Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

updates on unsigned AppImage don't look like they finish #173

Open
JulianGro opened this issue May 16, 2021 · 4 comments
Open

updates on unsigned AppImage don't look like they finish #173

JulianGro opened this issue May 16, 2021 · 4 comments

Comments

@JulianGro
Copy link

1Updating_Vircadia--release-latest1_890

When updating an unsigned AppImage the loading bar turns yellow and there is a message about a "problem". At least to me this makes it seem like it failed to update. Even if the user understands that it is just a warning, it doesn't look very good to an end user.

I suggest moving the warning about unsigned AppImages into the "Details" section, removing it from the "main" window and not coloring the bar yellow.
I would also suggest changing the "100%" in the loading bar to "Update finished!" and also adding a similar message to the Details section to make it more obvious that the update actually completed. Maybe also changing the "Close" button to a "Finish" button once the update is complete.

Signing AppImage is currently a bit controversial, so an unsigned AppImage should be just as user friendly as a signed one.
@probonopd
Copy link
Member

probonopd commented May 16, 2021
edited
Loading

Signing AppImage is currently a bit controversial

What exactly do you mean by "controversial"?

But I tend to agree, the lack of a signature should not be seen as a "problem". A compromised signature should, imho.

Maybe we could leave the bar just in its native color for unsigned AppImages, and make it green for signed AppImages if the signature verification suceeds.

@JulianGro
Copy link
Author

Maybe we could leave the bar just in its native color for unsigned AppImages, and make it green for signed AppImages if the signature verification suceeds.

I like that. Honestly I always thought it looked pretty crappy using a custom color on the loading bar, since it makes it look so unlike the rest of the system.

@Morganlej
Copy link

Also, it could tell user now have both the old version, and the new added.
(which seem to be the result currently, and i think that is OK.
The new version is not made executable, good or not i cant tell, depends on use case)

@Drugoy Drugoy mentioned this issue Sep 8, 2023
Closed
@axelsimon
Copy link

But I tend to agree, the lack of a signature should not be seen as a "problem". A compromised signature should, imho.

If signing software packages is controversial for the AppImage community, then that pretty much guarantees that AppImage will remain a hobbyist tool. Signing software is a necessity and the number of software supply chain attacks is a sad reminder of it.

That being said, if an AppImage isn't signed, then the user should be made aware of that fact, as they have no guarantee that they are about to run what they think they are about to run. That yellow bar is clearly not the right approach, as it conveys that the whole process has failed, which isn't the case. But the tool needs to make the following three cases clear:

  • the signature was successfully verified (green?)
  • there was no signature to verify (gray? no filling of the loading bar?)
  • the signature was checked but failed to verify (something is wrong) (red?)

They are in order of best to worse case.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@axelsimon @probonopd @Morganlej @JulianGro