Codesigning for Plugin Hosts

Hi there,

i have a VST3 plugin host on the market, Windows and Mac. On Mac hardened runtime is on and the entitlements for loading plugins are set correctly.

On some Macs, until now only Silicon Macs, some plugins crash during scanning and the crashlog says:

Exception Type: EXC_BAD_ACCESS (SIGKILL (Code Signature Invalid))
Exception Codes: UNKNOWN_0x32 at 0x0000000178005f40
Exception Codes: 0x0000000000000032, 0x0000000178005f40

The same plugins run well in all other commercial hosts.

Any idea what could be the cause for that, what can be done to make the host load the plugins?

Btw. building the host locally lets it scan and run those plugins successfully.

Best,

Thomas

On Mac hardened runtime is on and the entitlements for loading plugins are set correctly.

Which entitlements did you add? I had a similar issue and found I needed these specifically:

com.apple.security.cs.disable-library-validation
com.apple.security.cs.allow-unsigned-executable-memory

Yes those, i even tried setting all of them.

Building locally works like a charm. Downloading the installer from the internet (built from the same code) yields the errors.

Then I don’t know - I reckon you double-checked that the downloaded version also have those entitlements?

Yes sir.

Correction: it was, but somehow got lost in the installer. Now it works. Thanks for point it out.