-
Notifications
You must be signed in to change notification settings - Fork 222
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disable codeQL on Mac build and add com.apple.security.files.user-selected.read-write entitlements #2563
Conversation
… run on mac build
I've tested this build: https://github.com/emlynmac/jamulus/suites/5835725008/artifacts/196029418 And it seems to be good. Would be great if @ann0see and @hoffie @softins @pljones could have a look. |
I'd rather this were two pull requests as the two things it does are unrelated. |
I've loaded the build onto my Mac running Mojave.
|
Sadly, they’re related as it’s not possible to build with signing without the codeql change |
This is likely due to how that's done. Maybe the server UI can change to have a means to choose a location. I've updated this PR in the meantime to only address the client file access issue. |
I think the suggestion is to do a separate PR with just the codeql change, first get that merged, and then update this PR to contain only the entitlements change as a fix for #2560 I don't have a strong view either way. |
The person who originally reported the issue on Facebook has tried the build listed above, and confirmed that it fixes the problem with saving and loading mixer channel files. |
Yeah, I understand there's a desire here for that to be separated out into another PR, but better to have directly related changes merged together IMHO. |
But they just happened to be encountered together. The codeql change would be needed even if we didn't address the reported bug by changing the entitlements. |
Yes, this is true; and we need the change in this PR to make this fix actually work. So rather than the overhead of making a whole other one-line PR, builds etc. I see no reason why not to include the change here where it is needed to make the fix work. |
@pljones You can always make a PR for the change to disable codeQL if you want to separate this out, at which time the changes from this PR will become none for that aspect. |
@emlynmac I'm not sure why this was closed (there was no comment), but I raised and merged PR #2564 for the CodeQL part, and have updated your branch to contain just the entitlement change. I kept a backup branch called You will need to do a
OK, it won't let me re-open because I force-pushed to your branch. I might need to create a fresh PR. |
Short description of changes
Disables codeQL on macOS builds as it breaks signed builds.
Adds entitlements to the app under macOS to access the filesystem as needed.
Context: Fixes an issue?
#2560
Status of this Pull Request
Ready for testing, use build here:
What is missing until this pull request can be merged?
Checklist