Security-58286.20.16.tar.gz

[apple/security.git] / OSX / libsecurity_ssl / lib / SecureTransportPriv.h
diff --git a/OSX/libsecurity_ssl/lib/SecureTransportPriv.h b/OSX/libsecurity_ssl/lib/SecureTransportPriv.h

index 703a8e749d858af2768ef881c39df39193237aab..4df1cbc31bf0eb49ba4e65223b230da63f4fa3da 100644 (file)
--- a/OSX/libsecurity_ssl/lib/SecureTransportPriv.h
+++ b/OSX/libsecurity_ssl/lib/SecureTransportPriv.h
@@ -146,6 +146,7 @@ SSLGetClientSideAuthenticate (
         SSLContextRef   context,
         SSLAuthenticate *auth);                                 // RETURNED
  
         SSLContextRef   context,
         SSLAuthenticate *auth);                                 // RETURNED
  
+#if !TARGET_OS_IPHONE
  /*
   * Get/set array of trusted leaf certificates.
   *
  /*
   * Get/set array of trusted leaf certificates.
   *
@@ -161,7 +162,7 @@ OSStatus
  SSLCopyTrustedLeafCertificates (
         SSLContextRef   context,
         CFArrayRef              *certRefs);                             // RETURNED, caller must release
  SSLCopyTrustedLeafCertificates (
         SSLContextRef   context,
         CFArrayRef              *certRefs);                             // RETURNED, caller must release
-
+#endif
  /*
   * Get/set enable of anonymous ciphers. This is deprecated and now a no-op.
   */
  /*
   * Get/set enable of anonymous ciphers. This is deprecated and now a no-op.
   */
@@ -375,10 +376,10 @@ extern OSStatus SSLGetClientAuthTypes(
     unsigned *numTypes);                                                        /* IN/OUT */
  
  /*
     unsigned *numTypes);                                                        /* IN/OUT */
  
  /*
- * Obtain the SSLClientAuthenticationType actually performed.
- * Only valid if client certificate state is kSSLClientCertSent
- * or kSSLClientCertRejected; SSLClientAuthNone is returned as
- * the negotiated auth type otherwise.
+ * -- DEPRECATED -- 
+ * This is not actually useful. Currently return errSecUnimplemented.
+ * The client auth type is fully determined by the type of private key used by
+ * the client.
   */
  extern OSStatus SSLGetNegotiatedClientAuthType(
     SSLContextRef ctx,
   */
  extern OSStatus SSLGetNegotiatedClientAuthType(
     SSLContextRef ctx,
@@ -440,25 +441,6 @@ OSStatus SSLSetDHEEnabled(SSLContextRef ctx, bool enabled);
  
  OSStatus SSLGetDHEEnabled(SSLContextRef ctx, bool *enabled);
  
  
  OSStatus SSLGetDHEEnabled(SSLContextRef ctx, bool *enabled);
  
-extern const CFStringRef kSSLSessionConfig_default;
-extern const CFStringRef kSSLSessionConfig_ATSv1;
-extern const CFStringRef kSSLSessionConfig_ATSv1_noPFS;
-extern const CFStringRef kSSLSessionConfig_legacy;
-extern const CFStringRef kSSLSessionConfig_standard;
-extern const CFStringRef kSSLSessionConfig_RC4_fallback;
-extern const CFStringRef kSSLSessionConfig_TLSv1_fallback;
-extern const CFStringRef kSSLSessionConfig_TLSv1_RC4_fallback;
-extern const CFStringRef kSSLSessionConfig_legacy_DHE;
-
-OSStatus
-SSLSetSessionConfig(SSLContextRef context,
-                    CFStringRef config);
-
-OSStatus
-SSLGetSessionConfig(SSLContextRef context,
-                    CFStringRef *config);
-
-
  #if TARGET_OS_IPHONE
  
  /* Following are SPIs on iOS */
  #if TARGET_OS_IPHONE
  
  /* Following are SPIs on iOS */
@@ -756,6 +738,13 @@ _SSLDisposeContext                 (SSLContextRef          context);
  
  #endif /* TARGET_OS_IPHONE */
  
  
  #endif /* TARGET_OS_IPHONE */
  
+/*
+ * Map the SSLProtocol enum to an enum capturing the wire format (coreTLS) version.
+ */
+#define SECURITY_HAS_TLS_VERSION_TRANSLATOR 1
+tls_protocol_version
+_SSLProtocolVersionToWireFormatValue   (SSLProtocol protocol);
+
  
  /*
   * Create a new Datagram TLS session context.
  
  /*
   * Create a new Datagram TLS session context.
@@ -843,16 +832,6 @@ SSLGetALPNData                             (SSLContextRef      context,
  
  // end of ALPN
  
  
  // end of ALPN
  
-OSStatus
-SSLCopyRequestedPeerName       (SSLContextRef          context,
-                             char                      *peerName,
-                             size_t                            *peerNameLen);
-
-OSStatus
-SSLCopyRequestedPeerNameLength (SSLContextRef          ctx,
-                                 size_t                                *peerNameLen);
-
-
  #ifdef __cplusplus
  }
  #endif
  #ifdef __cplusplus
  }
  #endif