Closed
Description
This is needed to ensure that Apple’s notarization service can check that the go
binary is using (at minimum) the 10.9 SDK.
$ codesign -dvv /usr/local/go/bin/go
Executable=/usr/local/go/bin/go
Identifier=go
Format=Mach-O thin (x86_64)
CodeDirectory v=20200 size=116482 flags=0x0(none) hashes=3636+2 location=embedded
Library validation warning=OS X SDK version before 10.9 does not support Library Validation
Signature size=9042
Authority=Developer ID Application: Google, Inc. (EQHXZ8M8AV)
Authority=Developer ID Certification Authority
Authority=Apple Root CA
Timestamp=Oct 31, 2019 at 7:23:46 PM
Info.plist=not bound
TeamIdentifier=EQHXZ8M8AV
Sealed Resources=none
Internal requirements count=1 size=164
Notice Library validation warning=OS X SDK version before 10.9 does not support Library Validation
The SDK is not properly specified in the go
binary:
$ otool -l /usr/local/go/bin/go | grep -B1 -A3 MIN_MACOS
Load command 5
cmd LC_VERSION_MIN_MACOSX
cmdsize 16
version 10.10
sdk n/a
All other binaries built with the toolchain have the correct values:
$ otool -l /usr/local/go/pkg/tool/darwin_amd64/vet | grep -B1 -A3 MIN_MACOS
Load command 5
cmd LC_VERSION_MIN_MACOSX
cmdsize 16
version 10.9
sdk 10.9
The fix for this will likely need to be backported. Hopefully it’s simple. 🤞
Related issues: