",
      "message": "The executable does not have the hardened runtime enabled.",
      "docUrl": null,
      "architecture": "x86_64"
    }
...
   {
      "severity": "error",
      "code": null,
      "path": "MY.pkg .../some.dylib",
      "message": "The binary is not signed with a valid Developer ID certificate.",
      "docUrl": null,
      "architecture": "x86_64"
    }

How can I fix it?

olonho

03/01/2021, 12:20 PM

See https://github.com/JetBrains/compose-jb/tree/master/tutorials/Signing_and_notarization_on_macOS, while somewhat Compose-biased, shall help.

aleksey.tomin

03/01/2021, 12:25 PM

I’ve read this. But now I don’t use the plugin. I will try to use this…

aleksey.tomin

03/03/2021, 8:02 AM

@olonho I’ve done notarize for DMG. But how can I notarize PKG?

olonho

03/03/2021, 9:39 AM

Similar tasks but with

Pkg

suffix, IIRC.

aleksey.tomin

03/03/2021, 9:43 AM

I look at source code and can’t understand how it works. What code uses for this?

46 Views

Open in Slack

Previous Next

kotlinlang

A modern programming language that makes developers happier.