可可沙盒应用程序：产生FFMPEG

Question

I have an application which uses FFMPEG and FFPROBE to perform some tasks on a video the user can open with my application.

For non-sandboxed applications everything works fine, but when my app is running in a sandbox FFPROBE doesn't seem to get started. The Console says the following:

08.06.15 12:27:55,803 secinitd[281]: ffprobe[4049]: registration request failed: (0x11, 0x0) Container object initialization failed. failed to get bundleid for app "/Users/Alex/.../ffprobe"

The path to ffprobe mentioned in this messages points to the MacOS directory within the app bundle (a Build Phase copies these two binaries into the executable directory).

I've searched a lot and found some hints regarding entitlements. Of course my sandboxed app has its entitlements and when building my application it gets signed (with --deep signing flag). It even passes the technical App Store check for entitlements.

Now I'm stuck and wonder why my application is not able to launch FFPROBE (and FFMPEG).

Does anybody have a clue?

Answer 1

It seems like I've found a solution. I don't know whether all of these steps are necessary, but here is what I've tried and what seems (!) to work:

1. I added an entitlements file which contains true for the keys com.apple.security.inherit and com.apple.security.app-sandbox
2. I added a plist file for each used binary and filled the keys CFBundleName and CFBundleIdentifier with suitable values (I don't know whether this step is necessary)
3. I added a Run Script build phase which executes codesign -f -s "your certificate" --entitlements ./ffmpeg.entitlements ./Build/Intermediates/ArchiveIntermediates/App\\ Store/InstallationBuildProductsLocation/Applications/<my app>/Contents/MacOS/ffmpeg for each binary used.

These steps result in suitable entitlements when trying to submit the app to the Mac App Store and it results in a correct usage of the embedded binaries (at least on my development Mac and the Mac of some colleagues).