Integrity check failing for a unix executable packaged inside a notarized dmg on mac OS 10.15 when SIP is enabled

Originator:ayushsinha1996
Number:rdar://7102361 Date Originated:22/08/2019
Status:Open Resolved:No
Product:macOS Product Version:10.15
Classification:Incorrect/Unexpected Behavior Reproducible:Always
 
Problem: [Mac 10.15] Integrity of ExManCmd [Unix Executable] cannot be verified even after notarizing the dmg

Method To Reproduce the issue

1. Download the notarized dmg from the website.

2. Extract the contents of the dmg in a folder
  
3. Launch Terminal and run ExmanCmd [Unix Executable]

You get a popup saying "ExmanCmd cant be opened because its integrity cannot be verified" 



Result: ExMan Command Line tool is not working

Expected:  ExMan Command Line tool should function properly



However , if we double click the unix executable ExmanCmd and it shows:
"This application is downloaded from internet. Do you want to open it".
When click on open and then launch ExmanCmd in terminal , it works fine.

Note:

This issue is seen on 10.15 machines where SIP (System Integrity Protection) is enabled by default. It is not seen on machines where is SIP is disabled (csrutil disable)


Why is this anomaly being observed and  what is its solution ?

Comments

Please have a look at this issue as soon as possible

By ayushsinha1996 at Oct. 11, 2019, 9 a.m. (reply...)

Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!