Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Downloader differs from previously opened versions #1414

Closed
zorgiepoo opened this issue Mar 16, 2024 · 3 comments
Closed

Downloader differs from previously opened versions #1414

zorgiepoo opened this issue Mar 16, 2024 · 3 comments
Assignees
@aonez
Labels
bug fixed Sparkle
Milestone
macOS-1.3.8

Comments

@zorgiepoo
Copy link

zorgiepoo commented Mar 16, 2024
edited

Configuration

  • Keka version: 1.3.7 (5302)
  • macOS version: 14.4 (23E214)

Describe the bug

Due to a sandboxing issue new to macOS Sonoma and due to this app and other apps using Sparkle's Downloader XPC Service, users may see a one-time system warning dialog when checking for updates about "Downloader" differs from previously opened versions.

It looks like Keka wants to use the Sparkle's Downloader XPC Service from following Sparkle's sandboxing guide because the app is not entitled with an outgoing network connection (com.apple.security.network.client) entitlement. So there are a couple ways to fix this issue:

  • Keka can update to Sparkle 2.6.0 or later (which disables sandboxing for the Downloader XPC Service by default to avoid conflicts) (easiest way for most apps, but Keka is very unusual in trying to support an older deployment target that both Sparkle and Xcode for building apps no longer supports)
  • Keka can re-compile their current version of Sparkle with a custom XPC_SERVICE_BUNDLE_ID_PREFIX
  • Keka can enable the outgoing network connection (com.apple.security.network.client) entitlement on its app instead of enabling the Downloader XPC Service as there are other drawbacks with using the downloader service (e.g. Sparkle can't use WebKit 2).

See sparkle-project/Sparkle#2514 and the updated sandboxing guide for more information on the issue.

[edit]: Updated to include 3rd option of not using downloader service.
@zorgiepoo zorgiepoo added the bug label Mar 16, 2024
@aonez
Copy link
Owner

aonez commented Mar 20, 2024

Thanks @zorgiepoo for the time, already looked in your ping but had no time to look in to it.

Since Keka does not have network access by design and having 10.10 support is still possible, probably the best option will be using the provided XPC_SERVICE_BUNDLE_ID_PREFIX tweak.

The future Keka version already in works will be macOS 13.0+ so that one will have the latest Sparkle version 🥳

@aonez
Copy link
Owner

aonez commented Mar 20, 2024

Already fixed and tested it for the next release. Thank you very much @zorgiepoo 🙌

@aonez aonez added the fixed label Mar 20, 2024
@aonez aonez added this to the macOS-1.3.8 milestone Mar 20, 2024
@aonez aonez added the Sparkle label Mar 20, 2024
@aonez
Copy link
Owner

aonez commented Apr 9, 2024

Thanks again @zorgiepoo, v1.3.8 and v1.4.0-dev already live with this fixed.

@aonez aonez closed this as completed Apr 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@aonez aonez

Labels
bug fixed Sparkle
Projects
None yet
Milestone
macOS-1.3.8
Development

No branches or pull requests
2 participants
@aonez @zorgiepoo