Implement update strategy for TBA

When a new Tor Browser for Desktop is released there are two main visual changes in the Browser:

1. the about:tor page changes saying that the browser is out dated

2. Tor Button icon changes. It adds an exclamation mark informing the user that there is a new browser version.

We need to discuss how we notify the users about TBA updates.

added TorBrowserTeam201904 component::applications/tor browser owner::tbb-team priority::medium severity::normal sponsor::8 status::new tbb-8.5 tbb-mobile tbb-parity type::defect labels

I see two solutions:

1. Follow what Tor Browser Desktop does: When the user opens a tab, we show a warning message saying that there is a new version and the browser is out to date.

Pros: It is not intrusive and the user decides if they want to upgrade it or not.

Cons: The user never upgrades the app because it is not just one click, they need to go to settings to upgrade it.

2. Open a dialog covering the whole screen saying that the app is out to date and allowing or not the user to close the modal.

Pros: Force the user to update the browser, if there is a security issue, the user will not use an out dated browser.

Cons: It affects the app usability, because it blocks the user interaction with the main application.

Trac:
Cc: N/A to sysrqb, gk

So, to be clear wrt the basics the general update strategy on Android is just to get a new .apk over the old one, right? Or is there a cleverer one with just applying diffs?

Replying to gk:

So, to be clear wrt the basics the general update strategy on Android is just to get a new .apk over the old one, right? Or is there a cleverer one with just applying diffs?

It sounds like the Google Play Store update mechanism uses deltas. See: https://android-developers.googleblog.com/2016/07/improvements-for-smaller-app-downloads.html

For F-Droid, they have an open issue for that feature: https://gitlab.com/fdroid/fdroidclient/issues/450

Yes, however differently of Desktop, the app doesn't control when the user should update and it doesn't handle the update, Android does it itself.

Replying to mcs:

Replying to gk:

So, to be clear wrt the basics the general update strategy on Android is just to get a new .apk over the old one, right? Or is there a cleverer one with just applying diffs?

It sounds like the Google Play Store update mechanism uses deltas. See: https://android-developers.googleblog.com/2016/07/improvements-for-smaller-app-downloads.html

For F-Droid, they have an open issue for that feature: https://gitlab.com/fdroid/fdroidclient/issues/450

Replying to igt0:

Yes, however differently of Desktop, the app doesn't control when the user should update and it doesn't handle the update, Android does it itself.

Replying to mcs:

Replying to gk:

So, to be clear wrt the basics the general update strategy on Android is just to get a new .apk over the old one, right? Or is there a cleverer one with just applying diffs?

It sounds like the Google Play Store update mechanism uses deltas. See: https://android-developers.googleblog.com/2016/07/improvements-for-smaller-app-downloads.html

For F-Droid, they have an open issue for that feature: https://gitlab.com/fdroid/fdroidclient/issues/450

Right. (See also #25587 (moved)). I'm concerned about two situations regarding distributing updates.

1. We need alternatives for the app marketplaces. This may mean distributing the app as a download from our website along with the desktop downloads.
2. I don't think using the Firefox updater is a crazy idea (if the app was downloaded directly from torproject.org and not installed from a marketplace), but as far as I know this is not well supported or tested by Mozilla - so we may experience bugs if we use it.

Mozilla (will be) shipping OTA updates for system add-ons on fennec (from what I've seen), but I don't know if that is different from full fennec updates.

Replying to sysrqb:

Replying to igt0:

Yes, however differently of Desktop, the app doesn't control when the user should update and it doesn't handle the update, Android does it itself.

Replying to mcs:

Replying to gk:

So, to be clear wrt the basics the general update strategy on Android is just to get a new .apk over the old one, right? Or is there a cleverer one with just applying diffs?

It sounds like the Google Play Store update mechanism uses deltas. See: https://android-developers.googleblog.com/2016/07/improvements-for-smaller-app-downloads.html

For F-Droid, they have an open issue for that feature: https://gitlab.com/fdroid/fdroidclient/issues/450

Right. (See also #25587 (moved)). I'm concerned about two situations regarding distributing updates.

1. We need alternatives for the app marketplaces. This may mean distributing the app as a download from our website along with the desktop downloads.

Although not directly related to updating, one problem we will have with providing downloads directly from our website is how users can verify the apk is authentic. This is something the marketplaces (to some extent) handle. I don't have a good solution right now. I opened #26318 (moved) for that (I don't think we already have a ticket for it).

Replying to sysrqb:

Replying to igt0:

Yes, however differently of Desktop, the app doesn't control when the user should update and it doesn't handle the update, Android does it itself.

Replying to mcs:

Replying to gk:

So, to be clear wrt the basics the general update strategy on Android is just to get a new .apk over the old one, right? Or is there a cleverer one with just applying diffs?

It sounds like the Google Play Store update mechanism uses deltas. See: https://android-developers.googleblog.com/2016/07/improvements-for-smaller-app-downloads.html

For F-Droid, they have an open issue for that feature: https://gitlab.com/fdroid/fdroidclient/issues/450

Right. (See also #25587 (moved)). I'm concerned about two situations regarding distributing updates.

1. We need alternatives for the app marketplaces. This may mean distributing the app as a download from our website along with the desktop downloads.
2. I don't think using the Firefox updater is a crazy idea (if the app was downloaded directly from torproject.org and not installed from a marketplace), but as far as I know this is not well supported or tested by Mozilla - so we may experience bugs if we use it.

+1 to both. Although, we should think carefully if we want to do 2).

Mozilla (will be) shipping OTA updates for system add-ons on fennec (from what I've seen), but I don't know if that is different from full fennec updates.

Updating add-ons (and with it systems addons) relies on a different mechanism than you get with application updates, at least on desktop. Might be worth verifying the mobile part here, though.

I have been testing the Fennec UpdateService to download and update TBA, my finds:

1. It downloads a new apk(updated version) and saves it to an external storage. So the user must have the WRITE_EXTERNAL_STORAGE permission enabled.

2. We should not allow the user to use the UpdateService when the app was installed using any app store(google play, f-droid). It already has some logic to handle google play we need to add the same one for f-droid.

3. After downloading the apk, there are two methods to install it. Fennec can install it for you, or it sends a notification asking the user to click on it to install the apk. For us, I think that the second one has a better user experience.

Trac:
Cc: sysrqb, gk to sysrqb, gk, dmr

Trac:
Parent: N/A to #26531 (moved)

Moving to second-alpha TBA keyword.

Trac:
Keywords: N/A deleted, TBA-a2 added
Parent: #26531 (moved) to N/A

Putting on October radar.

Trac:
Keywords: N/A deleted, TorBrowserTeam201810 added

Moving our tickets to November.

Trac:
Keywords: TorBrowserTeam201810 deleted, TorBrowserTeam201811 added

Trac:
Sponsor: N/A to Sponsor8

Moving our tickets to December.

Trac:
Keywords: TorBrowserTeam201811 deleted, TorBrowserTeam201812 added

Setting tag for third Tor Browser for Android alpha milestone.

Trac:
Keywords: N/A deleted, TBA-a3 added

We are beyond TBA-a2, TBA-a3 is the new black.

Trac:
Keywords: TBA-a2 deleted, N/A added

Moving tickets to Jan 2019.

Trac:
Keywords: TorBrowserTeam201812 deleted, TorBrowserTeam201901 added

Some good material (with further links) in case we want to set up and own F-Droid repo: https://github.com/TeamNewPipe/NewPipe/issues/1981.

Moving tickets to February.

Trac:
Keywords: TorBrowserTeam201901 deleted, TorBrowserTeam201902 added

Move tickets out of TBA-a3 into TBA-stable.

Trac:
Keywords: TBA-a3 deleted, TBA-8.5 added

Moving remaining tickets to March.

Trac:
Keywords: TorBrowserTeam201902 deleted, TorBrowserTeam201903 added

Tickets on our radar for 8.5

Trac:
Keywords: N/A deleted, tbb-8.5 added

tbb-parity items.

Trac:
Keywords: N/A deleted, tbb-parity added

Trac:
Keywords: TBA-8.5 deleted, N/A added

Moving tickets to April.

Trac:
Keywords: TorBrowserTeam201903 deleted, TorBrowserTeam201904 added

mentioned in issue #26318 (moved)

mentioned in issue #26401 (moved)

mentioned in issue #26531 (moved)

mentioned in issue #26574 (moved)

moved to tpo/applications/tor-browser#26242

mentioned in issue tpo/applications/tor-browser#26318 (closed)