Difference between revisions of "Code Signing"

From Verge3D Wiki
Jump to navigationJump to search
m
 
(3 intermediate revisions by the same user not shown)
Line 1: Line 1:
{{stub}}
== Windows ==
== Windows ==


Line 17: Line 18:
Notarize you binary/app:
Notarize you binary/app:


  xcrun altool --notarize-app --primary-bundle-id <BUNDLE-ID> --username <APPLE-ID-EMAIL> --password "@keychain:altool" --file <APP_OR_BINARY>
  xcrun altool --notarize-app --primary-bundle-id <BUNDLE_ID> --username <EMAIL> --password "@keychain:altool" --file <APP_OR_BINARY>


=== Verification ===
=== Verification ===


  codesign --verify --verbose <APP_OR_BINARY>
check singing:
 
  codesign -vvv --deep --strict <APP_OR_BINARY>
 
check notarization:
 
codesign --test-requirement="=notarized" --verify --verbose <APP_OR_BINARY>

Latest revision as of 07:40, 1 September 2022

This article is a stub. You can help Verge3D Wiki by expanding it.

Windows

Verification

signtool verify /pa binary_file.exe

macOS

Search for valid Developer ID Certificate:

security find-identity -v

Sign your binary/app:

codesign -s <ID> -o runtime -v <APP_OR_BINARY>

Notarize you binary/app:

xcrun altool --notarize-app --primary-bundle-id <BUNDLE_ID> --username <EMAIL> --password "@keychain:altool" --file <APP_OR_BINARY>

Verification

check singing:

codesign -vvv --deep --strict <APP_OR_BINARY>

check notarization:

codesign --test-requirement="=notarized" --verify --verbose <APP_OR_BINARY>