-
-
Notifications
You must be signed in to change notification settings - Fork 39
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Unable to install version 0.10.0 as update of 0.9.3 #52
Comments
New key was deployed recently and is used for signing the nightlies since. The build process is as simple a running the gradle script. I did not see anything special last time I checked it the gradle build file. Isn't there some restriction in android which prevent overwrite apk installed originally from PlayStore by a version downloaded manually as apk? |
Not that I know of. I perform this regularly while testing the upgrade path of c:geo RC versions. |
I do not use GPlay, cannot help further, sorry.
|
from https://developer.android.com/studio/publish/versioning :
We have to increase the versionCode, I would say. |
fix #52 (Unable to install version 0.10.0 as update of 0.9.3)
As to my experience installation should work with the same versioncode as well. It must not be lower. Of course when it comes to publishing on Google Play you need to use a higher version. |
Maybe the signing key is not the same as on the latest version.
|
If the CI really uses the correct keys (those I provided to @mucek4 recently) they seem to be different than those used by @biylda. But that seems strange as those keys I received are the keys from @menion originally used for publishing the app. As the package name is the same since beginning @biylda would have had the same problem as we experience now. |
The signing key on CI server seems really fresh. It was generated on Mon Jan 06 22:14:36 CET 2020. @Lineflyer @mucek4 do we own the "officials" keys?
Whereas the one downloaded from apkcombo (sha1: 91217683814ff0d2e935bae528afdd0f08e8bc5b)
|
I forwarded this question to menion (see CC to cgeo-dev) |
Hi guys, What I send you is not original release key used for signing app on the Google Play, and as I see, I do not know, how you generate and publish c:geo app, but this key is "Upload key" for AppSigning system on Google Play. The original "Release" signing key is already uploaded on Google Play and will be used for the final singing of APK files before uploading to users by Google itself. So to test if all works ok, best is to enable some Alpha/Beta channel on the WhereYouGo page and upload signed APK/AAB there. The main reason for this is that the original key used for singing WhereYouGo is the same, as I use for the Locus Map app. And I do not want to share it, believe you understand. All clear? |
Thanks @menion for this logical explanation. We do not use this mechanism with c:geo so at least I was not aware of it. Upload certificate fingerprint: SHA1: 44:44:9E:BF:FC:22:A4:88:6A:E4:FE:B3:29:D1:E3:C1:31:0B:C3:32 Automatic app signing fingerprint: SHA1: 1D:45:82:81:D6:0D:C1:32:23:AA:C0:F2:96:2E:57:3D:53:CD:7C:77 LGTM We have the beta channel enabled, so it we can test it with that. BTW: @menion Any idea why there are so many active versions out there, see #13 ? |
One downside is that direct downloads from jenkins/download.cgeo.org/fdroid users will have apk signed by a different key. It should be acceptable 👍 |
Perfect, glad to help. @kumy I was worried you will have this use-case. Anyway as long, as you will keep the same certificate for public APK's, it should be ok (except the first update of course). Sorry for this small complication. |
@menion |
Changing signing certificate will always break the upgrade path. That's the purpose of the certificate signing. |
Right, currently always. |
I documented the steps needed for releasing (including the two step signing) in a first wiki entry. Feel free to add/correct: IMHO we can close this issue. I will open an issue regarding the key migration (once this is possible) as a reminder. |
While testing the nightlies based on
master
I was unable to install the nightly version as of today on top of the already installed 0.9.3 (latest Playstore version).Not sure why it fails.
As far as I can see the version code is untouched
WhereYouGo/build.gradle
Line 43 in f08ac2d
Could either be a problem with the signing key(?) or do we alter the version code during build on the CI for the whereyougo nightlies?
The text was updated successfully, but these errors were encountered: