Notarize dmg queries

You can upload a disk image for notarization and staple a ticket to it. The ticket covers all the contents of the dmg. You can't currently staple a ticket to a zip file.

Someone else is looking into answering the questions about SDK version and unsigned kexts.

Currently, due to changes in macOS 10.8.3 (see bottom), you'll need to distribute two installers, one for macOS 10.8.2 and earlier that contains the unsigned kext as unsigned kexts cannot be notarize and one that is notarized that contains the signed kext for macOS 10.8.3 and later.

The kext installer for macOS 10.8.3 or later that is meant to be notarized will also need to be linked against the macOS 10.9 SDK or later, although you can set the deployment target to macOS 10.8 to get compatibility for macOS 10.8.3.

Alternatively, you can separate them into an unnotarized macOS 10.7.5 to macOS 10.8.5 installer and one notarized installer for macOS 10.9 and later, if it's easier to demarcate the downloads that way.

Hello,

Thanks for details. It works for me.

But for notarisation I am facing same issue with code sign of my nested binaries as given below.

You can find issue at below link :MacOS X application codesign gets failed if it has symlink folders

Please provide any solution to resolve code sign issue which helps us to complete our notarisation dmg.

Thanks,

Simran

2 follow-up questions:

- can you notarize an unsigned disk image? Or is this just notarizing the contents of the disk image in this case?

- since you can only staple a writabe disk image, does converting the stapled writable disk image to a compressed disk image break the notarization? It would seem strange that you can not distributed a notarized+stapled compressed disk image.