hoakley November 13, 2022 Macs, Technology

Last Week on My Mac: Fortnightmare

Personally, I look forward to updates, both in macOS and fortnightly revisions to XProtect Remediator. Ventura never ceases to surprise in the bugs that have been fixed, and its new turn of speed in installing macOS updates. As I’ve been following the blossoming of Apple’s new malware scanner, I’m also delighted at its attentive support and rapid maturity. But I’m afraid that in the last few months those updates haven’t been free from their problems, and my personal feelings are being replaced by dread of the problems that you’re reporting.

Against the background of difficulties I’ve had with my local Content Caching server since June, macOS upgrades and updates have been a breeze for me. Back in the dark days of Big Sur, almost a gigabyte of every macOS update for Apple silicon Macs had to be downloaded direct. In Monterey, the time required to install minimal macOS updates differed little between my T2 and M1 Macs, and its 30 minutes preparation took around the expected time. I used to race my Macs against one another.

The contrast between 13.0.1 on T2 and M1 models couldn’t have been greater: my iMac Pro was out of use for as long as ever, although it now transpires that a small iBridge firmware update was also involved. Both my M1 Macs completed the update in less than a quarter of that time, and the second fetched the whole download from my Content Caching server. For the first time, those ‘thirty’ minutes of preparation shot by in about four.

Then I heard about your problems in even seeing this update. We’ve returned to old recipes of restarting your Mac, trying again in Safe Mode, and running SilentKnight to see if that can find it (although you’ll wisely let Software Update handle the installation, I hope). Unlike the Ventura upgrade that came as an update and installed where it wasn’t wanted, the real update to 13.0.1 seems to have played hard to get.

Just a day later came the scheduled fortnightly XProtect Remediator update, this time with a small update to XProtect’s detection data as well. More users reported not finding it, and some with Content Caching servers continued to have problems. In my case, these were different to the failed updates that had started in June: last week softwareupdate simply hung when asking my server to deliver those two updates.

I also tried an experiment a few hours after those security updates became available, and were safely installed on two other Macs. I left my M1 MacBook Pro to see if it could find them without any use of softwareupdate or SilentKnight. It reported that it was checking for updates, then failed to find any. Only when I had disabled my server (running on the Mac that had already installed the updates itself) did softwareupdate in SilentKnight install them correctly.

Apple rightly insists that timely security updates are essential to its support of macOS. Its engineers respond quickly to reports of known vulnerabilities, with a small patch for Ventura, and tune XProtect Remediator to improve its service. But when it comes to delivering those updates, something is amiss.

There’s also the outstanding question as what exactly 13.0.1 did fix: just the two bugs listed in its release notes, or a bit more?

Although I didn’t notice it at the time, the 13.0.1 update changed the version number of iBridge firmware on Intel Macs with a T2 chip, but doesn’t appear to have updated any other firmware, including that on Apple silicon models. Are you telling me that the bugs in libxml2 also affected iBridge, or was that another, undocumented fix?

I was also puzzled by the announcement by those who deliver third-party products using Endpoint Security that the 13.0.1 update fixed its problems too. Now that has been confirmed by multiple sources, it appears correct, despite Apple not informing those developers or their users. This is even more confusing, as beta-testers have confirmed that bug isn’t fixed yet in pre-release versions of macOS 13.1, due next month. Not that any of this is explained by Apple.

Finding and installing security updates has become a game of chance for many, and following Apple’s recommendation to use a Content Caching server has increased the risk of failure. Instead of these updates being positive experiences, they’ve become my fortnightmare.

14Comments

Add yours

1

Will Carson on November 13, 2022 at 11:40 am

One issue that show up in Ventura OS and not fixed in 13.01 is the inability to use external SSD drives (Samsung) for backup without doing a complete erase and reformat and complete copy from scratch as described from this post: https://bombich.com/kb/ccc6/macos-ventura-known-issues

LikeLiked by 1 person
- 2
  
  hoakley on November 13, 2022 at 9:44 pm
  
  Thank you for that link. However, your description differs from the bug in asr detailed there by Mike Bombich.
  First, this bug appeared in Monterey, although it seems to have worsened in Ventura. It’s confined to an option in asr, which is only used in ‘legacy’ cloning of System volumes, so will only affect those still using cloned System volumes with CCC or probably SuperDuper!. This doesn’t affect Time Machine at all, which can’t clone or back up System volumes, and doesn’t use asr.
  It’s also not specific to external SSDs, or Samsung storage, but will affect any clone, whatever medium its stored on.
  So it’s an edge case. Mike, I and many others have been warning that these ‘legacy’ clones of System volumes aren’t good news since Big Sur. They have already been affected by other, more serious bugs in asr, and will eventually go away altogether. If you use System volume cloning, you’ll be best moving away from that as soon as you can.
  Howard.
  
  LikeLike
  - 3
    
    Will Carson on November 14, 2022 at 2:29 pm
    
    Thank you for that correction to my post. I will consider this more in detail. I did find my external SSD drive issue solved by the solution posted by Mike Bombich link.
    
    LikeLiked by 1 person
    - 4
      
      hoakley on November 14, 2022 at 5:00 pm
      
      No problems. The key factor in that report is cloning/replicating both the System and Data volumes, which is the task of asr, where the bug lies (yet again). I strongly discourage that now, as it can lead to so many problems.
      Howard.
      
      LikeLike
5

RalphB on November 13, 2022 at 12:49 pm

Spot on. My M1 MBPro, already running Ventura 13.0.1, can’t “find” Ventura’s installer on the App Store. (I was trying to follow your instructions for creating a bootable install disk, but, for me, it failed at the first step: finding the installer from Apple.)

LikeLiked by 1 person
- 6
  
  Walt on November 13, 2022 at 2:00 pm
  
  Yeah for some reason if you search for “macOS Ventura” using the search field in the App Store you’re presented first with “iPhone & iPad Apps”. But if you look closely you will see a selection for “Mac Apps” right under the Results for “macOS Ventura”. Clicking on that revels macOS Ventura listed as Utilities. Then clicking on the “View” will revel the Ventura page for downloading the full installer. Not too obvious IMO..
  
  LikeLiked by 1 person
  - 7
    
    RalphB on November 17, 2022 at 4:37 pm
    
    Eventually, thanks to your tip, I was able to find the Ventura download on the App store.
    And, after a couple of attempts trying different destination drives and cables, I was successful in creating a bootable Ventura drive using Howard’s clear instructions (thank you!).
    For what it’s worth, one of my failed attempts included trying to use a 32GB USB drive (which, for some reason, Ventura didn’t like, despite it having been erased using the Ventura version of Disk Utility).
    Another failed attempt involved using an Anker multi-port device to make the connection between my USB-C MBPro and my USB (2 or 3) external SSD. When I removed the Anker device from the chain and substituted an Apple-brand USB-to-USB-C connector, I scored the victory.
    
    Somehow this all still feels a bit like “voodoo” or “black magic… which, of course, it shouldn’t.
    
    By the way… I think Howard wondered (somewhere) why anyone really might need an external bootable drive, considering Apple’s good “Recovery” system. “Recovery” requires an internet connection (and a reasonably fast one, too). I sometimes work in places which don’t have any wifi or internet, so carrying a bootable “recovery” drive gives me the peace-of-mind knowing I could continue working even if Ventura becomes corrupted. I admit, though, that it’s mostly about “peace-of-mind,” since the “Recovery” system does work very well.
    
    LikeLiked by 1 person
    - 8
      
      hoakley on November 17, 2022 at 4:46 pm
      
      Thank you.
      In the last few days, I have installed and booted from 13.0 on 8 different external SSDs, from 6 different (major) manufacturers. Every one of them worked first time, which is good news for those manufacturers too!
      I’m afraid that, at least on Apple silicon Macs, macOS refuses to install or boot from regular USB Flash drives – that’s deliberate AFAIK.
      The voodoo here is the LocalPolicy and security stuff, and is designed to prevent this system from being abused, I gather. Sometimes it seems a bit more sensitive than it should be, and a hub/dock can trigger that.
      The only thing you miss in Recovery without a good Internet connection is the ability to install macOS. The chances of requiring that should now be exceedingly small, given that it’s booted from an immutable snapshot. Back in the days when there was only SIP to protect it, and the System wasn’t even on a separate volume, the risks were far greater. But a bootable external SSD with a macOS installer on it can still be reassurance.
      Howard.
      
      LikeLike
9

Paul Rockwell on November 13, 2022 at 7:07 pm

Apple really needs to grow up and get a lot better at documenting what has changed in its releases. For the casual users what they do today might be sufficient (but barely). For more experienced users (and after all, isn’t that what they’re targeting the Mac for as opposed to iPads) and corporate users, the lack of “what’s fixed” borders on the irresponsible.
In my mind they should create a separate document that’s able to be found by those that need it with a complete list of every bug (along with its internal tracking number) that has been fixed. It has to be a lot more specific than the gobbledygook that they tend to release to describe the security issues – what they publish for security issue description is about the laziest effort I’ve seen from a vendor.

LikeLiked by 1 person
- 10
  
  hoakley on November 13, 2022 at 9:57 pm
  
  Thank you. I agree.
  Howard.
  
  LikeLike
11

Sebby on November 13, 2022 at 11:26 pm

I’m not madly in love with Ventura at the moment because I was just victimised by the softwareupdate changes in Monterey, triggering a surprise upgrade to Ventura on my iMac 2020. To be sure, I had just created my external boot disk for installation and was entirely ready for it, and it’s fair to say that the upgrade itself, unwanted as it was, ran sweet as a nut and could easily have been mistaken for any other update, as was undoubtedly (and, honestly, for most, entirely reasonably) intended. But I had to scramble to finish up what I was doing, and it could easily have waited, even if I’ve never been more eager to get things done. My MacBook Air was a great help here. My dad’s just had a stroke and is now in hospital, so I really need a working Mac, and fortunately the 13.0.1 update was completely uneventful, although once again I’ve had to turn off the content cache for failing to permit xprotect payload installations. Clean installs for Christmas, here we come!

LikeLiked by 1 person
- 12
  
  hoakley on November 14, 2022 at 7:31 am
  
  So sorry to hear about your dad. I hope he recovers quickly now.
  Howard
  
  LikeLike
  - 13
    
    Sebby on November 14, 2022 at 1:15 pm
    
    Thank you. He’s having difficulty breathing and is now on assistance again, but it looks like the neurosurgery was a success. All very nerve-racking, if I’m honest. Puts life’s priorities in sharp focus. I just hope the stubborn old sod pulls through so I can tell him not to skip his medicines again
    
    LikeLiked by 1 person
    - 14
      
      hoakley on November 14, 2022 at 4:57 pm
      
      My thoughts are with you, him and your family. Oddly enough, my first job as a doctor was in neurosurgery: a very challenging discipline, the real deep end for a new doctor, but extremely rewarding.
      Howard.
      
      LikeLike

·Comments are closed.

Share this:

Like this:

Related