feat(cli): add macos hardened runtime signing config option #9318
+40
−1
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
In
macOS
, when buildingdmg
withad-hoc
signature, and the app depends on Frameworks (dynamic shared libraries,dylib
files), they won't load and the app will crash with error message box.I found that if we disable signing flag in
macOS
bundler passed fromtauri-cli
, it won't crash.the flag which passed is
--option runtime
in tooling/bundler/src/bundle/macos/sign.rs#L210crash log
man codesign
This PR introduce a way to control the flag through
tauri.conf.json
:I believe that macOS bundling process needs to be much more flexible.
Currently I have no other option to control the final signing of the app, and tauri enforce this
runtime
flag, as a result the final binary can't run and I can't publish it for macOS (arm).