fix: abort ShipIt installation attempt at the final mile if the app is running #36130

MarshallOfSound · 2022-10-25T20:17:50Z

As in title, basically there is a race condition in Squirrel.Mac. The current flow looks like this

1. Download update
2. Quit app and launch ShipIt
3. ShipIt waits for app to terminate
4. ShipIt prepares update, unzips, validates, etc.
5. ShipIt installs update
6. ShipIt launches new app

If somehow the app manages to launch (the user clicks it, programatic relaunch, etc.) during step 4 then step 5 succeeds, step 6 bails as the app is running and everything appears to be fine. But it is not.... The running app no longer exists on disk and will therefore fail all uncached TCC / Security.h checks including microphone/camera permission checks and keychain access checks. (Amongst other awful things).

This fixes this race condition by adding a step 4.5 that checks if any app is running from the bundle path we're about to install an update to. We don't do step (3) again because waiting for the app to quit is unrealistic if the user manually launched it. The best thing to do is to get back into a known good state and bail the update flow with an error but without triggering an automatic launchd retry (hence the "Happy error" exit logic).

Notes: Fixed race condition during update on macOS that could result in TCC and Keychain errors

nornagon

spec/yarn.lock

patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch

jkleinsc

Newly added test fails

…s running

…al_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org>

test fixed

release-clerk · 2022-11-14T18:12:20Z

Release Notes Persisted

Fixed race condition during update on macOS that could result in TCC and Keychain errors

trop · 2022-11-14T18:12:44Z

I was unable to backport this PR to "20-x-y" cleanly;
you will need to perform this backport manually.

trop · 2022-11-14T18:12:47Z

I was unable to backport this PR to "22-x-y" cleanly;
you will need to perform this backport manually.

trop · 2022-11-14T18:12:50Z

I was unable to backport this PR to "21-x-y" cleanly;
you will need to perform this backport manually.

…s running (#36130) * fix: abort ShipIt installation attempt at the final mile if the app is running * chore: remove only * Update patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org> * chore: update patches * spec: make the ShipIt process lister helper more resilient Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com>

trop · 2022-11-15T20:17:19Z

@MarshallOfSound has manually backported this PR to "22-x-y", please check out #36362

…s running (#36362) fix: abort ShipIt installation attempt at the final mile if the app is running (#36130) * fix: abort ShipIt installation attempt at the final mile if the app is running * chore: remove only * Update patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org> * chore: update patches * spec: make the ShipIt process lister helper more resilient Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com> Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com>

…s running (electron#36130) * fix: abort ShipIt installation attempt at the final mile if the app is running * chore: remove only * Update patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org> * chore: update patches * spec: make the ShipIt process lister helper more resilient Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com>

…s running (#36130) * fix: abort ShipIt installation attempt at the final mile if the app is running * chore: remove only * Update patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org> * chore: update patches * spec: make the ShipIt process lister helper more resilient Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com>

trop · 2023-04-02T19:34:46Z

@VerteDinde has manually backported this PR to "21-x-y", please check out #37794

…s running (#37794) * fix: abort ShipIt installation attempt at the final mile if the app is running (#36130) * fix: abort ShipIt installation attempt at the final mile if the app is running * chore: remove only * Update patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org> * chore: update patches * spec: make the ShipIt process lister helper more resilient Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com> * test: update spec & spec-main/yarn.lock --------- Co-authored-by: Jeremy Rose <jeremya@chromium.org> Co-authored-by: PatchUp <73610968+patchup[bot]@users.noreply.github.com>

MarshallOfSound requested a review from a team as a code owner October 25, 2022 20:17

electron-cation bot added the new-pr 🌱 PR opened in the last 24 hours label Oct 25, 2022

MarshallOfSound added semver/patch backwards-compatible bug fixes target/20-x-y target/21-x-y PR should also be added to the "21-x-y" branch. target/22-x-y PR should also be added to the "22-x-y" branch. labels Oct 25, 2022

nornagon approved these changes Oct 25, 2022

View reviewed changes

spec/yarn.lock Show resolved Hide resolved

patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Show resolved Hide resolved

patches/squirrel.mac/fix_abort_installation_attempt_at_the_final_mile_if_the_app_is.patch Outdated Show resolved Hide resolved

VerteDinde approved these changes Oct 26, 2022

View reviewed changes

zcbenz approved these changes Oct 26, 2022

View reviewed changes

electron-cation bot removed the new-pr 🌱 PR opened in the last 24 hours label Oct 26, 2022

jkleinsc previously requested changes Oct 27, 2022

View reviewed changes

VerteDinde mentioned this pull request Oct 31, 2022

[Bug]: loadUrl sometimes returns wrong html content #36138

Closed

3 tasks

MarshallOfSound and others added 4 commits November 13, 2022 23:46

fix: abort ShipIt installation attempt at the final mile if the app i…

8bc2e84

…s running

chore: remove only

d756865

Update patches/squirrel.mac/fix_abort_installation_attempt_at_the_fin…

36d963f

…al_mile_if_the_app_is.patch Co-authored-by: Jeremy Rose <jeremya@chromium.org>

chore: update patches

9278cda

MarshallOfSound force-pushed the fix-squirrel-mac-race branch from 7cacbd0 to 9278cda Compare November 14, 2022 07:50

spec: make the ShipIt process lister helper more resilient

82bedf7

MarshallOfSound added semver/patch backwards-compatible bug fixes and removed semver/patch backwards-compatible bug fixes labels Nov 14, 2022

MarshallOfSound merged commit d8bb172 into main Nov 14, 2022

MarshallOfSound deleted the fix-squirrel-mac-race branch November 14, 2022 18:12

trop bot removed the target/20-x-y label Nov 14, 2022

trop bot added the needs-manual-bp/20-x-y label Nov 14, 2022

trop bot removed the target/22-x-y PR should also be added to the "22-x-y" branch. label Nov 14, 2022

trop bot added needs-manual-bp/22-x-y needs-manual-bp/21-x-y and removed target/21-x-y PR should also be added to the "21-x-y" branch. labels Nov 14, 2022

MarshallOfSound mentioned this pull request Nov 15, 2022

fix: abort ShipIt installation attempt at the final mile if the app is running #36362

Merged

trop bot added in-flight/22-x-y merged/22-x-y PR was merged to the "22-x-y" branch. and removed needs-manual-bp/22-x-y in-flight/22-x-y labels Nov 15, 2022

miniak removed the needs-manual-bp/20-x-y label Feb 15, 2023

commit-lint bot mentioned this pull request Feb 24, 2023

[pull] main from electron:main Blaquez-home/electron#3

Open

VerteDinde mentioned this pull request Apr 2, 2023

fix: abort ShipIt installation attempt at the final mile if the app is running #37794

Merged

trop bot added in-flight/21-x-y and removed needs-manual-bp/21-x-y in-flight/21-x-y labels Apr 2, 2023

trop bot added the merged/21-x-y PR was merged to the "21-x-y" branch. label Apr 3, 2023

beyondkmp mentioned this pull request Apr 10, 2023

Application becomes translocated after auto-update Squirrel/Squirrel.Mac#252

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: abort ShipIt installation attempt at the final mile if the app is running #36130

fix: abort ShipIt installation attempt at the final mile if the app is running #36130

MarshallOfSound commented Oct 25, 2022

nornagon left a comment

jkleinsc left a comment

release-clerk bot commented Nov 14, 2022

trop bot commented Nov 14, 2022

trop bot commented Nov 14, 2022

trop bot commented Nov 14, 2022

trop bot commented Nov 15, 2022

trop bot commented Apr 2, 2023

fix: abort ShipIt installation attempt at the final mile if the app is running #36130

fix: abort ShipIt installation attempt at the final mile if the app is running #36130

Conversation

MarshallOfSound commented Oct 25, 2022

nornagon left a comment

Choose a reason for hiding this comment

jkleinsc left a comment

Choose a reason for hiding this comment

release-clerk bot commented Nov 14, 2022

trop bot commented Nov 14, 2022

trop bot commented Nov 14, 2022

trop bot commented Nov 14, 2022

trop bot commented Nov 15, 2022

trop bot commented Apr 2, 2023