I have a toy application that uses CMake to generate a .dmg that contains a simple c++ binary that prints "codesignTest". The binary gets signed by CMake, and I manually sign the .dmg. I am using the "Unix Makefiles" generator, and am signing with a Developer ID Application certificate with a Private Key.
Despite this, I still get an "App is damaged and can't be opened" error when running the binary on a secondary test MacOS machine.
I've created a github repository with instructions on how to reproduce this problem, and I've copy/pasted the binary's signature below. Is there anything invalid with my signature? Thank you.
cisl-ridgeland:~ pearse$ codesign -dv --verbose=4 /Applications/codesignTest.app/Contents/MacOS/codesignTest
Executable=/Applications/codesignTest.app/Contents/MacOS/codesignTest
Identifier=codesignTest
Format=bundle with Mach-O thin (arm64)
CodeDirectory v=20400 size=496 flags=0x0(none) hashes=10+2 location=embedded
VersionPlatform=1
VersionMin=786432
VersionSDK=787200
Hash type=sha256 size=32
CandidateCDHash sha256=df158907d48f1eb3f5ef7b145d43d114bff0c6c3
CandidateCDHashFull sha256=df158907d48f1eb3f5ef7b145d43d114bff0c6c3e2564197c4a69594500f7f66
Hash choices=sha256
CMSDigest=df158907d48f1eb3f5ef7b145d43d114bff0c6c3e2564197c4a69594500f7f66
CMSDigestType=2
Executable Segment base=0
Executable Segment limit=16384
Executable Segment flags=0x1
Page size=4096
Launch Constraints:
None
CDHash=df158907d48f1eb3f5ef7b145d43d114bff0c6c3
Signature size=9045
Authority=Developer ID Application: University Corporation for Atmospheric Research (DQ4ZFL4KLF)
Authority=Developer ID Certification Authority
Authority=Apple Root CA
Timestamp=Nov 1, 2023 at 9:43:36 AM
Info.plist=not bound
TeamIdentifier=DQ4ZFL4KLF
Sealed Resources=none
Internal requirements count=1 size=172