The exact behavior of Catalina verifying app

catalinagatekeepernotarizationsip

By 'verifying' I mean either

an explicit popup of 'Verifying'
or app launch stuck with XProtectService comsuming CPU in background

What I know

An app on local drive with com.apple.quarantine xattr will be verified on the first start, or after something changed in the app.

However I found some app on without the xattr will still be verified, especially app copied from (or directly run on) an external/network drive.

What is the exact behavior?
Anyway to avoid this (without fully disable SIP)?

Best Answer

I’m not sure that anyone knows the full extent of how Apple’s protections work, but if I wanted to understand them better, I would start by reading Howard Oakley’s site at http://eclecticlight.co as he has done the most thorough job writing about it.

I know SE likes answers that aren’t just links, but there's way too much to try to summarize here.

This would be a good place to start reading: https://eclecticlight.co/tag/gatekeeper/

Related Solutions

MacOS Catalina Verifying app at bootstrap

I also met the similar problem. I contacted Apple technical support and got the reply that I should try Reset NVRAM or PRAM or RESET SMC. But It does not work at all.

Finally I erased the disk, reinstalled macOS Catalina and then recovered important data from Time Machine and other backups. https://support.apple.com/en-us/HT204904

MacOS Catalina: “App is damaged and can’t be opened. You should move it to the trash.”

Here's the solution. Open Terminal and run:

sudo xattr -rd com.apple.quarantine /Applications/Coherence\ Pro.app

If the path to the program is different, then obviously change it so that it's pointing to your app. For me, I've had several apps not working after the update to macOS Catalina. This takes care of that problem though.

Best Answer

Related Solutions

MacOS Catalina Verifying app at bootstrap

MacOS Catalina: “App is damaged and can’t be opened. You should move it to the trash.”

Related Question