-
Notifications
You must be signed in to change notification settings - Fork 44
-
Notifications
You must be signed in to change notification settings - Fork 44
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
No OTA updates available for some SMBIOS, T2 related, server side, also for all SMBIOS with VMM flag #1769
Comments
We heard about this issue, but do not have the resources to investigate it in the nearest future. Help is wanted to provide us with the solution. |
I was sure you were informed about this, I opened this just to keep track of the issue. |
have you tried setting securebootmodel to default? |
No, but default now falls back to x86legacy instead of that of imacpro, so there shouldn't be any difference. Edit/update: sorry, it was always set to Default |
oc 0.7.2 ota update from beta 5 to beta 6, found by setting securebootmodel to default in my hacks with smbios macmini 8.1 and imac 20.1 and macbook pro 16.2 |
I think there are two separate issues here:
I explored boot.efi from macOS 12 and provided an update in acidanthera/OpenCorePkg@239c1a5. Please check the following scenarios with
|
Thank you very much, I need some time to download the install assistant of beta 5 (I have only b4 and b6 full installers); I will clean install b4, upgrade to b5 with the install assistant and try the ota to b6 (or make a full installer from the b5 install assistant and try the ota to b6). In the meantime: Will be back in a few hours. |
Tested this (2): SecureBootModel=Default 2. Whether issue (2) is present. There is a chance it got fixed, though I doubt it. 3. Whether macOS 11 boots fine. There should be no change here. 4. Whether macOS 12 boots fine. There should be no change here. |
Need to test 1. This is important as a first step. |
I'd like to also address the fact that with configurations such as:
There's no way to bless the disk or install from webrecovery (hence boot macOS) as described in the past (April), in this post on AppleLife where the error "Unable to verify macOS" appears when finishing a download from webrecovery (note: these tests were made on Big Sur, not on Catalina, which requires a hack from the terminal - and it's something which should not happen on > 10.15, since the configuration.pdf says only on 10.15 and below) This means that since the only way to update from Softwareupdate on macOS 12 and newer is to use x86legacy, for now ApECID cannot be nonzero on any configuration. On Big Sur, one could boot with SecureBootModel = j185 and a custom ApECID, installing from webrecovery. But this won't work on macOS 12 currently But for now, yes, it's better to test |
Tested this (1): SecureBootModel=Default 1. Whether issue (1) is present. I hope to have addressed it. |
Are you sure? This has never been an issue. Maybe needs pressing CMD+R. |
Yes, quite sure, I checked SIP and authenticated root were enabled (no apple internal), I resetted nvram, I checked the system is iMac19,1, I checked my internet connection worked, I rebooted several times after each try, I refreshed the system preference panel, but no update is showing. Can share config with smbios data, it's only for testing |
Does the update show with AppleSecureBoot set to Disabled? (no need to update). Also please provide the DEBUG log from OC. @khronokernel this does not line with your comments, what can you say on that? |
Issue 1 is not correct. I have never got an update failure with 19,1 which I always used this SMBIOS. SIP: Default |
With Default AppleSecureBootModel? |
@vit9696 i have some friend with z390 with smbios imac19,1 and SecureBootModel set to Disabled and the update is show with Default isn't show |
Are you sure these people updated to acidanthera/OpenCorePkg@239c1a5 however? |
This is weird. I am using TUF Z390, 9900K, UHD 630 with 19,1, and SecureBootModel Disabled or Default always worked for me. And I didn't early update my OC this month. I am still using the Release version of OC 0.7.2. My last update of macOS, yesterday night was with public beta 5 SecureBootModel: Default. |
Disabled or Default doesn't make any difference for me on iMac19,1 smbios, no update is shown. |
@82ghost82 could you please share your "diskutil apfs list" Maybe your seal is broken? Also try this; |
Volume is sealed, and unfortunately I already tried what you wrote, except downgrading opencore, which I'm running with this commit (d2ba13b). |
Retest with build from https://github.com/acidanthera/OpenCorePkg/runs/3511625931 |
Thanks SecureBootModel=Default SecureBootModel=Disabled |
I must say that I had beta 6 not showing. So I used SWUSwitcher. I switched to the "Regular Updates" and then back to the "Developer Program Members". And then the update was showing for me. Some friends of me got it working this way too. But this can probably not really help you... Edit: According to apple's website this smbios doesn't have a t2 chip. I heard from a friend that has some i9 9900k and uses imac20,1 that he was needed to do a clean install from an usb disk. SWUSwitcher didn't work for him. So I can confirm this issue |
Thank you for your contribution. But which version of oc?Tomorrow I will try to downgrade opencore (I will try 0.7.2 release, as it seems some are reporting to get the ota delta update?) to see if I can find the culprit..may be also related to virtualization environment, not paid access to developer program or other.. As reported by others, the fact that the update doesn't show for imac 20,1 is not a surprise, strange thing is that it's not showing with imac 19,1, which doesn't have T2. |
I use oc 0.7.2 but I downloaded that before the release. So I have an older commit of 0.7.2 |
Tried also 0.7.2 release with iMac19,1 smbios, SecureBootModel Default/Disabled/x86legacy, clear nvram at each change, unenroll/enroll DeveloperSeed, tried the public beta utility once logged in with apple id, tried the developer seed utility downloaded elsewhere, deleted/not deleted csr-active-config entry in config.plist (in both cases sip enabled - not apple internal): nothing, no luck, that damn update is not showing...and since I trust you all there should be something new introduced, or can be my error (possible, yes, but trust me I checked and rechecked a lot of times, and since now I always updated with delta ota, so I know what to check, it's not the first time). Can I ask you if it's normal the red dot in the following picture? You can access that window from system preference panel --> software update --> advanced; I cannot select neither Train/profile and show preliminary updates. |
Yes, that's because it's public beta and not developer seed. Here also the system softwareupdated log when trigging the software update with cmd+r |
useless comment, if the team thought it was a user error they had already closed the issue. |
Even worse, I reinstalled beta 4, from which in the past I updated via delta ota and the update doesn't show even there..oc release 0.7.2, iMac19,1, SecureBootModel Disabled or Default. |
For those with T2 based SMBIOS, can you please test the below PR with OpenCorePkg 0.7.3: Follow the directions closely, and verify whether Beta 6 in Software Update installs correctly on your machine in the following scenarios:
I have confirmed myself that the update shows on an iMacPro1,1 SMBIOS in Beta 5, however installation needs to be verified. Please note, this is not a permanent fix, instead a temporary one to give Dhinak, myself and other developers a bit more time to research a proper fix. Ideally we'd like to have T2 model IDs work in Monterey so none of this userspace patching is required. |
Thank you very much @khronokernel and to all who contributed and are contributing.
Update2: sorry, retesting, I just read instructions!! |
It works for me with imacpro1,1 under qemu with securebootmodel=x86legacy! Starting from beta 4, before nothing was shown. Trying to install from delta ota. UPDATE 3: testing now installation with imacpro1,1 under qemu with securebootmodel=Disabled (khronokernel kext applied), from beta 5; the update is showing also in this case and the installation is fine also in this case. Need to retest also with imac19,1 because I noticed that I had some issue with imacpro1,1 to apply the modifications, which were solved by replacing ovmf files with fresh ones, will try again by replacing these and report back. UPDATE 2: I confirm no update is showing for iMac19,1 (with no khronokernel solution applied), from beta 5: most probably related to this comment: This explains why for some (the majority) the update is showing whilst for others, like me, is not showing, because, yes, I have the VMM flag; until Big Sur (11.4?) it was possible to simply patch with OC, by renaming VMM to XXX or something else, now that simple patch doesn't work anymore (at least to enable cache content on vm). Need to try that patch (next test), not sure it's enough that the VMM flag is not in Cpuid features, will report back. I tested also imac19,1 with securebootmodel Default, no khronokernel kext, patch (rename) VMM to XXX, and in this case update is not showing (from beta 5). Moreover, from @parrotgeek1 They should focus on fixing their bugs instead of thinking at how to block opencore.... |
Unfortunately after further research we've found that Pallas has multiple T2 model checks. The above PR only patches the initial T2 model check to report OS updates, afterwards there's an additional check for the actual installation of the delta update. Where this additional T2 check is completely unknown, further research needed. |
@khronokernel |
|
I suggest to calm down for the time being. Given that VMM updates are obviously broken, I believe Apple is making heavy changes in the subsystem. I would speculate that if this is true, we should be able to observe these changes in 2-3 seeds from now. Even if the issue does not get fixed by itself, it will be much easier for us to investigate a more polished code. As a workaround you should be able to update by downloading a complete installer with the |
Hello,
I'm testing monterey and I noticed no ota update available from beta 5 to beta 6.
I thought about an error on my end, even if I verified multiple times, then I upgraded from a full installer.
Today I noticed this, opened by @khronokernel and well explained:
dortania/OpenCore-Legacy-Patcher#471
I know you don't support betas, but my feeling is that this won't change with next versions.
The text was updated successfully, but these errors were encountered: