MASTG-TOOL-0114: codesign

The codesign tool is primarily used to create, verify, and display code signatures, and to query the dynamic status of signed code in the system. Although Xcode typically automates the process of signing code during builds and before distribution, there are scenarios where manual intervention with codesign is required. This can include inspecting or verifying the details of an app's code signature, or manually re-signing an app. For more detailed tasks such as these, you can use the codesign command line tool directly, as described in Apple's Code Signing Guide.

Learn more:

• "Examining a Code Signature"
• "Signing Code Manually" in Apple's Code Signing Guide
• Using the latest code signature format
• codesign manpage
• codesign source code

Techniques

MASTG-TECH-0092: Signing IPA files MASTG-TECH-0084: Debugging MASTG-TECH-0111: Extracting Entitlements from MachO Binaries

Tests

MASTG-TEST-0081: Making Sure that the App Is Properly Signed