On 1/6/23 12:28 PM, Aandi Inston via Cocoa-dev wrote:
Is there any API for doing the following activities related to code
signing?
- Check that the signature on the running codesigned executable is from the
same company as the signature on a bundle?
OR
- Get the company from the codesigned running executable and
- Get the company from a signature on a bundle
(so we can check they are the same).
I think this can be done calling and reading output from the codesign CLI,
but an API seems tidier.
Reference to detailed reading is fine!!
Thanks in advance!
I haven't tried this, but I think you could call
SecCodeCopySigningInformation( code, kSecCSSigningInformation, &resultDict )
for each piece of code, and in the resulting dictionary, look at the
value for the key kSecCodeInfoTeamIdentifier. That should serve to
represent the company.
_______________________________________________
Cocoa-dev mailing list (Cocoa-dev@lists.apple.com)
Please do not post admin requests or moderator comments to the list.
Contact the moderators at cocoa-dev-admins(at)lists.apple.com
Help/Unsubscribe/Update your Subscription:
https://lists.apple.com/mailman/options/cocoa-dev/archive%40mail-archive.com
This email sent to arch...@mail-archive.com
