hoakley August 21, 2019 Macs, Technology

It’s time to test your scripts against Catalina’s path changes

If you write scripts of any kind for macOS – shell scripts, AppleScripts, or anything similar – now is the time to join the Catalina beta programme (if you’re not already signed up) if you want those scripts to work with macOS 10.15 when it’s released in a month or so. There are plenty of changes to security and privacy which you’ll need to check out, but my concern in this article is the effect of Catalina’s read-only system volume on paths – a topic which doesn’t seem to have been discussed much, but which may well break many scripts and apps.

In Session 710 of WWDC in June, Apple’s Max Matveev described how the new Catalina volume layout is intended to work, dividing the current contents of what by default is a single volume named Macintosh HD into a writable volume named Macintosh HD - Data and a read-only system volume retaining the original name of Macintosh HD. Instead of there being four volumes in the standard boot container (Preboot, Recovery, VM and Macintosh HD), there are now five.

Connecting these two volumes are bidirectional firmlinks, which effectively mean that the writable directory /usr/local can be accessed and traversed freely on both the writable and read-only volumes, as can /Users.

Reality is always more complex than a slide in a WWDC presentation, and there are a great many more folders/directories which are affected by this new division. I’m hoping that Apple is going to produce a full map of the folder structure of the release version of Catalina for both the developer and system administrator documentation, but I’m not holding my breath.

The best way to illustrate the current state of play is with some examples taken from my own apps, where I’ve had to add new paths so that key files and bundles could be located properly when running in Catalina.

Paths to command tools

The good news is that hard-coded paths to the commonly-used directories containing command tools don’t appear to need any change. Paths such as /usr/sbin/spctl and /usr/bin/csrutil work fine, as should those in libexec directories. The further that you get from those well-worn paths, though, the more likely you are to encounter changes.

For example, although I don’t actually run the MRT app, it’s one of the bundles whose version number is checked by several of my apps like SilentKnight. Before Catalina, you’ll find it in
/System/Library/CoreServices/MRT.app
but with the new volume layout, that becomes
/Library/Apple/System/Library/CoreServices/MRT.app
and that’s a good general rule for anything located in the CoreServices directory and its contents.

Other important directories

My apps lost track of a few directories previously located in /System/Library. At least part of /System/Library/Sandbox/ has become /Library/Apple/Library/Bundles/, for example.

At the root of the old single-volume system is the hidden and protected version database at /.DocumentRevisions-V100. But it isn’t there in Catalina. A little patient searching found it at /System/Volumes/Data/.DocumentRevisions-V100 instead.

If you’ve lost something which is likely to be on the writable system volume now known by default as Macintosh HD - Data, a good path to look in is /System/Volumes/Data/ which appears to be the root of that writable volume, probably the result of one of Apple’s new firmlinks.

When addressing issues in my app Cirrus, I have had to change all its paths for directly accessing iCloud Drive. Previously these have been based on ~/Library/Mobile Documents/com~apple~CloudDocs/ but that has to be changed now to ~/Library/CloudStorage/iCloudDrive.
Moving up a level from the former directory used to open up access to other folders held in iCloud, but there’s no equivalent in ~/Library/CloudStorage in Catalina.

Unfortunately, the illusion created by the Finder is unhelpful for identifying paths to be used in Terminal, scripts or apps: important new paths like /System/Volumes/Data/ aren’t shown there even when you enable the display of hidden items. Indeed, browsing the new folder hierarchy in the Finder looks very clean and simple, but will only cause endless confusion. We do need a good roadmap.

13Comments

Add yours

1

Ivan X on August 21, 2019 at 2:01 pm

I enjoy your measured, descriptive tone, but the notion that changes of this operational magnitude are being made without clear documentation outlining compatibility implications is disheartening. I suppose it’s an indicator that Apple really only wants sandboxed apps or scripts that would adhere to sandboxed rules.

LikeLiked by 1 person
- 2
  
  hoakley on August 21, 2019 at 2:46 pm
  
  Thanks.
  Yes, I agree that the lack of documentation is shocking. But soon after Catalina is released, I for one will be publishing a roadmap of the new path layouts, if Apple doesn’t. I feel constrained from doing that any sooner though, and in any case it may well change further.
  No, I don’t think this is anything to do with sandboxing. My apps go where many fear to tread – several have relatively volatile path dependencies like iCloud Drive which have never been official, so I’m well used to having to cater for changes.
  I suspect a great many scripts and apps which use standard tools and do useful things in Home folders and /Library shouldn’t need any changes. But if you have anything which works with what is already protected by SIP, chances are it’s going to need attention.
  So my response is measured. Some have only a month in which to tear their hair out (mine has long since gone), but for many developers, advanced users, and sysadmins this is a matter of checking and making the occasional fix. Fingers crossed!
  Howard.
  
  LikeLike
3

ToneWilliams on August 21, 2019 at 2:35 pm

Apple is losing it. Period. It’s one thing to hide directories etc. by default, another to make them invisible for all without throwing salt over one’s left shoulder. I won’t be updating to Catalina. It will break too many apps etc. that I rely on, and I don’t feel like bringing on unnecessary headaches. Guess I’m getting old after all. Besides, my system does everything I need it to now and plenty fast. There’s certainly no compelling Apple hardware to buy in the near future. I would spring for the 2019 Mac Pro but with margins at double retail, I’ll pass. With glee.

LikeLiked by 1 person
- 4
  
  hoakley on August 21, 2019 at 2:48 pm
  
  Thanks.
  I’m not sure that any of these changes are anything new – many of these paths have changed without notice, although the read-only system volume does bring a lot of changes in one fell swoop.
  As for upgrading, I have no choice. I’m just about to upgrade to Parallels 15 and set up my Mojave VMs so I can keep running some 32-bit apps too. I’ll let you know how it all goes.
  Howard.
  
  LikeLike
5

artiste212 on August 21, 2019 at 7:43 pm

I greatly appreciate the roadmap you mentioned. For those of us who are non-programmers, I suppose that using the roadmap along with the Finder is a good kludge that would show us which directories are read only. Is there software that you know about that will work with Catalina to show us a more accurate picture of this? Or will we all have to play with terminal more than we’ve been used to doing?

LikeLiked by 1 person
- 6
  
  hoakley on August 21, 2019 at 9:13 pm
  
  Thank you.
  One of the big problems is that what you see in Finder is very different from what you can use in Terminal. Finder looks fairly normal, another good illusion that little has changed, compared to the major differences which are encountered by scripts and apps.
  So if you can avoid dipping into Terminal, it will all look quite ordinary, which is great for ordinary users.
  Howard.
  
  LikeLike
  - 7
    
    toyuniverses01 on August 22, 2019 at 6:59 pm
    
    What happens if you copy a path you see in Finder into terminal? Do you get the correct path?
    
    LikeLiked by 1 person
    - 8
      
      hoakley on August 22, 2019 at 7:16 pm
      
      Yes you do – provided that you know exactly where you’re heading! For example, the key new path of /System/Volumes/Data/ is shown in the Finder as /System/Volumes/[boot volume name], but pasted into Terminal correctly, as are all the paths that I have cited from my own apps above.
      If you look in the old CoreServices folder for MRT.app, you won’t find it there (or even a link to it), so you have to know where it’s moved to in order to find it. Hence the importance of a roadmap.
      Howard.
      
      LikeLike
9

Michael Tsai - Blog - Catalina’s Path Changes on August 21, 2019 at 8:46 pm

[…] Howard Oakley: […]

LikeLike
10

Arek Dreyer (@arekdreyer) on September 10, 2019 at 8:28 am

Weird, I don’t see ~/Library/CloudStorage, I see the old path still.

LikeLiked by 1 person
- 11
  
  hoakley on September 10, 2019 at 8:31 am
  
  This may be because Apple is rolling back the changes in iCloud. I am watching what is happening!
  Howard
  
  LikeLike
12

chickenofeathers on October 9, 2019 at 6:06 pm

If I’ve done sudo mkdir /opt/something in Terminal to mirror my RedHat server’s /opt/something setup, so that all my scripts run seamlessly on both local and server, what will happen to these when I upgrade to Catalina? Or if Homebrew has put stuff in places Apple might not expect? Etc?

LikeLiked by 1 person
- 13
  
  hoakley on October 9, 2019 at 6:12 pm
  
  You may find this more recent article and roadmaps helpful.
  My understanding is that you should be able to continue to use /opt for your own writeable items.
  Howard.
  
  LikeLike