This did not work for me. Could there be a hidden local file that is reporting the revoked signature, without using the crl database? Restoring a specific file to an earlier version via Time Machine is much more preferable than the entire system, which will likely take days over Ethernet.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
MP 1,1-5,1 Cannot install or use Nvidia Webdrivers anymore!
- Thread starter flyproductions
- WikiPost WikiPost
- Start date
- Sort by reaction score
- Status
This did not work for me. Could there be a hidden local file that is reporting the revoked signature, without using the crl database? Restoring a specific file to an earlier version via Time Machine is much more preferable than the entire system, which will likely take days over Ethernet.
I made it work, fingers crossed, and as always I am not even sure what did I do differently. Only tested on my OpenCore 0.8.0, single Nvidia GPU hackintosh so far, not on my genuine Apple machines. After following every suggestion out there and combining things for days, being in despair, I tried stupid things as well. I don't know or remember what exactly fixed the issue. Maybe because I blocked ocsp.digicert.com alongside the ocsp.apple.com and ocsp2.apple.com in the hosts file, maybe because I first manually (by copying in /S/L/E and /L/E then using Kext Utility to fix permissions and caches) installed a previous version of Nvidia Web Drivers that was not compatible with 17G14042, rebooted and then installing 387.10.10.10.40.140 (no need to remove signatures).
Anyway, this was an eye-opening experience for me. I knew a day would come that I would need to move on but I didn't expect to come this way. Checking these days again about later MacOS versions than High Sierra, I realised how user-restrictive, bloated, sneaky, and non-sensical recent OSes have become. And I can't trust HS (or Apple) either now. I am considering going with Linux full time. The heck with the creativity software, I will run a VM if I need Photoshop. Maybe keep a MacBook for presentations and that's it.
Anyway, this was an eye-opening experience for me. I knew a day would come that I would need to move on but I didn't expect to come this way. Checking these days again about later MacOS versions than High Sierra, I realised how user-restrictive, bloated, sneaky, and non-sensical recent OSes have become. And I can't trust HS (or Apple) either now. I am considering going with Linux full time. The heck with the creativity software, I will run a VM if I need Photoshop. Maybe keep a MacBook for presentations and that's it.
You must specify which step generates an error, and which error specifically. There’s no telling if the solution will work for anything than 387.10.10.10.40.140 on 17G1404, and if you tried to strip signatures or in any other way tamper with the installed package files, it’s gonna break just because of that. That means you must roll the whole system back to an untampered—even if already affected—state.
Scrap(p)ing the web driver files with UninstallPkg while in Safe Mode might be an alternative to rolling back everything. Then do the suggested blocking routine, boot into desktop in VESA mode (not sure if Safe Mode will let you install drivers, you may want to try that as well), reinstall drivers; in this case, setting a date before the first of June might indeed be necessary. No idea if .pkg’s with expired signatures will allow to install past the expiry date.
Yeah, it’s the cache that you flush with that ‘rm -f’ command.
Last edited:
Apple and Nvidia's childish legal squabbe, that has hamstrung users to High Sierra but were sold Mac Pro's specifically due to their modular upgrade-ablity, shows an appalling disrespect for their own users and corporate greed.
If it turns out that this latest issue was connected and a deliberate act of global mass vandalism of users machines, somebody with a legal mind should be following this thread and be thinking class action for damages.
If it turns out that this latest issue was connected and a deliberate act of global mass vandalism of users machines, somebody with a legal mind should be following this thread and be thinking class action for damages.
Expired signatures do not warrant blacklisting by Apple, but once it’s expired, it legally lands at Apple’s pleasure whether to block it or not.
It’s been a known fact (for a while) that Apple has refused to sign anything by Nvidia since Mojave beta was around, and once a signature is expired Apple is in their right to blacklist it immediately. Web drivers for High Sierra continued getting signed with the certificate that fizzled out on June the 1st. Apparently it had legal strings attached so Apple just let it expire to avoid any legal issues.
Adobe Photoshop CC 2017 runs perfectly in Wine, and you may have luck running later versions with wine-staging or Crossover engines (you don’t even have to buy or install Crossover to get those)
appdb.winehq.org
It’s been a known fact (for a while) that Apple has refused to sign anything by Nvidia since Mojave beta was around, and once a signature is expired Apple is in their right to blacklist it immediately. Web drivers for High Sierra continued getting signed with the certificate that fizzled out on June the 1st. Apparently it had legal strings attached so Apple just let it expire to avoid any legal issues.
Adobe Photoshop CC 2017 runs perfectly in Wine, and you may have luck running later versions with wine-staging or Crossover engines (you don’t even have to buy or install Crossover to get those)
WineHQ - Adobe Photoshop CC 2017 (17.0)
Open Source Software for running Windows applications on other operating systems.
appdb.winehq.org
Last edited:
It might be Apple's 'right', according to legal small print burried somewhere, that they can choose to vandalise our machines and switch off critical functionality without warning, however it is deeply unethical.
I am not a legal expert, but Judges often do look at what is a reasonble expectation by a consumer. My Mac Pro was an extremely expensive purchase for me 10 years ago and was marketed and sold as being supremely upgradeable due to it's modular design. For Apple to deliberately inhibit a users choice of GPU and now (potentially) switch off critical functionality to a still perfectly capable machine, suggests anti-competative practices and that the machine was mis-sold as 'upgrade-able' in the first place.
Apple continues to dig itself deeper into a pit of controversy over designing-in obsolcence and unrepairable products. Such a shame for a company who otherwise are pioneers of innovation. Steve Jobs must be turning in his grave.
P.S. Thanks eiefrucht for the tips on your workaround, will try again.
I could have missed them, but I do think it is interesting that I am unable to find any current posts in Apple support communities regarding this problem. Has anyone here found anything there?
I just tried a little app very usefull once you found the webdriver for your OS : Webdriver All Version . ON hackintosh montreal.
But i've got no way to find the driver for that ****ing 17G66 .Even the last one is not recognised by my osx version. I've tried a lot of themen. None . Only this one matched before with my mac Nvidia Web Driver - 387.10.10.10.40.105 --> build 17G65. Got the same problem with cuda driver ... It would be the next level
SO I'm going to install the 17G65 back on that mac pro 3.1 and then I'll try to make again( 5Oth Times) the process. Thank you for the information you gave me about what to do in wich mode . May be that was the problem. I'll try it as soon as my head is getting cold again. Hope that will be usefull . Thanks
But i've got no way to find the driver for that ****ing 17G66 .Even the last one is not recognised by my osx version. I've tried a lot of themen. None . Only this one matched before with my mac Nvidia Web Driver - 387.10.10.10.40.105 --> build 17G65. Got the same problem with cuda driver ... It would be the next level
SO I'm going to install the 17G65 back on that mac pro 3.1 and then I'll try to make again( 5Oth Times) the process. Thank you for the information you gave me about what to do in wich mode . May be that was the problem. I'll try it as soon as my head is getting cold again. Hope that will be usefull . Thanks
Djgadget you haven’t told us what is the error you were getting. If all the terminal commands generated no error messages it’s a mystery why it wouldn't have worked.
Well, if Gatekeeper quarantines a file containing executable code, it’s not gonna launch unless manually un-Quarantined. But that’s a hassle, ditching then reinstalling the drivers seems like an easier path.
I have no idea if Gatekeeper will Quarantine installed kexts and prefpanes. For kexts, it’s the signature blacklist and not the Quarantine attribute that’s supposed to block malicious executables. Since I keep Gatekeeper off I haven’t had the chance to test if it splatters Quarantine all over any kexts that were previously blacklisted due to Apple hating their signature.
Well, if Gatekeeper quarantines a file containing executable code, it’s not gonna launch unless manually un-Quarantined. But that’s a hassle, ditching then reinstalling the drivers seems like an easier path.
I have no idea if Gatekeeper will Quarantine installed kexts and prefpanes. For kexts, it’s the signature blacklist and not the Quarantine attribute that’s supposed to block malicious executables. Since I keep Gatekeeper off I haven’t had the chance to test if it splatters Quarantine all over any kexts that were previously blacklisted due to Apple hating their signature.
Thank you So much!This brought me back to life! I was trying all sort of things, I didn’t realize booting into safe mode was such an essential step for my system...not part of other solutions I tried.
for anyone curious what trustd is doing to the system behind the scenes, lsof is a really cool command line tool showing you a lot of stuff going on... find out the pid of trustd in activity monitor, open terminal type in “lsof -p (type in pid here with no parentheses)”
Last edited by a moderator:
If you have a different computer compatible with High Sierra, connect your disk to it and update to a higher version using Security Update to 1013.6I just tried a little app very usefull once you found the webdriver for your OS : Webdriver All Version . ON hackintosh montreal.
But i've got no way to find the driver for that ****ing 17G66 .Even the last one is not recognised by my osx version. I've tried a lot of themen. None . Only this one matched before with my mac Nvidia Web Driver - 387.10.10.10.40.105 --> build 17G65. Got the same problem with cuda driver ... It would be the next level
SO I'm going to install the 17G65 back on that mac pro 3.1 and then I'll try to make again( 5Oth Times) the process. Thank you for the information you gave me about what to do in wich mode . May be that was the problem. I'll try it as soon as my head is getting cold again. Hope that will be usefull . Thanks
Success! (So far) and I am very grateful eierfrucht
I am running Nvidia Web Driver 387.10.10.10.40.105 and Cuda Driver 418.163
MacOS 10.13.6 (17G65)
This time, with internet disconnected and in Safe Mode I uninstalled the Nvidia and Cuda drivers (using ClanMyMac), then did the blocks/refresh/time reset as-per your instructions, then re-installed the Nvidia & Cuda drivers (yes it let me).
After a restart to normal boot it’s back to normal. I am going to back-up this system before I risk reconnecting the internet, but so-far-so-good and no need to do the lengthy restore from Time Machine
Now getting this when I download the 387.10.10.10.40.140 from nVidia.
So I've removed the packages and the installer wont work, tried several times, something is wrong with the download. Also if I try to "xattr - cr" the driver .pkg to force it to allow it, the installation fails randomly.
Anyone else having problems with the driver .pkg?
Oh, and something about blocking stuff in hosts seems to have screwed up iTunes and Appstore. Thought it was just wanting reauthentication but they're still glitching and basically not working.
This mess has have rendered my main workstation utterly unusable. Years of being careful about things out the window.
*EDIT*
Just checked the Installation.log...
CSSMERR_TP_CERT_REVOKED
So, I'm guessing you need to tr with the date reset again.
Will report back...
So I've removed the packages and the installer wont work, tried several times, something is wrong with the download. Also if I try to "xattr - cr" the driver .pkg to force it to allow it, the installation fails randomly.
Anyone else having problems with the driver .pkg?
Oh, and something about blocking stuff in hosts seems to have screwed up iTunes and Appstore. Thought it was just wanting reauthentication but they're still glitching and basically not working.
This mess has have rendered my main workstation utterly unusable. Years of being careful about things out the window.
*EDIT*
Just checked the Installation.log...
CSSMERR_TP_CERT_REVOKED
So, I'm guessing you need to tr with the date reset again.
Will report back...
Thanks a lot .
But as I was saying before , if you do any update on a osx 10.13.6 Patched for unaprooved mac like mine 3.1 you kill the patched version and then you cannot do anything with it . It's broken for the old mac 3.1 . Tested yesturday . So i cannor make the security update on that OS Disk , even with the other mac wich is compatible with more than High Sierra
Has anyone reached out to Apple regarding this issue? There's a lot of talk from Nvidia's service team, but ultimately it's Apple that revoked the certification, and only they can issue new ones.
You can force the install using Pacifist 3.2.17
Make sure you repair permissions and update the kext caches after installing and BEFORE restarting. I use a program called Kext Utility that works nicely for this.
The 970 GTX is refused by the driver , the 780 GTX is ok . I definitely make a pause until tomorrow, or I’ll throw a bomb to apple and nvidia ,because of their stupid relationships and commercial politic
thank you all for all the tricks. I hope tomorrow we will find better than trash all ours cards
thank you all for all the tricks. I hope tomorrow we will find better than trash all ours cards
The driver was for me forced by WebDriver all Versions app . I succeed with an old one but never get the panel Nvidia with newest ones . Just forced but no loading at startup. The old one loads but buggy and freezy . No good at all. Apple is a mess with old prosumers
but buggy and freezy . No good at all. Apple is a mess with old prosumers
Last edited:
I would like to be able to use macOS through my GTX 970 while we wait for a possible resolution of this problem.
Is it the case that this command in the Terminal in Safe Boot will allow unaccelerated use of the 970 in macOS?
sudo nvram boot-args="nv_disable=1 $(nvram boot-args 2>/dev/null | cut -f 2-)"
And if so, could someone explain what the second half of the command does:
$(nvram boot-args 2>/dev/null | cut -f 2-)
Thanks.
Is it the case that this command in the Terminal in Safe Boot will allow unaccelerated use of the 970 in macOS?
sudo nvram boot-args="nv_disable=1 $(nvram boot-args 2>/dev/null | cut -f 2-)"
And if so, could someone explain what the second half of the command does:
$(nvram boot-args 2>/dev/null | cut -f 2-)
Thanks.
It adds the first part to any existing boot args.
Without this, existing boot args will be replaced by, that is, set to, the first part.
Try this. They are with a certificate deleted. They installed for me.
MyWebDriver-387.10.10.10.40.140.pkg.zip
1 file sent via WeTransfer, the simplest way to send your files around the world
Last edited:
Yeah CleanMyMac is really good at uninstalling, it even has a tool for rooting out rogue prefpanes and orphaned pkg leftovers.
I wish you had checked if Quarantine was applied to the kexts / prefpane. If so, we must update the solution with the uninstall action step (because manual un-quarantining is boring and about a dozen extra commands). Most people keep Gatekeeper on, unlike myself.
So it’s about an expired cert. Like I guessed, pkg’s with expired certificates might be unable to install even if already installed kexts/apps will continue running in an expired state unless explicitly put on the blacklist by Apple.
Please confirm this so that we no longer call the date trick an optional extra step but rather mark it as mandatory.
Safe mode is the easiest way of enforcing VESA over web drivers and that’s the sole reason why I recommend it. I still don’t know if you can (re)install the driver package while Safe, we need someone to confirm.
You definitely should find a way to install 17G1404, I can hardly believe that even if you have to run a heavily doctored out-of-spec system there’s no way to patch the latest installation image — even if incremental updates are legit impossible in your scenario. So far you seem beating about the bush and wasting your time. Stay away from the ‘Swiss Army Crutch’ sort of apps like the one so heavily featured in your posts, they all tend to do more harm than good.The driver was for me forced by WebDriver all Versions app . I succeed with an old one but never get the panel Nvidia with newest ones . Just forced but no loading at startup. The old one loads
As someone from the hackintosh crowd I also recall both are extremely sensitive to hardware acceleration. So maybe they are freaking out because VESA mode offers none? Like shutting down randomly and such like stuff. They also won’t work while time/date is incorrect. Same for iMessage, FaceTime, etc.
Last edited:
i have a GTx970 which isn’t working, so I’ve ordered a used 780ti to put in for now.The 970 GTX is refused by the driver , the 780 GTX is ok . I definitely make a pause until tomorrow, or I’ll throw a bomb to apple and nvidia ,because of their stupid relationships and commercial politic
thank you all for all the tricks. I hope tomorrow we will find better than trash all ours cards
View attachment 2014252 View attachment 2014253
Did you have to delete 970 drivers First? If so, how did you do it without Nbidia manager?
if I all the 780, would it just boot up? Or did you do anything else first?