X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/822b670c6f91d089ccb51b77e24b6ac80406b337..dd5fb164cf5b32c462296bc65e289e100f74b59a:/OSX/libsecurity_ssl/lib/SecureTransportPriv.h?ds=sidebyside

diff --git a/OSX/libsecurity_ssl/lib/SecureTransportPriv.h b/OSX/libsecurity_ssl/lib/SecureTransportPriv.h
index 703a8e74..4df1cbc3 100644
--- a/OSX/libsecurity_ssl/lib/SecureTransportPriv.h
+++ b/OSX/libsecurity_ssl/lib/SecureTransportPriv.h
@@ -146,6 +146,7 @@ SSLGetClientSideAuthenticate (
 	SSLContextRef	context,
 	SSLAuthenticate	*auth);					// RETURNED
 
+#if !TARGET_OS_IPHONE
 /*
  * Get/set array of trusted leaf certificates.
  *
@@ -161,7 +162,7 @@ OSStatus
 SSLCopyTrustedLeafCertificates (
 	SSLContextRef	context,
 	CFArrayRef 		*certRefs);				// RETURNED, caller must release
-
+#endif
 /*
  * Get/set enable of anonymous ciphers. This is deprecated and now a no-op.
  */
@@ -375,10 +376,10 @@ extern OSStatus SSLGetClientAuthTypes(
    unsigned *numTypes);							/* IN/OUT */
 
 /*
- * Obtain the SSLClientAuthenticationType actually performed.
- * Only valid if client certificate state is kSSLClientCertSent
- * or kSSLClientCertRejected; SSLClientAuthNone is returned as
- * the negotiated auth type otherwise.
+ * -- DEPRECATED -- 
+ * This is not actually useful. Currently return errSecUnimplemented.
+ * The client auth type is fully determined by the type of private key used by
+ * the client.
  */
 extern OSStatus SSLGetNegotiatedClientAuthType(
    SSLContextRef ctx,
@@ -440,25 +441,6 @@ OSStatus SSLSetDHEEnabled(SSLContextRef ctx, bool enabled);
 
 OSStatus SSLGetDHEEnabled(SSLContextRef ctx, bool *enabled);
 
-extern const CFStringRef kSSLSessionConfig_default;
-extern const CFStringRef kSSLSessionConfig_ATSv1;
-extern const CFStringRef kSSLSessionConfig_ATSv1_noPFS;
-extern const CFStringRef kSSLSessionConfig_legacy;
-extern const CFStringRef kSSLSessionConfig_standard;
-extern const CFStringRef kSSLSessionConfig_RC4_fallback;
-extern const CFStringRef kSSLSessionConfig_TLSv1_fallback;
-extern const CFStringRef kSSLSessionConfig_TLSv1_RC4_fallback;
-extern const CFStringRef kSSLSessionConfig_legacy_DHE;
-
-OSStatus
-SSLSetSessionConfig(SSLContextRef context,
-                    CFStringRef config);
-
-OSStatus
-SSLGetSessionConfig(SSLContextRef context,
-                    CFStringRef *config);
-
-
 #if TARGET_OS_IPHONE
 
 /* Following are SPIs on iOS */
@@ -756,6 +738,13 @@ _SSLDisposeContext			(SSLContextRef		context);
 
 #endif /* TARGET_OS_IPHONE */
 
+/*
+ * Map the SSLProtocol enum to an enum capturing the wire format (coreTLS) version.
+ */
+#define SECURITY_HAS_TLS_VERSION_TRANSLATOR 1
+tls_protocol_version
+_SSLProtocolVersionToWireFormatValue   (SSLProtocol protocol);
+
 
 /*
  * Create a new Datagram TLS session context.
@@ -843,16 +832,6 @@ SSLGetALPNData				(SSLContextRef      context,
 
 // end of ALPN
 
-OSStatus
-SSLCopyRequestedPeerName	(SSLContextRef		context,
-                             char			*peerName,
-                             size_t				*peerNameLen);
-
-OSStatus
-SSLCopyRequestedPeerNameLength	(SSLContextRef		ctx,
-                                 size_t				*peerNameLen);
-
-
 #ifdef __cplusplus
 }
 #endif