Improperly signed update
I'm trying to solve a "The update is improperly signed" error. I've fruitlessly googled to the extent of my abilities and combed https:/
OS X 10.6.4 (27" iMac)
Xcode 3.2.3 (1688) (64 bit)
Create a new XCode Project => Cocoa Application (all options UNchecked)
Download Sparkle 1.5 b6 => http://
Drag Sparkle.framework (withOUT GC) into the Linked Frameworks (copying items into the destination group's folder)
New Copy Files Build Phase (destination: Frameworks)
Dragged Sparkle.framework from the Linked Frameworks folder to the Copy Files build phase
Set up a Sparkle updater object per the docs (http://
Generated the dsa key pair via: ruby ~/Downloads/
Added your public key (dsa_pub.pem) to the Resources folder
To SparkleTest-
- added SUPublicDSAKeyFile, setting its value to dsa_pub.pem (careful not to include a trailing space)
- added SUFeedURL, setting it to http://
Building 1st version:
Bundle versions string, short => 0.0.1
Bundle version => 0.0.1
Build => Clean All Targets
Active Configuration: Release
Active Target: SparkleTest
Active Executable: SparkleTest
Active Architecture: x86_64
Build => Build
You can get the results at: http://
Building 2nd version:
Bundle versions string, short => 0.0.2
Bundle version => 0.0.2
(all the rest is identical to 1st build)
You can get the results at: http://
Copied the sample Appcast.xml via:
cp ~/Downloads/
Signed the 2nd version: ruby ~/Downloads/
Edited appcast.xml appropriately (I think). I got the "length" value from SparkleTest.app (Show Info in Finder).
Appcast URL: http://
Download 1st version: http://
Package contents include Resources/
Check for Updates...
Install Update
=> Update Error! The update is improperly signed.
Is there something obvious that I'm doing incorrectly?
GENERAL QUESTIONS
1. How do I build Sparkle from source? I grabbed the source from GitHub, opened it in Xcode.
Project => Edit Project Settings => Build; Build Active Architecture Only => YES (check)
Active Configuration => Release
Active Target => Sparkle
Active Architecture => x86_64
Build => Clean All Targets; Build => Build
Then I should use build/Release/
2. I can NOT use Sparkle.framework in the "With Garbage Collection" with 10.6, correct?
3. Does the "length" attribute of the "enclosure" item (in appcast.xml) make a difference to signature validation? If so,
should it be the length of Foo.app or Foo.zip (which consists solely of Foo.app). Or if I'm delivering a dmg, should if be the
length of Foo.app (I think) or Foo.dmg?
4. Is there a way to debug "The update is improperly signed" errors? The console only lists the error message and nothing
more helpful.
5. Signing the update multiple times does NOT produce the same signature; this is expected, yes? But any signature generated by
"ruby ~/Downloads/
As you likely guessed, I'm just getting into Cocoa/Sparkle and have more questions than answers.I appreciate any help anyone has to offer. Thanks for your patience (and for Sparkle).
/g
--
George Anderson
BenevolentCode LLC
Question information
- Language:
- English Edit question
- Status:
- Expired
- For:
- Sparkle Edit question
- Assignee:
- No assignee Edit question
- Last query:
- Last reply: