Re: RFR: 8332110: [macos] jpackage tries to sign added files without the --mac-sign option [v2]

Yes you can file an Apple bug report but I think these days it requires a developer account to get to the bug reporter. The indicated documentation doesn’t mention anything about your own files/directories. So I think a bug report might be appropriate. One in but the other out doesn’t seem

Re: RFR: 8332110: [macos] jpackage tries to sign added files without the --mac-sign option

> On May 24, 2024, at 3:08 AM, Michael Hall wrote: > >> On May 23, 2024, at 8:13 PM, Alexander Matveev > <mailto:almat...@openjdk.org>> wrote: >> >> otherwise add additional content as post-processing step. > > Doesn’t this still leave you wit

Re: RFR: 8322332: Add API to access ZipEntry.extraAttributes

nformation for most 3rd-party ZIP processing libraries. I > personally don't really use ZipFile so am not quite sure of the recent API > changes either. > > On Sun, May 12, 2024 at 6:10 PM Michael Hall <mailto:mik3h...@gmail.com>> wrote: >> I haven’t l

Re: Integrated: 8295111: dpkg appears to have problems resolving symbolically linked native libraries

t have to run as a Pi application. I can command line if I have to. Or I was thinking about modifying some of the application code to run standalone. Thanks anyhow, Mike > On Apr 19, 2024, at 1:13 PM, Michael Hall wrote: > > I don’t know what flavors you are looking to support

Re: Integrated: 8295111: dpkg appears to have problems resolving symbolically linked native libraries

I don’t know what flavors you are looking to support but there seems to be somewhat different issues on a Raspberry Pi. I was just trying to use jpackage there. I am getting errors like the command dpkg -S /lib/aarch64-linux-gnu/libXau.so .6 The file isn’t found These

Re: reducing the size of multi-architecture applications

universal from the perspective of the OS. > > > > >> On Mar 7, 2024, at 1:24 PM, Michael Hall wrote: >> >> Not directly in response to your prior. But curious, are you doing something >> like described here? >> >> https://developer.apple.co

Re: reducing the size of multi-architecture applications

Not directly in response to your prior. But curious, are you doing something like described here? https://developer.apple.com/documentation/apple-silicon/building-a-universal-macos-binary If not why not? It indicates > For universal binaries, the system prefers to execute the slice that is >

Re: [External] : Re: jpackage requests permission via a dialog

Fwiw screenshots DMG with a customized background image (SceneBuilder demo) http://mikehall.pairserver.com/custom_dmg.png DMG with extra files. Default layout and background image. http://mikehall.pairserver.com/additional_dmg.png

Re: [External] : Re: jpackage requests permission via a dialog

I’m not sure hacking the .DS_Store file would be Apple supported. Is install4j still actively supporting this or is this something they used to do? What happens if they stop? The result of my bug report included the icons being resized to fit better with multiple files. I think Alexander’s

Re: [External] : Re: jpackage requests permission via a dialog

Hello Alexander, I had forgotten or didn’t know that. I didn’t see it mentioned anywhere in this list thread previously. But there is generally no reason to delete this file. Unless you don’t want it included in a zip or a GitHub project. The icon placement for multiple files with jpackage

Re: jpackage requests permission via a dialog

I’m not following what the .DS_Store file has to do with anything, other than being a Mac feature that’s occasionally a nuisance when the files end up in zip’s or elsewhere where you don’t want them. I’m also not sure if that was my explanation or Alexander’s you’re talking about. Using the

Re: jpackage requests permission via a dialog

If I remember what I read correctly it was Apple’s intention that some services require explicit user authorization. So, the dialog. You could probably hdiutil yourself but the AppleScript does have benefits. Such as a background image, the drag to Application Folder option, layout appearance

Re: RFR: 8311877: [macos] Add CLI options to provide signing identity directly to codesign and productbuild [v3]

> On Oct 20, 2023, at 3:42 PM, Alexander Matveev wrote: > > On Fri, 20 Oct 2023 04:23:22 GMT, Alexander Matveev > wrote: > >>> - Added `--mac-app-image-sign-identity` and `--mac-installer-sign-identity` >>> CLI options to jpackage to provide signing identity

Re: RFR: 8311877: [macos] Add CLI options to provide signing identity directly to codesign and productbuild

> On Oct 6, 2023, at 6:31 PM, Alexander Matveev wrote: > > CSR [JDK-8316631](https://bugs.openjdk.org/browse/JDK-8316631). > We will not do any validations of certificates in this case like we do with > --mac-signing-key-user-name or we will not check if produced application > image or

Re: jpackage Windows Wix v4

> On Sep 13, 2023, at 2:27 PM, Michael Hall wrote: > > > >> On Sep 13, 2023, at 2:21 PM, Alexey Semenyuk >> wrote: >> >> jpoackage requires at least Wix v3.0. If it doesn't recognize Wix4, it is a >> bug. >> >> - Alexey >> &

Re: jpackage Windows Wix v4

> On Sep 13, 2023, at 2:21 PM, Alexey Semenyuk > wrote: > > jpoackage requires at least Wix v3.0. If it doesn't recognize Wix4, it is a > bug. > > - Alexey > > On 9/12/2023 6:50 PM, Michael Hall wrote: >> Curiosity. I was setting up a new Windows 10 Vi

jpackage Windows Wix v4

Curiosity. I was setting up a new Windows 10 VirtualBox image to do jpackage. It told me I needed Wix. First I needed dotnet to install wix. I then got a Wix v4. jpackage told me I needed candle.exe and light.exe from v3. I installed v3 but haven’t had a chance to try it. However, if v4 isn’t

Re: [External] : Re: RFR: 8308042: [macos] Developer ID Application Certificate not picked up by jpackage if it contains UNICODE characters

>>> >> >> Assuming code sign will catch the errors discussed or even not. >> >> Would it make sense to do post validation of the entire app after completion? > > Good point, but I am not sure if we should be doing this. > > Thanks, > Alexander I’m not quite following that. The spctl

Re: RFR: 8308042: [macos] Developer ID Application Certificate not picked up by jpackage if it contains UNICODE characters

> On Aug 22, 2023, at 9:40 PM, Alan Snyder wrote: > > > >> On Aug 22, 2023, at 4:42 PM, Alexander Matveev >> wrote: >> >> Hi Alan, >> >>> On Aug 22, 2023, at 3:35 PM, Alan Snyder wrote: >>> >>> I’m confused by this. >>> >>> The issue is marked as macOS, but on macOS you don’t need to

Re: [External] : Re: RFR: 8313904: [macos] All signing tests which verifies unsigned app images are failing

> On Aug 11, 2023, at 3:55 PM, Alexander Matveev > wrote: > > Hi Michael, > >> On Aug 10, 2023, at 10:48 PM, Michael Hall > <mailto:mik3h...@gmail.com>> wrote: >> >> >>>> >>>> I assume done with jpackage by indicati

Re: RFR: 8313904: [macos] All signing tests which verifies unsigned app images are failing

>> >> I assume done with jpackage by indicating something like —mac-sign only? If >> wrong feel free to correct. > > No, it is always done if —mac-sign is NOT specified and we doing ad-hoc > signing on app bundle only. PKG will not be ad-hoc signed. > If —mac-sign is provided we will use

Re: RFR: 8313904: [macos] All signing tests which verifies unsigned app images are failing

> On Aug 10, 2023, at 6:35 PM, Michael Hall wrote: > > > >> On Aug 10, 2023, at 6:21 PM, Alexander Matveev wrote: >> >> - Fixed tests by checking that all app bundles are signed and by checking >> how they signed ad-hoc vs actual certific

Re: RFR: 8313904: [macos] All signing tests which verifies unsigned app images are failing

> On Aug 10, 2023, at 6:21 PM, Alexander Matveev wrote: > > - Fixed tests by checking that all app bundles are signed and by checking how > they signed ad-hoc vs actual certificate. How is ad-hoc signing done?

Re: jpackage code signing identity

> On Jun 25, 2023, at 10:41 AM, Alan Snyder wrote: > > My certificate is different, as I stated. I don’t know why. Again, FWIW. As shown Apple provides some different certificates for different purposes. What I show works for me. If in the Keychain Access you have a certificate with a

Re: jpackage code signing identity

> On Jun 25, 2023, at 10:21 AM, Alan Snyder wrote: > > I’m having trouble using the code signing feature of jpackage for macOS. > FWIW, I have… SIGNING_CERT_3RD_PARTY="3rd Party Mac Developer Application: Michael Hall (??)" DEFAULT_SIGN

Re: jextract OS/X

> On Mar 25, 2023, at 11:33 AM, Michael Hall wrote: > > For the jdk-19 release this is included in the bin directory but not in the > jdk-19.0.2. Is there a reason for this? I remembered I think my jdk-19 was a Panama specific. The jdk-19.0.2 was the current general release. Probably why.

jextract OS/X

For the jdk-19 release this is included in the bin directory but not in the jdk-19.0.2. Is there a reason for this?

Re: [External] : Re: Jpackage OS/X DMG install Application folder alias name incorrectly shows as path with /

> On Oct 31, 2022, at 6:57 PM, Alexander Matveev > wrote: > > Hi Michael. > > If you mean http://mikehall.pairserver.com/DMG_windows.dmg > , then I cannot open this > link. It says file not found. > > Thanks, > Alexander > Sorry, wrong

Re: [External] : Re: Jpackage OS/X DMG install Application folder alias name incorrectly shows as path with /

> On Oct 31, 2022, at 5:56 PM, Alexander Matveev > wrote: > > Hi Michael, > >> On Oct 31, 2022, at 2:40 PM, Michael Hall > <mailto:mik3h...@gmail.com>> wrote: >> >> >> >>> On Oct 31, 2022, at 4:17 PM, Alexander Matveev >>

Re: Jpackage OS/X DMG install Application folder alias name incorrectly shows as path with /

> On Oct 31, 2022, at 4:17 PM, Alexander Matveev > wrote: > > Hi Michael, Hello Alexander, > > If I understood correctly you asking for several things: > > 1) Change “/Applications” to “Applications”. I agree and we should fix it if > possible. Did you file a bug for it? If not I can

Re: Jpackage OS/X DMG install Application folder alias name incorrectly shows as path with /

> On Oct 26, 2022, at 7:55 PM, Michael Hall wrote: > > I was looking to see what any other dmg’s I have do to handle this. Not many > do. But those usually seem to use a smaller background image and icons. > I may look at that to see if I can manage something like that. I ma

Re: Jpackage OS/X DMG install Application folder alias name incorrectly shows as path with /

> On Oct 26, 2022, at 4:31 PM, Michael Hall wrote: > > At jpackage 19, I filed a bug on this but don’t have a number yet. I seem to remember this as a regression it happened before. Strange since every occurrence of DMGSetup.scpt I can find looks like it handles the Application fol

Jpackage OS/X DMG install Application folder alias name incorrectly shows as path with /

At jpackage 19, I filed a bug on this but don’t have a number yet. I did do a little looking at the DMGSetup.scpt AppleScript on my own. I was thinking this… -- Create alias for install location make new alias file at POSIX file "DEPLOY_VOLUME_PATH" to POSIX file

Re: [External] : Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Oct 2, 2022, at 8:36 AM, Michael Hall wrote: > > and a test that some changes can be made to the jdk itself and still get a > valid signed application. Alexander You may want to consider if this opens up a security vulnerability that doesn’t currently exist.

Re: [External] : Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 27, 2022, at 4:27 PM, Michael Hall wrote: > > > >> On Sep 27, 2022, at 2:48 PM, Alexander Matveev > <mailto:alexander.matv...@oracle.com>> wrote: >> >> Hi Michael, >> >> It is not possible to provide a unique or hashed CFBundl

Re: [External] : Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 27, 2022, at 2:48 PM, Alexander Matveev > wrote: > > Hi Michael, > > It is not possible to provide a unique or hashed CFBundleIdentifier. We > already implemented to throw error if —strip-native-commands are not provided > to jlink or if provided runtime contain bin directory. >

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 26, 2022, at 9:24 PM, Michael Hall wrote: > > > >> On Sep 20, 2022, at 5:50 PM, Michael Hall > <mailto:mik3h...@gmail.com>> wrote: >> >> Still you could use post-processing to add whatever java binary executable >> commands you wante

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 20, 2022, at 5:50 PM, Michael Hall wrote: > > Still you could use post-processing to add whatever java binary executable > commands you wanted. This again would mean changes to the embedded jdk that > might have signing side effects. I haven’t tested. Thinking abou

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 20, 2022, at 6:04 PM, Michael Hall wrote: > > > >> On Sep 20, 2022, at 5:50 PM, Michael Hall > <mailto:mik3h...@gmail.com>> wrote: >> >> Given that this does break that, one possibility might be to include >> parameter changes i

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 20, 2022, at 5:50 PM, Michael Hall wrote: > > Given that this does break that, one possibility might be to include > parameter changes in the Info.plist file. Some time back Apple java > applications used to include a java dictionary in the plist that was more or &g

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 20, 2022, at 5:01 PM, Michael Hall wrote: > > > >>>> >>>> >>> >>> Alexander, >>> >>> I think I figured out how to include PR’s in my build and this appears good. >>> >>> codesign

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

>>> >>> >> >> Alexander, >> >> I think I figured out how to include PR’s in my build and this appears good. >> >> codesign -v --verbose=4 "/Volumes/BlackJack Blastoff_Unsigned/BlackJack >> Blastoff_Unsigned.app" >> /Volumes/BlackJack Blastoff_Unsigned/BlackJack Blastoff_Unsigned.app: valid

Re: RFR: 8293462: [macos] app image signature invalid when creating DMG or PKG from post processed signed image

> On Sep 16, 2022, at 6:02 PM, Alexander Matveev wrote: > > Problem is that [JDK-8286850](https://bugs.openjdk.org/browse/JDK-8286850 > ) never set correct value in > .jpackage.xml to mark image as signed. >

Re: [External] : Re: jpackage OS/X --app-image signing

> On Sep 7, 2022, at 1:50 PM, Alexander Matveev > wrote: > > Hi Michael, > > I file following issue for this: > https://bugs.openjdk.org/browse/JDK-8293462 > > > Yes, you right it is related to JDK-8289030. I put suggested workaround to >

Re: jpackage OS/X --app-image signing

> On Sep 6, 2022, at 8:00 PM, Michael Hall wrote: > > > >> On Sep 6, 2022, at 4:52 PM, Michael Hall wrote: >> >> >> >>> On Sep 6, 2022, at 4:48 PM, Alexander Matveev >>> wrote: >>> >>> Hi Michael, >&

Re: jpackage OS/X --app-image signing

> On Sep 6, 2022, at 4:52 PM, Michael Hall wrote: > > > >> On Sep 6, 2022, at 4:48 PM, Alexander Matveev >> wrote: >> >> Hi Michael, >> >> Did you generate application image with same JDK version (19+36-2238)? With >> latest J

Re: jpackage OS/X --app-image signing

> On Sep 6, 2022, at 4:52 PM, Michael Hall wrote: > > > >> On Sep 6, 2022, at 4:48 PM, Alexander Matveev >> wrote: >> >> Hi Michael, >> >> Did you generate application image with same JDK version (19+36-2238)? With >> latest J

Re: jpackage OS/X --app-image signing

> On Sep 6, 2022, at 4:48 PM, Alexander Matveev > wrote: > > Hi Michael, > > Did you generate application image with same JDK version (19+36-2238)? With > latest JDK version .jpackage.xml file should be present. We do not support > signing of application images generate by another

jpackage OS/X --app-image signing

/Contents/Home/bin/jpackage jpackage --version 19 jpackage --type app-image --app-image ~/Blackjack_Blastoff/bjb/bjb_jpkg/BlackJack\ Blastoff_Unsigned.app --mac-sign --mac-signing-key-user-name "Developer ID Application: Michael Hall (5X6BXQB3Q7)" Error:

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

> On Jun 22, 2022, at 10:28 PM, Alexander Matveev > wrote: > > Hi Michael, > > I filed it as https://bugs.openjdk.org/browse/JDK-8289030 > > > Thanks, > Alexander > Alexander, Checking on this it appears to be resolved but still doesn’t seem

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

> On Jun 22, 2022, at 7:36 PM, Alexander Matveev > wrote: > > Hi Michael, > > I was able to reproduce it. Not sure what is wrong. Do you want to file a bug > for this? Or I can file one myself. > > Thanks, > Alexander > You can get it. I have no immediate need again. Just thought I

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

> On Jun 22, 2022, at 7:15 PM, Michael Hall wrote: > > > >> On Jun 22, 2022, at 6:57 PM, Alexander Matveev >> wrote: >> >> Hi Michael, >> >> Did you modified app image after it was signed and before DMG was created? >> If yes, it is

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

> On Jun 22, 2022, at 6:57 PM, Alexander Matveev > wrote: > > Hi Michael, > > Did you modified app image after it was signed and before DMG was created? If > yes, it is expected behavior and we will not sign app image when generating > DMG. > > Can you provide all steps you did to get to

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

Alexander, Sorry yet again. I really should have totally completed. While the application verified on disk immediately after signing. The dmg version does not appear to verify. codesign -v --verbose=4 /Applications/BlackJack\ Blastoff_Unsigned.app /Applications/BlackJack

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

-signing-key-user-name "Developer ID Application: Michael Hall (5X6BXQB3Q7)” Codesign verifies correctly. Then adding to a dmg. jpackage --type dmg --app-image BlackJack\ Blastoff_Unsigned.app Completed the dmg creation successfully. The verify error message on the signature of what’s su

Re: [External] : Re: RFR: 8286850: [macos] Add support for signing user provided app image [v2]

> On Jun 8, 2022, at 1:47 AM, Michael Hall wrote: > > > >> On Jun 7, 2022, at 9:21 PM, Alexander Matveev >> wrote: >> >> Hi Michael, >> >> Yes, this is correct. It is a three step process as you outlined it below. >> >