(OSX) Do you want the application "syncthing" to accept incoming network connections?

Uniquenospacesshort · August 16, 2015, 3:25pm

Per the subject, I receive a popup occasionally on multiple computers and it’s a pain since my I use it to sync files to my wifes computer, so she has to keep approving it also.

“Do you want the application “syncthing” to accept incoming network connections?”

OSX, 10.10.4. Syncthing is installed in a non-root user folder and launched by a launchagent plist in my ~/Library/LaunchAgents.

OSX Firewall is set to allow secure apps.

Saw this: http://superuser.com/questions/912656/how-do-i-stop-my-mac-from-asking-to-accept-incoming-network-connections and observe:

$ codesign --verify -vv ~/sthing/syncthing
/Users/<me>/sthing/syncthing: code object is not signed at all
In architecture: x86_64

In absence of signed binaries is there any other way to prevent the warning?

Uniquenospacesshort · August 16, 2015, 3:39pm

Just to note, on pressing Accept I notice that the app then becomes signed.

E.g.

codesign --verify -vv ./syncthing
./syncthing: valid on disk
./syncthing: satisfies its Designated Requirement

calmh · August 16, 2015, 4:33pm

We’re not one of those currently, as the binaries are not signed. We should look into having them signed; it’s not terribly difficult, it just needs to be a part of the release process.

Zillode · August 16, 2015, 5:19pm

If this means we can only compile the OSX release on OSX itself, there is nothing stopping us from integrating inotify

calmh · August 16, 2015, 6:21pm

Native builders were always on the horizon, just something annoying I’d rather avoid as long as possible. But yeah, it’s not a problem.

Uniquenospacesshort · January 16, 2016, 5:20pm

Pretty please consider doing this in the medium term. Several machines all asked multiple times today, I’ve trained my better half just to press accept, but…

calmh · January 16, 2016, 5:56pm

Indeed. We do have a native Mac OS X builder now, so signing the binary is “just” a question of setting up the certificates and stuff. I’ll try to look into it in the not so distant future.

calmh · January 16, 2016, 6:59pm

Done. Next release will be codesigned, plus dev builds from now on.

adriel · March 14, 2017, 6:52am

I’m still getting these network popups on a daily basses on my 2 Mac computers. I checked syncthing and it reports as being signed, but syncthing-inotify doesn’t. Could that be the cause for me?

computer:~ user$ codesign --verify -vv /usr/local/bin/syncthing
/usr/local/bin/syncthing: valid on disk
/usr/local/bin/syncthing: satisfies its Designated Requirement

computer:~ user$ codesign --verify -vv /usr/local/bin/syncthing-inotify 
/usr/local/bin/syncthing-inotify: code object is not signed at all
In architecture: x86_64

Both are up to date.

computer:~ user$ syncthing-inotify -version
syncthing-inotify 0.8.5 (go1.7.5 darwin-amd64)

computer:~ user$ syncthing -version
syncthing v0.14.24 "Dysprosium Dragonfly" (go1.8 darwin-amd64) brew@Sierra.local 2017-02-23 06:47:07 UTC

system · May 12, 2017, 1:08pm