Hi,Some help is needed, will appreshiate any help on the topics below:1. How can i verify that the certificate i am using / includes the "kext-enabled" flag by Apple (we have already file the request)?2. Is there a defined process for signing the .kext, it seams according to this post the signuture do not include the OID 1.2.840.113635.100.6.1.18 ?3. I have read several post regarding the deprecation of kext loading and destribution however i am comfused regarding the preformance of Xcode 11.x and macOS Catalina, is loading can be achived even with the price of the user aproval on the Security & Privacy ?Thanks a lot in advance,Reuven
Post
Replies
Boosts
Views
Activity
Hi,I need to create an instaler package .pkg.I have read cerfuly the post Signing a Mac Product For Distribution, however i miss some pices:On Build an Installer Package section you say "depending on your distribution channel” what are the options and do that influent the needed certificate?Currently I see that the only available certificate is "3rd Party Mac Developer Installer:” do we need to create "Developer ID Installer:” (in all documentations that I have read all are talking on the "Developer ID Installer:”, what is the deference?When using productbuild command with —sign we do not need to use productsign command?Using the codesign command with the flags --timestamp --options=runtime, in that case do we still ned entitlements attached for the timestamp and for the hardening?I there any totorial / example of how to create .pkg (this packege is to hold and use a .kext kernal extension) using xcode 11.x commandline tools that will load on macOS Catalina?Thanks a lot,Reuven
Is it possible to use a script from the post run action in the schema editor for attaching an app extension to the debugger by process name?
It seams obvious, but I do not find a way to do this automatically when hit the run button, any idea how to pull this?
Hi,
We have an implementation of a tunnel packet provider, that works.
We as well have an implementation of a dns proxy, that works.
However, when that is executed from our app all is great and the app initialize the extensions, but when the tunnel is opened from the settings app (VPN switch) that's execute the tunnel provider network extension.
How can I execute the dns proxy when the tunnel network extension is launched from settings, no success with launching it from the tunnel network extension, nor by local push notification.. any idea?
Hi, Need some help figuring out the options and actions on following situations:
When there are two or more enterprise VPNs installed on a device, one is currently active (some other brand tunnel packet provider).
Then the user opens my app that triggers the opening of my network extension packet tunnel provider.
Can that situation be identified so a notification be prompted to the user?
Can my packet tunnel provider get / have priority over the current running packet tunnel provider?
Please guid / direct to relevant document.
Thanks in advance,
~r