Sparkle icon indicating copy to clipboard operation
Sparkle copied to clipboard

Published 20 hours ago verified publisher icon sparkle-project

Insecure update error warning when running tests, as tests are never code signed

Open clausjoergensen opened this issue 9 years ago • 7 comments

I'm having a problem with linking Sparkle and running UI/Unit tests from a unsigned unit-test target. Sparkle shows a popup about "Insecure Update" when executing the tests from command line, which blocks the test executing completely.

Is there any flags or settings that would prevent Sparkle from attempting to update when running a test (or maybe even DEBUG) target? I've tried disable auto updating in the Info.plist without any luck

clausjoergensen avatar Nov 09 '15 12:11 clausjoergensen

In the Info.plist setting SUScheduledCheckInterval to 0 should stop automatic updates.

Alternatively you can set SUEnableAutomaticChecks to NO in app's own NSUserDefaults.

kornelski avatar Nov 09 '15 18:11 kornelski

#670

kornelski avatar Nov 10 '15 11:11 kornelski

Same issue here, during tests the modal still shows up and hangs my tests. I tried changing the plist values and returning false to SUUpdater's func updaterMayCheckForUpdates(updater: SUUpdater!) -> Bool, but none of it seems to work.

What is the recommended setup for apps that have unit tests?

czechboy0 avatar Feb 03 '16 22:02 czechboy0

It looks like Apple's solution for this, via Xcode's automatic code signing, is to sign everything, even for tests.

kornelski avatar Dec 28 '16 22:12 kornelski

It looks like Apple's solution for this, via Xcode's automatic code signing, is to sign everything, even for tests.

I really don't buy that; in fact I think there's a recent trend to not set up signing info at all. I think if DSA signing was used, Sparkle wouldn't prompt up a dialog here.

zorgiepoo avatar Dec 29 '16 01:12 zorgiepoo

Is there any update on this issue? I just took over maintenance of an internal macOS app and I'm trying to add tests but getting this same error.

I'm running the tests with this syntax:

xcodebuild clean test \
  -workspace 'Autoproxxy.xcworkspace' \
  -scheme 'AutoProxxy' \
  CODE_SIGN_IDENTITY="" CODE_SIGNING_REQUIRED=NO

I can make them pass locally by using CODE_SIGN_IDENTITY="Apple Development", but that fails on CI, obviously, because it doesn't have access to our certificates.

I tried @kornelski suggestion by passing -SUEnableAutomaticChecks=NO and SUScheduledCheckInterval=0 but neither worked.

Thanks for your help 🙏

mokagio avatar Jul 07 '20 11:07 mokagio

Inspired by the commit @czechboy0 linked, I worked around the issue like this:

// There are instances in which we might not want to run Sparkle, for example when running
// the tests via xcodebuild in CI due to a blocking alert related to code signing.
// In such cases, one can pass the `SKIP_SPARKLE` preprocessor definition and not have Sparkle
// launched.
//
// Using a "skip" flag plus an "if not defined" means that there are no changes to the setup for
// debug and release builds; only those who wish to no have Sparkle need to do extra work.
//
// See https://github.com/sparkle-project/Sparkle/issues/680
#ifndef SKIP_SPARKLE
    self.updater = [SUUpdater sharedUpdater];
#endif

And updated my xcodebuild invocation to:

xcodebuild clean test \
  -workspace 'Autoproxxy.xcworkspace' \
  -scheme 'AutoProxxy' \
  CODE_SIGN_IDENTITY="" CODE_SIGNING_REQUIRED=NO \
  GCC_PREPROCESSOR_DEFINITIONS="SKIP_SPARKLE=1"

This works alright for me 👌

mokagio avatar Jul 10 '20 06:07 mokagio