Notarization Apple



  • Don't know if this will affect us. But Apple is requiring this in order to run apps. Not sure about plugins.

    Important

    Beginning in macOS 10.14.5, all new or updated kernel extensions and all software from developers new to distributing with Developer ID must be notarized in order to run. Beginning in macOS 10.15, notarization is required by default for all software.

    https://developer.apple.com/documentation/security/notarizing_your_app_before_distribution



  • For example, if a plug-in employs deep integration with the host executable via C function pointer overrides, or uses a JavaScript engine for custom workflows, the host executable must declare the Allow Unsigned Executable Memory Entitlement or Allow Execution of JIT-compiled Code Entitlement, respectively. In some cases, a plug-in fails to even load if the host executable lacks the proper entitlement.

    It‘s as if Apple said „fuck all software developers but HISE in particular“ 😉



  • Just like everytime, Apple is fucking with developers, users.....so they are fucking with everyone.

    After Steve Jobs' gone, they're just fucking themselves, but they don't realize that. In long period Apple will loose lot's of users, not just in the computer arena, but also other technology arenas too.

    Another example: Apple card. https://edition.cnn.com/2019/08/22/tech/apple-card-discoloration-trnd/index.html

    "If your titanium Apple Card comes into contact with hard surfaces or materials, it's possible that the coating can be damaged," The bottom line: The Apple Card probably shouldn't touch anything.

    So if I can't put Apple card in the leather wallet or if the card can't touch with other cards, why the fuck did you make this titanium card?!

    The real question goes to the user: Why did you buy this useless card? 😕

    That is just an example that Apple loosing it's mind and productive work.



  • I received an email from PACE (the company that makes EDEN tools for signing plugins) today, saying this:

    As you may be aware Apple will be releasing its new macOS Catalina (10.15) soon. 
    As part of this release software notarization will be more strongly enforced.
    
    This email covers what PACE is doing with our upcoming 5.1.0 release to support notarization. 
    It’s important that you read this email because the changes required for notarization affect compatibility.
    

    .... and the mail goes.

    Is this notarization shit, about only for installers / dmg files? Or do we have to notarize all of the vst / au plugins, because they won't be opened in hosts without notarization?

    macOS Catalina will be released soon. Does anybody know what is this about?



  • In this video, they say that

    • Plugins must be signed with your Developer ID Application Certificate and it will have a secure timestamp.

    • Installers must be signed with your Developer ID Installer Certificate (this cert. is different from App. cert. above)

    • Dmg files must be signed with your Developer ID Application Certificate and it will have a timestamp.

    For now, the "macOS Mojave (10.14.5) update" is opening unsigned and unnotarized plugins (with a Gatekeeper warning). but I am not sure about "macOS Catalina".


Log in to reply
 

8
Online

502
Users

1.8k
Topics

13.6k
Posts