hoakley April 25, 2023 Macs, Technology

Ventura 13.3.1 can’t change the password of sparse bundles

macOS Ventura 13.3.1 has a bug preventing the password for encrypted sparse bundles from being changed using hdiutil. As there’s no alternative method, this has a high impact on those using encrypted sparse bundles, for instance to store Time Machine backups on network shares.

Bug

While Disk Utility and third party utilities such as my own free app Spundle offer a GUI for the creation of encrypted sparse bundles, the only way to change their password is using the system command tool hdiutil, in a command of the form
hdiutil chpass sparsebundle
where sparsebundle is the path to the sparse bundle. In this interactive form, the user is first prompted at the command line to enter the current password, then the new password twice, thus
hdiutil chpass /Users/hoakley/Documents/0test1.sparsebundle Enter password to access "0test1.sparsebundle": Enter a new password to secure "0test1.sparsebundle": Re-enter new password:

In Ventura 13.1, this completes without error, and the password is changed as expected. However, in 13.3.1, despite it completing identically and apparently without error, the password is never changed, remaining the same as it was before using the command.

This bug only affects sparse bundles; changing password using the same command on disk images continues to work as expected. This is 100% reproducible on Intel and Apple silicon Macs.

Workaround

There appears to be no other mechanism provided in macOS or third-party utilities to change passwords on encrypted sparse bundles, so there is no workaround known in 13.3.1.

If macOS 13.1 can be run in a virtual machine (VM), then the same command can be run successfully in the VM, provided that it can be given access to the sparse bundle. This works well using lightweight virtualisation on Apple silicon Macs, but is a long way round this bug.

Versions affected

The bug appears to have been introduced after 13.1, and is present in 13.3.1. As Apple doesn’t provide detailed release notes for macOS, it isn’t clear which update to Ventura introduced this bug. It might have been 13.2, for which a potentially related vulnerability is reported as having been fixed in DiskArbitration.

Impact

Sparse bundles are widely used, most commonly to host Time Machine backups on shared volumes. Those relying on the encryption provided by a NAS, for instance, shouldn’t be affected, as those won’t normally be encrypted sparse bundles. All other encrypted sparse bundles hosted on macOS are likely to be affected. As changing the password is an important security feature, and the workaround isn’t simple, this bug has high impact.

Acknowledgement

I’m very grateful to Simon for drawing my attention to this bug, and for reporting it to Apple, so that it will hopefully be fixed in macOS 13.4.

Postscript

Thanks to Paolo for confirming that this bug isn’t present in 13.2.1. This makes it most likely that it was introduced in 13.3, or possibly 13.3.1.

22Comments

Add yours

1

EcleX on April 25, 2023 at 6:43 am

Thanks for the report. Ventura is great, but as indicated in a previous comment, it has generated a new bug: macOS 13 Ventura on Intel Macs does not see Panasonic TV when using Apple USB-C Digital AV Multiport Adapter to connect via HDMI (such Mac does not have HDMI port). No problem with previous macOS versions (Monterey and older) or when using Apple silicon Macs (including Ventura).

LikeLiked by 1 person
- 2
  
  hoakley on April 25, 2023 at 7:50 am
  
  Thank you.
  Have you reported this in a Feedback?
  Howard.
  
  LikeLike
  - 3
    
    EcleX on April 25, 2023 at 5:28 pm
    
    Yes. Others have also found it, as shown searching Internet for such keywords. Hopefully, Apple will fix it.
    
    LikeLiked by 1 person
4

prehensileblog on April 25, 2023 at 6:44 am

Do you consider expanding the sparse bundle and creating a new one to be a workaround? I think I would be skeptical about any password change solution that didn’t include providing the original password for a single item like a sparse bundle. After all, It’s not a membership, as, for example, one might consider website access to be.

LikeLiked by 2 people
- 5
  
  hoakley on April 25, 2023 at 7:52 am
  
  Yes.
  You can’t do that unless the sparse bundle is relatively small in terms of size and number of files, or copying contents across becomes protracted. It also doesn’t work if the sparse bundle contains APFS backups, as there’s no way of copying those, and I wouldn’t try it with HFS+ backups either because of the large number of hard links.
  So in most situations, it wouldn’t work.
  Howard.
  
  LikeLike
6

Paolo on April 25, 2023 at 7:43 am

Password changing on encrypted (AES 128) sparse bundle works correctly on Ventura 13.2.1 (22D68) (Intel)

LikeLiked by 1 person
- 7
  
  hoakley on April 25, 2023 at 7:54 am
  
  Thank you, Paolo – so the bug was introduced with either 13.3 (most likely) or 13.3.1.
  Howard.
  
  LikeLike
8

Jeff Johnson on April 25, 2023 at 11:22 am

This bug doesn’t affect Monterey, fortunately. hdiutil chpass is part of my backup workflow, so the bug would be quite unpleasant if I were running Ventura. Thanks for highlighting it. I’m holding off on Ventura until I have no choice (which is probably WWDC).

LikeLiked by 1 person
- 9
  
  hoakley on April 25, 2023 at 10:06 pm
  
  Thank you, Jeff.
  Howard.
  
  LikeLike
10

Ali Kaylan on April 26, 2023 at 5:32 pm

In addition, quite often, when you double click on an encrypted sparsebundle to open, (hfs+, AES 128) nothing happens. Changing the name of the file, even if it is just a one letter change, enables the drive to mount after password entry. This was not observed previously before 13.3. Copying the sparsebundle to another location can trigger ability to open when there was previously no such ability without changing name, or vice versa.

LikeLiked by 1 person
- 11
  
  hoakley on April 26, 2023 at 8:26 pm
  
  I’m sorry to hear that. Although I don’t use sparse bundles that much, I haven’t seen this at all. It sounds like something other than a problem in hdiutil, and I wonder if you have something else going on there, perhaps related to a third-party product? It would be worth tracing in the log if you can, where double-clicking is usually detailed fully.
  Howard.
  
  LikeLike
12

Ali Kaylan on April 26, 2023 at 10:24 pm

Happening here on three different machines all on 13.3.1. Never happened before 13.3. Happening with many sparsebundles that I open daily. The log, when it does not open the sparsebundle, blurts out the following:

default 16:58:16.841340-0500 Finder Opening document with application
default 16:58:16.851835-0500 Finder -[SFLGenericList _insertItem:atIndex:error:]_block_invoke item: 2B8715B0-C7FB-430A-AA59-20E0C7B1C809 at index: 0 list: com.apple.LSSharedFileList.RecentDocuments
default 16:58:16.852173-0500 Finder received: com.apple.LSSharedFileList.RecentDocuments
error 16:58:17.155626-0500 Finder Warning: Window QLPreviewImageWindow 0x7fd5ae0e1de0 ordered front from a non-active application and may order beneath the active application’s windows.
default 16:58:17.155658-0500 Finder order window front conditionally: 66f related: 0
default 16:58:17.392029-0500 Finder order window: 66f op: 0 relative: 0 related: 0
default 16:58:26.842288-0500 Finder LSExceptions shared instance invalidated for timeout.

When successful opening, that last line is replaced by a bunch of cache dumping lines. When does not open, doesn’t even make it to the password entry. Super repeatable. Changing the sparsebundle file name results in sparsebundle opening normally. IMHO, something in cache or more likely, APFS is throwing it off. Name change flushes it out. One file that opens on one machine does not open on another, and vice versa.

LikeLiked by 1 person
- 13
  
  hoakley on April 27, 2023 at 3:15 pm
  
  That’s seriously strange, given the tiny changes in 13.3.1 and the fact that the Finder doesn’t seem to be handing this on to LaunchServices, but just blocking it. Maybe worth contacting Apple Support, as it might be a problem familiar to them.
  I wish you success.
  Howard.
  
  LikeLike
14

Albert Godfrind. on May 13, 2023 at 5:55 pm

I’m seeing another problem with encrypted disk images. Since Venture 13.3.1, they no longer open on click (or on the open command): I’m not prompted for a password: nothing happens.

Luckily I found out I was able to open them with the “hdiutil attach disk.dmg” command. That prompts for the password and mounts the disk image.

Maybe this is related to the issue with the encrypted sparse bundles ? I have not seen it reported in an Apple forum …

LikeLiked by 1 person
- 15
  
  hoakley on May 13, 2023 at 8:21 pm
  
  Thank you.
  Someone reported this to me recently, but I’ve been unable to reproduce it here, either with regular disk images or sparse bundles. In both cases, encrypted images attach and mount fine. So I’m not sure what might be causing that.
  The problem I have reported with sparse bundles isn’t in the Finder, but in hdiutil, which apparently doesn’t change their passwords, although it does perfectly well for regular disk images. I’ve tried that repeatedly on different Macs, without any success at all, unless I used a VM running a previous version of Ventura, which does still work as expected.
  Howard.
  
  LikeLike
16

Jeff Johnson on May 19, 2023 at 2:22 pm

This bug still exists in macOS 13.4, unfortunately.

LikeLiked by 1 person
- 17
  
  hoakley on May 19, 2023 at 2:24 pm
  
  Thank you, Jeff. I had a feeling it might have been reported a bit late to make this update.
  Howard
  
  LikeLike
18

Geoff on July 5, 2023 at 11:38 am

I’m on macOS 13.4.1 and it’s still here

LikeLiked by 1 person
19

Walt on July 11, 2023 at 12:01 am

Sad to report the hdiutil sparse bundle change password bug is still present in 13.5 ßeta 5 and Sonoma 14 ßeta 3. It looks like this bug will stay as part of Ventura and carry over to Sonoma since Apple appears to be uninterested in fixing this bug.

LikeLiked by 1 person
- 20
  
  hoakley on July 11, 2023 at 6:12 am
  
  Thank you.
  I’ll try to find time to report his again.
  Howard.
  
  LikeLike
21

nonplusx on September 12, 2023 at 2:23 pm

Using macOS Ventura 13.5.2 and this bug is still present. Unbelievable… And when they fix it they should make password changes possible in Disk Utility, the menu item is right there (but greyed out).

LikeLiked by 1 person
- 22
  
  hoakley on September 12, 2023 at 5:00 pm
  
  Thank you. As it still seems to affect Sonoma betas, I don’t hold much prospect of it ever being fixed in Ventura.
  Howard.
  
  LikeLike