Difference between revisions of "Code Signing"

From Verge3D Wiki
Jump to navigationJump to search
 
(2 intermediate revisions by the same user not shown)
Line 17: Line 17:
Notarize you binary/app:
Notarize you binary/app:


  xcrun altool --notarize-app --primary-bundle-id <BUNDLE-ID> --username <APPLE-ID-EMAIL> --password "@keychain:altool" --file <APP_OR_BINARY>
  xcrun altool --notarize-app --primary-bundle-id <BUNDLE_ID> --username <EMAIL> --password "@keychain:altool" --file <APP_OR_BINARY>


=== Verification ===
=== Verification ===


  codesign --verify --verbose <APP_OR_BINARY>
check singing:
 
  codesign -vvv --deep --strict <APP_OR_BINARY>
 
check notarization:
 
codesign --test-requirement="=notarized" --verify --verbose <APP_OR_BINARY>

Latest revision as of 16:34, 26 January 2022

Windows

Verification

signtool verify /pa binary_file.exe

macOS

Search for valid Developer ID Certificate:

security find-identity -v

Sign your binary/app:

codesign -s <ID> -o runtime -v <APP_OR_BINARY>

Notarize you binary/app:

xcrun altool --notarize-app --primary-bundle-id <BUNDLE_ID> --username <EMAIL> --password "@keychain:altool" --file <APP_OR_BINARY>

Verification

check singing:

codesign -vvv --deep --strict <APP_OR_BINARY>

check notarization:

codesign --test-requirement="=notarized" --verify --verbose <APP_OR_BINARY>