hoakley July 30, 2023 Macs, Technology

Last Week on My Mac: Ventura’s lost Location Services

When Apple released the macOS Ventura 13.5 update, it was opaque about what it had changed, writing: “This update provides important bug fixes and security updates and is recommended for all users.” Apart from Ventura’s security-only updates, this is the tersest and least informative of all its release notes for macOS 13. If the bug fixes were that important, why should we not have been told what had been fixed?

What hardly anyone noticed at that time was that among those unspecified bug fixes Apple had removed one of its most important privacy features: its Privacy & Security settings had lost all control over bundled and user-installed apps in Location Services. This is how it should have looked:

and this is what you now see in macOS 13.5:

Ever since its introduction in the first betas of Ventura, System Settings has been dogged by inattention to detail. Its most significant omission from the first release of 13.0 was support for network locations, which was belatedly added back in 13.1, camouflaged in a popup menu under an ellipsis so obscure that most don’t even notice its existence, and assume it’s still missing.

Loss of control over Location Services in apps is the more serious because there’s no command tool to act as substitute. Although grouped together with settings that are managed by TCC, with its limited control using tccutil, Location Services are managed separately by locationd, for which there’s no command tool available. Its database is locked away in /var/db/locationd, where even the advanced user is denied access.

As a result, since we updated to 13.5 last Monday, apps have had free run of Location Services without our even knowing which can access our private data, let alone being able to deny that access. Apple has a whole white paper promoting its user controls and transparency with location data, yet no one noticed that most of those controls had been lost in 13.5.

It’s that inattention that I find most striking. The difference between those two screenshots is so great that we can only presume that no Apple engineer opened Location Services settings and took a careful look at it. That’s despite several small changes in build numbers across components including CoreLocationAgent.app in CoreServices, the CoreLocation Framework and LocationSupport Private Framework. Is it normal, though, for Apple to release the last minor update before dropping full support for a major version of macOS, without even checking through key windows in System Settings?

If experience is anything to go by, Apple now seems to delegate most pre-release testing and checks on macOS to third-party beta-testers, and depends on their reporting of issues using Feedback. When we fly, we expect the pilots and engineers to perform thorough checks on the aircraft and its essential functions before declaring that flight ready for takeoff. If they instead walked through the main cabin asking some of their passengers whether they thought everything seemed OK, would you fly with that airline?

It’s also quite usual for Apple to remain silent when such problems become apparent. I’ve seen some advisors on Apple Community Forums asserting that this change was no accident, but intentional, that Apple has deliberately removed one of the key privacy protections in Ventura. But as Apple failed to give us any indications as to what has changed, and hasn’t said a word since its release, maybe that inference isn’t unreasonable. It has though been reported in at least two Feedbacks, so maybe macOS 13.5.1 is just around the corner. Yet again, in the space of one month, we’re left asking how Apple can release updates that are so obviously flawed.

38Comments

Add yours

1

Tafferv on July 30, 2023 at 8:19 am

I noticed that too after upgrading. I thought it might be empty because no apps had used the location within the last 24 hours?

LikeLiked by 1 person
- 2
  
  hoakley on July 30, 2023 at 2:49 pm
  
  Nope. Try using Maps, one of the bundled apps that does by default have access. It knows and indicates your current location. Nothing changes in Location Services, does it?
  Howard.
  
  LikeLike
3

Enzo Vincenzo on July 30, 2023 at 8:50 am

You are brilliant! The spirit of Steve Jobs is still alive in you! WELL! 😍

LikeLiked by 1 person
- 4
  
  hoakley on July 30, 2023 at 2:50 pm
  
  Thank you.
  Howard.
  
  LikeLike
5

SarahB on July 30, 2023 at 9:33 am

Very sad to see this and wonder what else disappeared. I remember the network settings mess also. Even when every new macOS release comes out in recent years RAID in Disk Utility is broken and I can’t create new JBODs. Then I have to report it in feedback and wait. It gets fixed but you think year after year, someone would be more aware of it and check it.

LikeLiked by 1 person
- 6
  
  hoakley on July 30, 2023 at 2:51 pm
  
  Thank you. AFAIK that’s the only notable absence. A long-standing bug in eficheck has, though, been fixed, so 13.5 isn’t all gloom. But this is such as visually obvious error, I can hardly believe that it shipped like this.
  Howard.
  
  LikeLike
  - 7
    
    SarahB on August 1, 2023 at 12:55 am
    
    I decided to try the Sonoma beta on my 2012 Mac mini with OCLP today and noticed the setting is gone from there too in Sonoma 14.0 beta 23A5301h. So I hope it’s not gone for good now. I thought it was just a mistake in Ventura but gone from Sonoma also.
    
    LikeLiked by 1 person
8

Metin on July 30, 2023 at 9:58 am

It seems Apple doesn’t have automated tests even for critical core functionality. How can a software company this big fail so hard? This is so disappointing. I don’t know what to say.

LikeLiked by 1 person
9

Bill Smith on July 30, 2023 at 11:25 am

It doesn’t seem to have been intentional, it still functions as before in the current beta of Sonoma, Ventura’s spawn.

LikeLiked by 1 person
- 10
  
  hoakley on July 30, 2023 at 2:52 pm
  
  I don’t for a moment think it’s intentional. And yes, it still works fine in beta 4 of Sonoma.
  Howard.
  
  LikeLike
11

FRPSR on July 30, 2023 at 1:19 pm

The analogies reach is a vertigo of comfort . A metaphor of time needing a break .

LikeLiked by 1 person
12

Tristan Hubsch on July 30, 2023 at 1:52 pm

In the Privacy & Security/Location Services pane, click on the “Details…” button. The “Show location in Control Center when […]” toggle was off (by new Default?); I toggled it on, just in case this might restore the listing… but, nothing yet. (After closing System Settings, I launched Maps, asked it to find a route to my work, quit Maps, reopened System Settings/…/Location Services, …and nothing. ☹️ Any other new/well-hidden setting we might me missing?

LikeLiked by 1 person
- 13
  
  hoakley on July 30, 2023 at 2:55 pm
  
  Not as far as I know. This isn’t a part of System Settings the user can customise.
  Howard.
  
  LikeLike
14

Tristan Hubsch on July 30, 2023 at 2:04 pm

PS. In the System Settings/…/Location Services/Details… pane, the “Significant Locations” “Details…” button brings up a popup pane that has a “Summary” section, which for me states: “72 Records Jun 4–Jul 24, 2023” — which would seem to indicate that the recording of locations itself (not just the listing in the …/Location Services pane) stopped??? …or the path to the location logging records changed, so the …/Location Services finds nothing new in the old records? 😡 “left hand doesn’t know what the right hand is doing”??

LikeLiked by 1 person
- 15
  
  hoakley on July 30, 2023 at 2:55 pm
  
  Thank you. I simply don’t know, as there’s no other way of obtaining Location Services information, now its database is locked down from users.
  Howard.
  
  LikeLike
  - 16
    
    Tristan Hubsch on July 30, 2023 at 3:53 pm
    
    Yes, I agree; the …/Location Services/Details…/Details… “Summary” stopping on July 24th confirms your reporting. I reported the bug @ https://www.apple.com/feedback/macos.html (and also the notoriously outdated pull-down macOS version menu). Fingers crossed, they fix it in 15.3.1…
    
    LikeLiked by 1 person
    - 17
      
      hoakley on July 30, 2023 at 6:38 pm
      
      Thank you.
      Howard.
      
      LikeLike
18

G.J. Parker on July 30, 2023 at 5:17 pm

sudo defaults read /var/db/locationd/clients.plist seems to be the place were some(?) data is stored. Maps is there along w/ Chromium. File was updated when opening Maps. Rest appears to be more Apple stuff: Safari, News, Sharing, ….

It is striking this was missed.

LikeLiked by 1 person
- 19
  
  hoakley on July 30, 2023 at 5:20 pm
  
  Thank you. There doesn’t appear to be any tool to change those settings, though.
  Howard
  
  LikeLike
20

Ralf on July 30, 2023 at 9:17 pm

It would be interesting to know whether the settings made for each app in 13.4 were preserved and only the GUI was removed. Or whether all apps now have access to location data.
For a long time, Maps did not have access to my location. Unfortunately, I recently changed that, so I can’t do this test. I’ll have to think about which other apps should not have access…

LikeLiked by 1 person
- 21
  
  hoakley on July 30, 2023 at 10:12 pm
  
  Yes. One thing’s for sure: you can’t currently prevent an app from having access to location data. That’s seems a fairly serious privacy issue to me.
  Howard.
  
  LikeLike
  - 22
    
    Someone on August 2, 2023 at 5:05 am
    
    I think that might be an incomplete interpretation, at least from what I’m seeing. I’m looking at Little Snitch, and it is *unable* to get my location information when it’s showing the Network Monitor. It’s not popping up a dialogue to allow location access etc.
    
    It was installed after the 13.5 update.
    
    To me it looks like non-Apple / post 13.5 apps are just silently blocked from even requesting access to location data, and the problem is we’ve lost the mechanism to *grant* them access.
    
    LikeLiked by 1 person
    - 23
      
      hoakley on August 2, 2023 at 8:11 am
      
      Thank you.
      In the absence of any other tool to discover what’s going on here, we can’t readily know which newly installed apps are being given access to Location Services. I’m fascinated by and grateful for your discovery, which makes the fixing of this bug all the more urgent and important. I wonder if fresh installs of 13.5 give bundled apps default access, or block them all as well?
      What we certainly know is that, if the user has already given an app access, they can no longer turn that off. That’s rather easier to demonstrate, and what I meant in my comment.
      Howard.
      
      LikeLike
    - 24
      
      Ralf on August 2, 2023 at 8:26 am
      
      I have just installed an iPad app on the Mac that can display a map: OsmAnd.
      After installing it, I was asked if I wanted to give access to the location. After that, my location was correctly displayed. So there is a choice after installation. But it can no longer be changed.
      
      LikeLiked by 1 person
    - 25
      
      hoakley on August 2, 2023 at 3:28 pm
      
      Thank you. That’s fascinating.
      Howard.
      
      LikeLike
26

Martin on July 31, 2023 at 4:58 am

There could be another reason. Maybe Apple noticed this location settings bug during testing but deemed other bugfixes so important to release the update without a fix for the location settings bug. I would expect this to be noted in the release notes though. We probably never know what really happened.

LikeLiked by 1 person
27

luckman212 on July 31, 2023 at 4:59 am

It boggles the mind that an update that should have been very stable (.5) shipped with such an obvious bug. I noticed it within the first 30 minutes of installing the OS. So your theory that literally not a single engineer even bothered to open their Location settings seems plausible. As does the other poster who suggests Apple uses no sort of automated regression testing. What a shame and disappointment. They have really gutted the macOS development team.

LikeLiked by 1 person
28

Lynn on July 31, 2023 at 4:51 pm

System>Privacy and security>Location services>About location Services and Privacy. In the about document it reads in part–”To view apps that you have allowed to use Location Services, go to System Settings > Privacy & Security > Location Services. Checkboxes show whether Location Services is enabled for an app. You can turn off Location Services for a given app by deselecting the checkbox next to the app. If you turn off Location Services for an app, you’ll be prompted to turn it on again the next time that app tries to use your location data.”
Whoops! Someone didn’t do their job…

LikeLiked by 1 person
- 29
  
  hoakley on July 31, 2023 at 6:52 pm
  
  Yes, whoops indeed.
  We all make errors worse than that, but in this case there should have been checks to ensure it didn’t go out in a release.
  Howard.
  
  LikeLike
30

Jim Gibbin on July 31, 2023 at 10:30 pm

A fair hypothesis is that that the Locations team missed the memo from the Settings team, which missed the memo from the Menus team, and all missed memos from the Update team

LikeLiked by 1 person
31

John Gilbert on August 1, 2023 at 5:17 am

Not surprisingly there is a MacRumors thread on this, I won’t link it as it is mostly rants about Apple. But after 5 pages there is a post:
“Called Apple support. As usual, I was chatting with someone in under 2 minutes. They are completely aware of the bug and are working hard to push out an update.”
So hopefully it is not a deliberate design change and it will be fixed.

LikeLiked by 1 person
32

Jim Gibbin on August 3, 2023 at 11:23 pm

There is a short thread on reddit about other weird things broken by 13.5. I can confirm loss of some MIDI functionality.

macOS 13.5 runs horrible
by u/henrikhs117 in Logic_Studio

LikeLiked by 1 person
- 33
  
  hoakley on August 4, 2023 at 6:10 am
  
  Thank you.
  Howard.
  
  LikeLike
34

Jerrold Leichter on August 13, 2023 at 11:40 am

An additional datapoint: Just yesterday, I upgraded my MBP from Monterey to 13.5. Indeed, programs like Little’ Snitch are now unable to get my location – they could previously – and are unable to even ask for permission. On the other hand, Weather (which didn’t exist in Monterey) and News (which used to have permission) asked for permission when I first ran them, and I was able to grant it. So, yes, the built-in programs are special. I wonder if this is how this bug got missed in testing: There’s a test that gets run on a “raw” system, using just the built-in apps – and indeed it passed.

The list of applications in System Preferences remains empty.

LikeLiked by 1 person
- 35
  
  hoakley on August 13, 2023 at 2:32 pm
  
  Thank you.
  That would still mean that no one testing this change actually opened Location Settings, as illustrated above. The difference is obvious enough, isn’t it? If no one looks at the GUI, then mistakes like this are bound to occur again and again.
  And it’s now almost three weeks since we all lost control over Location Services. Apple really doesn’t think this important at all, does it?
  Howard.
  
  LikeLike
36

macOS 13.5.1 Ventura Fixes Missing Location Services Permissions - TidBITS on August 17, 2023 at 7:48 pm

[…] All Active Operating Systems,” 24 July 2023). However, as users quickly realized, in macOS 13.5, apps disappeared from the Location Services screen of System Settings. Troublingly, for three weeks, Apple said nothing about this lapse. The admission that it was just […]

LikeLike
37

Tom Van Vleck on August 18, 2023 at 1:17 pm

Good analogy! As a former QA mgr I want to ask “where else has Apple made the same mistake, and how can they prevent similar errors?”

LikeLiked by 1 person
- 38
  
  hoakley on August 18, 2023 at 7:36 pm
  
  Thanks you – more to come on Sunday too.
  Howard.
  
  LikeLike