Integrity check failing for a unix executable packaged inside a notarized dmg on mac OS 10.15 when SIP is enabled
Originator: | ayushsinha1996 | ||
Number: | rdar://7102361 | Date Originated: | 22/08/2019 |
Status: | Open | Resolved: | No |
Product: | macOS | Product Version: | 10.15 |
Classification: | Incorrect/Unexpected Behavior | Reproducible: | Always |
Problem: [Mac 10.15] Integrity of ExManCmd [Unix Executable] cannot be verified even after notarizing the dmg Method To Reproduce the issue 1. Download the notarized dmg from the website. 2. Extract the contents of the dmg in a folder 3. Launch Terminal and run ExmanCmd [Unix Executable] You get a popup saying "ExmanCmd cant be opened because its integrity cannot be verified" Result: ExMan Command Line tool is not working Expected: ExMan Command Line tool should function properly However , if we double click the unix executable ExmanCmd and it shows: "This application is downloaded from internet. Do you want to open it". When click on open and then launch ExmanCmd in terminal , it works fine. Note: This issue is seen on 10.15 machines where SIP (System Integrity Protection) is enabled by default. It is not seen on machines where is SIP is disabled (csrutil disable) Why is this anomaly being observed and what is its solution ?
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!
Please have a look at this issue as soon as possible