{"id":46164,"date":"2024-12-16T14:18:55","date_gmt":"2024-12-16T19:18:55","guid":{"rendered":"https:\/\/mjtsai.com\/blog\/?p=46164"},"modified":"2025-02-10T10:00:28","modified_gmt":"2025-02-10T15:00:28","slug":"macos-15-2-breaks-bootable-backups","status":"publish","type":"post","link":"https:\/\/mjtsai.com\/blog\/2024\/12\/16\/macos-15-2-breaks-bootable-backups\/","title":{"rendered":"macOS 15.2 Breaks Bootable Backups"},"content":{"rendered":"<p><a href=\"https:\/\/www.shirtpocket.com\/blog\/index.php\/shadedgrey\/youre_a_mean_one\/\">Dave Nanian<\/a> (<a href=\"https:\/\/mas.to\/@dnanian\/113647681541935592\">Mastodon<\/a>, <a href=\"https:\/\/mas.to\/@dnanian\/113642099711939077\">2<\/a>, <a href=\"https:\/\/news.ycombinator.com\/item?id=42413757\">Hacker News<\/a>):<\/p>\n<blockquote cite=\"https:\/\/www.shirtpocket.com\/blog\/index.php\/shadedgrey\/youre_a_mean_one\/\"><p>Apple broke the replicator. Towards the end of replicating the Data volume, seemingly when it&rsquo;s about to copy either Preboot or Recovery, it fails with a <strong>Resource Busy<\/strong> error.<\/p><p>In the past, <strong>Resource Busy<\/strong> could be worked around by ensuring the system was kept awake. But this new bug means, on most systems, there&rsquo;s no fix. It just fails.<\/p><p>[&#8230;]<\/p><p>Since Apple took away the ability for 3rd parties (eg, us) to copy the OS, and took on the responsibility themselves, it&rsquo;s been up to them to ensure this functionality continues to work. And in that, they&rsquo;ve failed in macOS 15.2.<\/p><\/blockquote>\n<p>I wonder if this is related to the problems I&rsquo;ve been having since Sequoia where I can&rsquo;t cleanly eject drives, e.g. after making a non-bootable backup. Finder will show a spinner for a while and then offer to let me Force Eject even though Sloth and other tools show no open files.<\/p>\n\n<p><a href=\"https:\/\/mjtsai.com\/blog\/2024\/12\/12\/macos-15-2\/#comment-4213343\">Bri<\/a>:<\/p>\n<blockquote cite=\"https:\/\/mjtsai.com\/blog\/2024\/12\/12\/macos-15-2\/#comment-4213343\"><p>It pains me to see the authors of good software like SuperDuper! just having throw up their hands and say there&rsquo;s nothing that can be done, because Apple broke our shit and there&rsquo;s no way to work around it since they intentionally locked down the system and made it impossible for us, the users, to do what we want.<\/p><p>Remember when copying a system was as simple as just copying the System Folder to another drive? How far we&rsquo;ve fallen.<\/p><\/blockquote>\n\n<p>Previously:<\/p>\n<ul>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2024\/12\/12\/macos-15-2\/\">macOS 15.2<\/a><\/li>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2024\/10\/30\/use-a-cloned-drive-to-recover-from-mac-failures\/\">Use a Cloned Drive to Recover From Mac Failures<\/a><\/li>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2024\/10\/22\/time-machine-in-sequoia\/\">Time Machine in Sequoia<\/a><\/li>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2024\/06\/20\/superduper-3-9-beta\/\">SuperDuper 3.9 Beta<\/a><\/li>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2023\/02\/17\/finding-open-files\/\">Finding Open Files<\/a><\/li>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2021\/03\/10\/the-role-of-bootable-duplicates-in-a-modern-backup-strategy\/\">The Role of Bootable Duplicates in a Modern Backup Strategy<\/a><\/li>\n<\/ul>\n\n<p id=\"macos-15-2-breaks-bootable-backups-update-2024-12-18\">Update (2024-12-18): <a href=\"https:\/\/tidbits.com\/2024\/12\/16\/macos-15-2-sequoia-breaks-bootable-backups-in-superduper\/\">Adam Engst<\/a>:<\/p>\n<blockquote cite=\"https:\/\/tidbits.com\/2024\/12\/16\/macos-15-2-sequoia-breaks-bootable-backups-in-superduper\/\">\n<p>I haven&rsquo;t seen any comments about how this affects <a href=\"https:\/\/bombich.com\/\" target=\"_blank\" rel=\"noopener\">Carbon Copy Cloner<\/a>&nbsp;or&nbsp;<a href=\"https:\/\/www.econtechnologies.com\/chronosync\/overview.html\" target=\"_blank\" rel=\"noopener\">ChronoSync<\/a>, but if the problem is in Apple&rsquo;s <code>asr<\/code> (Apple Software Restore) tool, those apps would likely be similarly affected.<\/p>\n<\/blockquote>\n\n<p>See also: <a href=\"https:\/\/www.macrumors.com\/2024\/12\/17\/macos-15-2-breaks-superduper-bootable-backups\/\">MacRumors<\/a>.<\/p>\n\n<p><a href=\"https:\/\/mas.to\/@dnanian\/113669973629631131\">Dave Nanian<\/a>:<\/p>\n<blockquote cite=\"https:\/\/mas.to\/@dnanian\/113669973629631131\"><p>Unfortunately, the first Developer Beta of macOS 15.3 does <em>not<\/em> fix Apple&rsquo;s replicator problem, which still fails with &ldquo;Resource Busy&rdquo; at the end of its operation.<\/p><p>For Apple folks, again, this is FB16090831. It seems to only affect Apple silicon Macs.<\/p><\/blockquote>\n\n<p id=\"macos-15-2-breaks-bootable-backups-update-2024-12-19\">Update (2024-12-19): I continue to see reports of <a href=\"https:\/\/mjtsai.com\/blog\/2024\/10\/22\/time-machine-in-sequoia#time-machine-in-sequoia-update-2024-12-19\">Time Machine problems<\/a> with macOS 15.2, but these seem to be separate issues, perhaps related to SIP rather than ASR.<\/p>\n\n<p><a href=\"https:\/\/support.bombich.com\/hc\/en-us\/articles\/20686422131479-Creating-legacy-bootable-copies-of-macOS\">Bombich Software<\/a> (via <a href=\"https:\/\/talk.tidbits.com\/t\/macos-15-2-sequoia-breaks-bootable-backups-in-superduper\/29742\/5?u=mjtsai\">Adam Engst<\/a>):<\/p>\n<blockquote cite=\"https:\/\/support.bombich.com\/hc\/en-us\/articles\/20686422131479-Creating-legacy-bootable-copies-of-macOS\"><p>Copying Apple&rsquo;s system is an Apple-proprietary endeavor; we can only offer &ldquo;best effort&rdquo; support for making an external bootable device on macOS. We present this functionality in support of making ad hoc bootable copies of the system that you will use immediately (e.g. when migrating to a different disk on an Intel Mac, or for testing purposes), but we do not support nor recommend making bootable copies of the system as part of a backup strategy.<\/p><\/blockquote>\n\n<p>See also: <a href=\"https:\/\/daringfireball.net\/linked\/2024\/12\/18\/macos-15-2-bootable-backup-bug\">John Gruber<\/a> (<a href=\"https:\/\/mastodon.social\/@daringfireball\/113674683898655425\">Mastodon<\/a>), <a href=\"https:\/\/www.reddit.com\/r\/MacOS\/comments\/1hdp0ev\/sequoia_152_and_carbon_copy_cloner\/\">Reddit<\/a>, <a href=\"https:\/\/discussions.apple.com\/thread\/255886342?sortBy=rank\">Apple Discussions<\/a>.<\/p>\n\n<p><a href=\"https:\/\/bombich.com\/blog\/2024\/12\/19\/bootable-backups-have-been-deprecated-for-several-years\">Mike Bombich<\/a>:<\/p>\n<blockquote cite=\"https:\/\/bombich.com\/blog\/2024\/12\/19\/bootable-backups-have-been-deprecated-for-several-years\"><p>While some developers seem surprised by a change in macOS 15.2, we&rsquo;ve known for several years that making bootable backups would eventually become impossible.<\/p><p>[&#8230;]<\/p><p>Participating in that (Dec 2, 2020) conference call was the APFS team lead, someone from Developer Technical Support, and to my surprise, Apple&rsquo;s Director of Product Marketing. When I joined the call I was prepared for a technical discussion of what was broken in ASR and whether Apple would be able to fix those issues and make it reliable enough for a commercial backup solution. The call didn&rsquo;t quite go in that direction. The Marketing Director kicked off the call by asking:<\/p><blockquote><p>So how would it look if someday in the future you simply couldn&rsquo;t make a copy of the System at all?<\/p><\/blockquote><p>He (and the more technical folks on the call) went on to explain why only ASR could be allowed to copy the system, and that they were committed to addressing any problems with it <em>as long as it did not require making a compromise to platform security<\/em>. Platform security is a top priority at Apple, and one of the keys to that security is a <a href=\"https:\/\/support.apple.com\/guide\/security\/system-security-overview-sec114e4db04\/1\/web\/1\">Secure Boot environment<\/a> &mdash; without compromise. Allowing system files to be copied introduces an opportunity for attackers to modify key system components. Some of this can be mitigated by only allowing Apple&rsquo;s ASR utility to make the copy, but there are still inherent opportunities to inject changes when copying system files.<\/p><\/blockquote>\n<p>There&rsquo;s nothing like documenting changes in strategy through private conference calls. Now we are in a weird situation where ASR was included in Sequoia but no longer works, and we don&rsquo;t know whether Apple intends to fix it.<\/p>\n<p>Also, I don&rsquo;t think this is a good security tradeoff. I don&rsquo;t understand exactly what the threat is. Who is going to modify the encrypted clone drive that&rsquo;s sitting in my office and force me to boot from it? (If they can do that, I have much bigger problems.) What could be modified without detection given that the system volume is signed? The problem with Migration Assistant is that it takes a long time. With a bootable clone, I can be back up and running in a minute or two. And this would just be a stopgap: I would eventually migrate back to the internal storage so the security risk would only be temporary.<\/p>\n\n<p id=\"macos-15-2-breaks-bootable-backups-update-2024-12-23\">Update (2024-12-23): <a href=\"https:\/\/tidbits.com\/2024\/12\/23\/its-time-to-move-on-from-bootable-backups\/\">Adam Engst<\/a>:<\/p>\n<blockquote cite=\"https:\/\/tidbits.com\/2024\/12\/23\/its-time-to-move-on-from-bootable-backups\/\">\n<p>Finally, let&rsquo;s return to the question of updating or upgrading to macOS 15.2 Sequoia. Assuming you&rsquo;re willing to change any bootable backups to data-only backups, I think it&rsquo;s safe to proceed.<\/p>\n<\/blockquote>\n<p>But be careful if you&rsquo;re using Time Machine. I and others have seen some serious problems such as incorrectly pruning large quantities of old backups, errors completing Time Machine backups, and backups not running when you aren&rsquo;t at the Mac. I would keep at least one Time Machine drive with old backups <em>not<\/em> connected to a Mac running Sequoia.<\/p>\n\n<p id=\"macos-15-2-breaks-bootable-backups-update-2025-01-02\">Update (2025-01-02): <a href=\"https:\/\/atp.fm\/619\">John Siracusa<\/a> has the same take as me, that bootable backups are still useful because they save time and that it&rsquo;s not clear why copies made by ASR (Apple code copying a signed volume) would be insecure.<\/p>\n\n<p><a href=\"https:\/\/morrick.me\/archives\/9928\">Riccardo Mori<\/a>:<\/p>\n<blockquote cite=\"https:\/\/morrick.me\/archives\/9928\">\n<p>This gradual move away from bootable backups is part of Apple&rsquo;s <em>Mac OS lockdown procedure<\/em>, as I&rsquo;d like to call it. It&rsquo;s all disguised as providing users with hardened security for their Macs, while effectively limiting their choices when it comes to managing machines they purchased and&nbsp;own.<\/p>\n<p>[&#8230;]<\/p>\n<p>I only have anecdata, but several people in my circle of friends and acquaintances have told me their experience with Migration Assistant &mdash; especially with recent Macs &mdash; hasn&rsquo;t been smooth at all, citing freezes and failure to transfer all the expected data. And it&rsquo;s not as fast as having a bootable cloned disk at hand in case of catastrophic failures. Well, in case of a catastrophic failure, like your Mac&rsquo;s internal SSD dying, you obviously can&rsquo;t transfer anything. Unless you have some backup lying around, you&rsquo;re done.<\/p>\n<\/blockquote>\n<p>Unfortunately, even with a bootable backup, Apple Silicon Macs won&rsquo;t boot at all if the internal storage doesn&rsquo;t work&mdash;again prioritizing security at all costs.<\/p>\n<blockquote cite=\"https:\/\/morrick.me\/archives\/9928\">\n<p>Whatever your opinion on this whole matter, there&rsquo;s an unescapable fact &mdash; recovering from a serious hardware failure or data loss used to be faster and simpler than it is now. Did it involve a lesser degree of security? Theoretically, yes. In practice, we accepted the security trade-off of being able to use a quicker, more &lsquo;open&rsquo; procedure to get back on track instead of having to jump through largely overkill security loops that ultimately create a lot of friction and encumbrance for the end user. A user who&rsquo;s simply dealing with data loss or hardware failures, with reasonably near-zero risk that &lsquo;some attacker&rsquo; may target their machine or information.<\/p>\n<\/blockquote>\n\n<p id=\"macos-15-2-breaks-bootable-backups-update-2025-01-28\">Update (2025-01-28): <a href=\"https:\/\/www.shirtpocket.com\/blog\/index.php\/shadedgrey\/happy_new_fix\/\">Dave Nanian<\/a>:<\/p>\n<blockquote cite=\"https:\/\/www.shirtpocket.com\/blog\/index.php\/shadedgrey\/happy_new_fix\/\">\n<p>macOS 15.3 is now out, and with it, a fix for the broken replicator.<\/p>\n<p>[&#8230;]<\/p>\n<p>Note that this does not mean boot from the copy will work in all situations (but, again, we have no control over that). But at least the copy can be made without (this) failure occurring.<\/p>\n<\/blockquote>\n\n<p>Previously:<\/p>\n<ul>\n<li><a href=\"https:\/\/mjtsai.com\/blog\/2025\/01\/27\/macos-15-3\/\">macOS 15.3<\/a><\/li>\n<\/ul>\n\n<p id=\"macos-15-2-breaks-bootable-backups-update-2025-02-10\">Update (2025-02-10): <a href=\"https:\/\/daringfireball.net\/2025\/02\/bootable_mac_startup_drive_backups_and_another_ode_to_superduper\">John Gruber<\/a> (<a href=\"https:\/\/mastodon.social\/@daringfireball\/113958530731715362\">Mastodon<\/a>):<\/p>\n<blockquote cite=\"https:\/\/daringfireball.net\/2025\/02\/bootable_mac_startup_drive_backups_and_another_ode_to_superduper\">\n<p>Because, my thinking went, if something catastrophic happened to my internal startup drive, and I was working on something urgent, I&rsquo;d want to get back up and working again as soon as possible. Rather than wait for MacOS Recovery to reinstall the OS on the internal drive and then wait for Migration Assistant to copy my data from my external drive to the clean install of MacOS on the internal drive, I could just boot from the external backup drive and get back to work immediately.<\/p>\n<p>[&#8230;]<\/p>\n<p>If the startup drive on a production machine fails, they need to get up and running <em>now<\/em>. Plug in a backup drive, restart, and go. Anything longer than that is unacceptable.<\/p>\n\n<p>That&rsquo;s not me. That&rsquo;s probably not you. But there are a lot of people whose work environment that describes. For as much as Apple Silicon Macs have become iOS-like devices in many ways, they&rsquo;re still Macs at heart: workstations.<\/p>\n<\/blockquote>","protected":false},"excerpt":{"rendered":"<p>Dave Nanian (Mastodon, 2, Hacker News): Apple broke the replicator. Towards the end of replicating the Data volume, seemingly when it&rsquo;s about to copy either Preboot or Recovery, it fails with a Resource Busy error.In the past, Resource Busy could be worked around by ensuring the system was kept awake. But this new bug means, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"apple_news_api_created_at":"2024-12-16T19:18:57Z","apple_news_api_id":"0f30b794-e2d1-469c-9797-50aaced33d6f","apple_news_api_modified_at":"2025-02-10T15:00:31Z","apple_news_api_revision":"AAAAAAAAAAAAAAAAAAAAEA==","apple_news_api_share_url":"https:\/\/apple.news\/ADzC3lOLRRpyXl1CqztM9bw","apple_news_coverimage":0,"apple_news_coverimage_caption":"","apple_news_is_hidden":false,"apple_news_is_paid":false,"apple_news_is_preview":false,"apple_news_is_sponsored":false,"apple_news_maturity_rating":"","apple_news_metadata":"\"\"","apple_news_pullquote":"","apple_news_pullquote_position":"","apple_news_slug":"","apple_news_sections":"\"\"","apple_news_suppress_video_url":false,"apple_news_use_image_component":false,"footnotes":""},"categories":[2],"tags":[146,131,30,2598,2342,174,369],"class_list":["post-46164","post","type-post","status-publish","format-standard","hentry","category-technology","tag-backup","tag-bug","tag-mac","tag-macos-15-sequoia","tag-sloth","tag-storage","tag-superduper"],"apple_news_notices":[],"_links":{"self":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts\/46164","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/comments?post=46164"}],"version-history":[{"count":18,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts\/46164\/revisions"}],"predecessor-version":[{"id":46684,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/posts\/46164\/revisions\/46684"}],"wp:attachment":[{"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/media?parent=46164"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/categories?post=46164"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mjtsai.com\/blog\/wp-json\/wp\/v2\/tags?post=46164"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}