Verifying a signature?

  • Wow, we can sign code in Leopard!
    Except:
      - anyone knows how to verify a code signing programmatically?
    Forking codesign seems the only way to do that, and I have to parse
    the output to distinguish between an unsigned plug-in (acceptable) and
    a signed plug-in with a broken signature (which I don't want to load).
    codesign returns 1 in both cases.
      - the docs hint to a fabled requirement description language of
    which there are only hints, but no real documentation, in the Code
    Signing Guide. Anyone know where to look for this?

      - ∞_______________________________________________
    MacOSX-dev mailing list
    <MacOSX-dev...>
    http://www.omnigroup.com/mailman/listinfo/macosx-dev
previous month october 2007 next month
MTWTFSS
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31        
Go to today