I’ve got a problem with the Network Extension Provider, I am developing a mac app which used the PacketTunnel Provider. When I running it in develop model it works fine, but in the Distribution Model the logs show “ Error Domain=NEVPNErrorDomain Code=5 ‘permission denied’ ”.
The main app id and the packetTunnel app id and the code are all the same in the two model ! The only difference is one is for debug other is for debug :
and when I used the "security cms -D -i (provisionprofilepath)" commend, the result is :
the develep is:
<key>Entitlements</key>
<dict>
<key>keychain-access-groups</key>
<array>
<string>xxxxxxxxxx*</string>
</array>
<key>com.apple.application-identifier</key>
<string>xxxxxxxxxxxxx*</string>
<key>com.apple.developer.team-identifier</key>
<string>xxxxxxxxxxxxx</string>
<key>com.apple.developer.networking.networkextension</key>
<array>
<string>packet-tunnel-provider</string>
<string>app-proxy-provider</string>
</array>
</dict>
the relase is:
<key>Entitlements</key>
<dict>
<key>keychain-access-groups</key>
<array>
<string>xxxxxxxxxx</string>
</array>
<key>com.apple.application-identifier</key>
<string>xxxxxxxxxxx</string>
<key>com.apple.developer.team-identifier</key>
<string>xxxxxxxxxxxxx</string>
</dict>
<key>ExpirationDate</key>
So, now I highly doubt that the Network Extentsion is not to used in the "Developer ID" distribition model ? (ps. int he mac app store model the provisionprofile's entitlements is all the right !) Some one some tips? thanks in advance !
"
Distribution
Developer ID
Create a Developer ID provisioning profile to use Apple services with your Developer ID signed applications.
Mac App Store
Create a distribution provisioning profile to submit your app to the Mac App Store.
"