Furbo App For Mac
I have a long history of writing about code signing in macOS. When Big Sur was released, I thought “Finally!”
- Furbo App For Mac Computer
- Furbo App For Computer
- Furbo App For Mac Pro
- Furbo App For Mac Ios
- Furbo App For Kindle Fire
I was wrong.
This time around I was tripped up by Safari, of all things. It doesn’t open app archives like other parts of macOS.
This story began with customer reports of xScope being a “damaged app” on Big Sur. This was surprising because I had been downloading and testing the app on Big Sur for several months without issue.
Furbo App For Mac Computer
Login to Furbo app Charles from Furbo Team Updated December 12, 2020 23:15. For new account registration please go to Create. Not only does it have apps on Android and iOS, but there are also apps for over-the-top boxes and sticks, such as Amazon Fire TV, Android TV, Apple TV, Chromecast and Roku, as well as Samsung. ICamSpy ($4; Android and PC/Mac) is a little different from Presence: Instead of using two mobile devices, it requires an Android device for monitoring and a PC with a webcam and microphone for.
I was also doing all this work on Apple Silicon using the DTK. And since Google Chrome wasn’t yet working on this device, all my testing was limited to Safari. Safari’s default setting is to open “safe” files after download, so I left that alone (as most customers would).
This is where I shot myself in the foot. At no point did my downloads touch the Archive Utility. And I had no idea that Safari’s code is different than the system utility.
When I checked the signature of the app downloaded with Safari, everything looks good:
Furbo App For Computer
Things were very different when using Google Chrome:
It turns out all these folks complaining about a “damaged app” were either using Chrome or had Safari’s “safe” file handling turned off. The damaged archive wasn’t getting repaired automatically by Safari.
The root of the problem is localization in the Sparkle framework. There are two symlinks with extended attributes (the “._” is where macOS stores things like Finder information). The intent of the symlink was to say that French Canadian is the same as French, and Portuguese is the same as Brazilian Portuguese.
Since macOS automatically makes this inference, it’s safe to just delete the scripts that create the symlinks. In your Sparkle project, find any occurrences of “Run Script: Link fr_CA to fr” and “Run Script: Link pt to pt_BR” in your Target Build Phases and remove them. I had them in “Sparkle”, “SparkleCore”, and “Installer Progress”.
After you build and notarize, you’ll see that your app is “valid on disk” no matter how it’s unarchived.
I’ve also submitted this information to Apple’s Product Security group. As I said in my email, the biggest problem here is expectations:
The reason I’m writing is because Safari’s implementation for opening “safe” files is somehow bypassing a code signing check or repairing the downloaded package. The Archive Utility does not. Customer and developer expectations for unzipping archives is that they are not modified and behave the same way across all Apple products.
If you’re a Mac developer who’s using Sparkle and distributing your product via a web download, now’s a good time to check how things work in a variety of browsers. I’ve heard that we’re not the only ones affected.
Furbo App For Mac Pro
And if you encounter a download that’s damaged because of these Sparkle symlinks, this quick fix in the Terminal will set things right:
Furbo App For Mac Ios
The ditto
command strips the extended attributes that are causing the issue. This may, in fact, be what Safari is doing for “safe” files.
Furbo App For Kindle Fire
All that’s left to do now is wonder what surprises codesign
has in store for next year’s release of macOS…