X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/ce3c8656732c924baf7e88df75eab50891bdc471..fa7225c82381bac4432a6edf16f53b5370238d85:/OSX/lib/security.exp-in?ds=sidebyside diff --git a/OSX/lib/security.exp-in b/OSX/lib/security.exp-in index d308e7aa..637f8021 100644 --- a/OSX/lib/security.exp-in +++ b/OSX/lib/security.exp-in @@ -285,6 +285,8 @@ _SecCodeCopyDesignatedRequirement _SecCodeCopySigningInformation _SecCodeMapMemory _SecCodeSetDetachedSignature +_SecCodeCopyComponent +_SecCodeValidateFileResource _kSecCodeAttributeArchitecture _kSecCodeAttributeBundleVersion _kSecCodeAttributeSubarchitecture @@ -368,6 +370,11 @@ _kSecCodeInfoUnique _kSecCodeInfoCdHashes _kSecCodeInfoCodeDirectory _kSecCodeInfoCodeOffset +_kSecCodeInfoDiskRepInfo +_kSecCodeInfoDiskRepOSPlatform +_kSecCodeInfoDiskRepOSVersionMin +_kSecCodeInfoDiskRepOSSDKVersion +_kSecCodeInfoDiskRepNoLibraryValidation _kSecCodeInfoResourceDirectory _kSecGuestAttributeCanonical _kSecGuestAttributeDynamicCode @@ -375,6 +382,7 @@ _kSecGuestAttributeDynamicCodeInfoPlist _kSecGuestAttributeHash _kSecGuestAttributeMachPort _kSecGuestAttributePid +_kSecGuestAttributeAudit _kSecRequirementKeyInfoPlist _kSecRequirementKeyEntitlements _kSecRequirementKeyIdentifier @@ -385,15 +393,18 @@ _kSecCFErrorResourceSeal _kSecCFErrorResourceAdded _kSecCFErrorResourceAltered _kSecCFErrorResourceMissing +_kSecCFErrorResourceSideband _kSecCFErrorInfoPlist _kSecCFErrorGuestAttributes _kSecCFErrorRequirementSyntax -_SecTaskGetTypeID _SecTaskCreateWithAuditToken _SecTaskCreateFromSelf _SecTaskCopyValueForEntitlement _SecTaskCopyValuesForEntitlements +_SecTaskCopySigningIdentifier +_SecTaskGetCodeSignStatus +_SecTaskGetTypeID _SecTaskValidateForRequirement _SecAssessmentCreate @@ -444,6 +455,7 @@ _kSecAssessmentRuleKeyType _kSecAssessmentRuleKeyExpires _kSecAssessmentRuleKeyDisabled _kSecAssessmentRuleKeyBookmark +_kSecAssessmentContextKeyPrimarySignature // // libsecurity_cssm @@ -1124,13 +1136,16 @@ _kSecClassKey _kSecClassIdentity _kSecAttrAccess _kSecAttrAccessGroup +_kSecAttrAccessGroupToken _kSecAttrAccessible _kSecAttrAccessibleWhenUnlocked _kSecAttrAccessibleAfterFirstUnlock _kSecAttrAccessibleAlways +_kSecAttrAccessibleAlwaysPrivate _kSecAttrAccessibleWhenUnlockedThisDeviceOnly _kSecAttrAccessibleAfterFirstUnlockThisDeviceOnly _kSecAttrAccessibleAlwaysThisDeviceOnly +_kSecAttrAccessibleAlwaysThisDeviceOnlyPrivate _kSecAttrAccessibleWhenPasscodeSetThisDeviceOnly _kSecAttrCreationDate _kSecAttrModificationDate @@ -1195,20 +1210,12 @@ _kSecAttrSynchronizable _kSecAttrSynchronizableAny _kSecAttrSyncViewHint _kSecAttrTokenID +_kSecAttrTokenOID +_kSecAttrTokenIDSecureEnclave _kSecAttrTombstone -_kSecAttrViewHintPCSMasterKey -_kSecAttrViewHintPCSiCloudDrive -_kSecAttrViewHintPCSPhotos -_kSecAttrViewHintPCSCloudKit -_kSecAttrViewHintPCSEscrow -_kSecAttrViewHintPCSFDE -_kSecAttrViewHintPCSMailDrop -_kSecAttrViewHintPCSiCloudBackup -_kSecAttrViewHintPCSNotes -_kSecAttrViewHintPCSiMessage -_kSecAttrViewHintAppleTV -_kSecAttrViewHintHomeKit -_kSecAttrViewHintThumper +#include "Security/SecureObjectSync/SOSViews.exp-in" +_kSecAttrMultiUser +_kSecUseTombstones _kSecMatchPolicy _kSecMatchItemList _kSecMatchSearchList @@ -1279,6 +1286,73 @@ _kSecAttrKeyClassPrivate _kSecAttrKeyClassSymmetric _kSecPrivateKeyAttrs _kSecPublicKeyAttrs +_kSecKeyAlgorithmRSASignatureRaw +_kSecKeyAlgorithmRSASignatureRawCCUnit +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15Raw +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15MD5 +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15SHA1 +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15SHA224 +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15SHA256 +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15SHA384 +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15SHA512 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15MD5 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15SHA1 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15SHA224 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15SHA256 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15SHA384 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15SHA512 +_kSecKeyAlgorithmECDSASignatureRFC4754 +_kSecKeyAlgorithmECDSASignatureDigestX962 +_kSecKeyAlgorithmECDSASignatureDigestX962SHA1 +_kSecKeyAlgorithmECDSASignatureDigestX962SHA224 +_kSecKeyAlgorithmECDSASignatureDigestX962SHA256 +_kSecKeyAlgorithmECDSASignatureDigestX962SHA384 +_kSecKeyAlgorithmECDSASignatureDigestX962SHA512 +_kSecKeyAlgorithmECDSASignatureMessageX962SHA1 +_kSecKeyAlgorithmECDSASignatureMessageX962SHA224 +_kSecKeyAlgorithmECDSASignatureMessageX962SHA256 +_kSecKeyAlgorithmECDSASignatureMessageX962SHA384 +_kSecKeyAlgorithmECDSASignatureMessageX962SHA512 +_kSecKeyAlgorithmRSAEncryptionRaw +_kSecKeyAlgorithmRSAEncryptionRawCCUnit +_kSecKeyAlgorithmRSAEncryptionPKCS1 +_kSecKeyAlgorithmRSAEncryptionOAEPSHA1 +_kSecKeyAlgorithmRSAEncryptionOAEPSHA224 +_kSecKeyAlgorithmRSAEncryptionOAEPSHA256 +_kSecKeyAlgorithmRSAEncryptionOAEPSHA384 +_kSecKeyAlgorithmRSAEncryptionOAEPSHA512 +_kSecKeyAlgorithmRSAEncryptionOAEPSHA1AESGCM +_kSecKeyAlgorithmRSAEncryptionOAEPSHA224AESGCM +_kSecKeyAlgorithmRSAEncryptionOAEPSHA256AESGCM +_kSecKeyAlgorithmRSAEncryptionOAEPSHA384AESGCM +_kSecKeyAlgorithmRSAEncryptionOAEPSHA512AESGCM +_kSecKeyAlgorithmECDHKeyExchangeStandard +_kSecKeyAlgorithmECDHKeyExchangeStandardX963SHA1 +_kSecKeyAlgorithmECDHKeyExchangeStandardX963SHA224 +_kSecKeyAlgorithmECDHKeyExchangeStandardX963SHA256 +_kSecKeyAlgorithmECDHKeyExchangeStandardX963SHA384 +_kSecKeyAlgorithmECDHKeyExchangeStandardX963SHA512 +_kSecKeyAlgorithmECDHKeyExchangeCofactor +_kSecKeyAlgorithmECDHKeyExchangeCofactorX963SHA1 +_kSecKeyAlgorithmECDHKeyExchangeCofactorX963SHA224 +_kSecKeyAlgorithmECDHKeyExchangeCofactorX963SHA256 +_kSecKeyAlgorithmECDHKeyExchangeCofactorX963SHA384 +_kSecKeyAlgorithmECDHKeyExchangeCofactorX963SHA512 +_kSecKeyAlgorithmECIESEncryptionStandardX963SHA1AESGCM +_kSecKeyAlgorithmECIESEncryptionStandardX963SHA224AESGCM +_kSecKeyAlgorithmECIESEncryptionStandardX963SHA256AESGCM +_kSecKeyAlgorithmECIESEncryptionStandardX963SHA384AESGCM +_kSecKeyAlgorithmECIESEncryptionStandardX963SHA512AESGCM +_kSecKeyAlgorithmECIESEncryptionCofactorX963SHA1AESGCM +_kSecKeyAlgorithmECIESEncryptionCofactorX963SHA224AESGCM +_kSecKeyAlgorithmECIESEncryptionCofactorX963SHA256AESGCM +_kSecKeyAlgorithmECIESEncryptionCofactorX963SHA384AESGCM +_kSecKeyAlgorithmECIESEncryptionCofactorX963SHA512AESGCM +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15Raw +_kSecKeyAlgorithmRSASignatureDigestPKCS1v15MD5 +_kSecKeyAlgorithmRSASignatureMessagePKCS1v15MD5 +_kSecKeyKeyExchangeParameterRequestedSize +_kSecKeyKeyExchangeParameterSharedInfo _kSecImportExportPassphrase _kSecImportExportKeychain _kSecImportExportAccess @@ -1287,49 +1361,143 @@ _kSecImportItemKeyID _kSecImportItemTrust _kSecImportItemCertChain _kSecImportItemIdentity -_kSecPolicyAppleX509Basic -_kSecPolicyAppleSSL -_kSecPolicyAppleSMIME -_kSecPolicyAppleEAP -_kSecPolicyAppleSWUpdateSigning -_kSecPolicyApplePackageSigning -_kSecPolicyAppleIPsec -_kSecPolicyAppleiChat -_kSecPolicyApplePKINITClient -_kSecPolicyApplePKINITServer +_kSecPolicyAppleAST2DiagnosticsServerAuth +_kSecPolicyAppleATVVPNProfileSigning _kSecPolicyAppleCodeSigning -_kSecPolicyMacAppStoreReceipt +_kSecPolicyAppleEAP +_kSecPolicyAppleEscrowProxyCompatibilityServerAuth +_kSecPolicyAppleEscrowProxyServerAuth +_kSecPolicyAppleEscrowService +_kSecPolicyAppleExternalDeveloper +_kSecPolicyAppleFactoryDeviceCertificate +_kSecPolicyAppleFMiPServerAuth +_kSecPolicyAppleGenericApplePinned +_kSecPolicyAppleGenericAppleSSLPinned +_kSecPolicyAppleGSService +_kSecPolicyAppleHomeKitServerAuth +_kSecPolicyAppleiAP +_kSecPolicyAppleIDAuthority +_kSecPolicyAppleIDSService +_kSecPolicyAppleIDSServiceContext _kSecPolicyAppleIDValidation -_kSecPolicyAppleTimeStamping -_kSecPolicyAppleRevocation -_kSecPolicyApplePassbookSigning +_kSecPolicyAppleIDValidationRecordSigning +_kSecPolicyAppleIDValidationRecordSigningPolicy +_kSecPolicyAppleiPhoneActivation +_kSecPolicyAppleiPhoneApplicationSigning +_kSecPolicyAppleiPhoneDeviceCertificate +_kSecPolicyAppleiPhoneProfileApplicationSigning +_kSecPolicyAppleiPhoneProvisioningProfileSigning +_kSecPolicyAppleIPsec +_kSecPolicyAppleiTunesStoreURLBag +_kSecPolicyAppleLegacyPushService +_kSecPolicyAppleLockdownPairing +_kSecPolicyAppleMMCSCompatibilityServerAuth +_kSecPolicyAppleMMCSService +_kSecPolicyAppleMobileAsset _kSecPolicyAppleMobileStore -_kSecPolicyAppleEscrowService +_kSecPolicyAppleOCSPSigner +_kSecPolicyAppleOSXProvisioningProfileSigning +_kSecPolicyAppleOTAPKISigner +_kSecPolicyAppleOTATasking +_kSecPolicyApplePackageSigning +_kSecPolicyApplePassbookSigning +_kSecPolicyApplePayIssuerEncryption _kSecPolicyApplePCSEscrowService +_kSecPolicyApplePKINITClient +_kSecPolicyApplePKINITServer +_kSecPolicyApplePPQService +_kSecPolicyApplePPQSigning _kSecPolicyAppleProfileSigner +_kSecPolicyApplePushService _kSecPolicyAppleQAProfileSigner -_kSecPolicyAppleTestMobileStore +_kSecPolicyAppleRevocation _kSecPolicyAppleServerAuthentication -_kSecPolicyAppleATVAppSigning -_kSecPolicyAppleTestATVAppSigning -_kSecPolicyApplePayIssuerEncryption -_kSecPolicyAppleOSXProvisioningProfileSigning -_kSecPolicyAppleATVVPNProfileSigning -_kSecPolicyAppleAST2DiagnosticsServerAuth -_kSecPolicyOid -_kSecPolicyName +_kSecPolicyAppleSMIME +_kSecPolicyAppleSMPEncryption +_kSecPolicyAppleSoftwareSigning +_kSecPolicyAppleSSL +_kSecPolicyAppleSWUpdateSigning +_kSecPolicyAppleTestMobileStore +_kSecPolicyAppleTestOTAPKISigner +_kSecPolicyAppleTestPPQSigning +_kSecPolicyAppleTestSMPEncryption +_kSecPolicyAppleTimeStamping +_kSecPolicyAppleTVOSApplicationSigning +_kSecPolicyAppleUniqueDeviceIdentifierCertificate +_kSecPolicyAppleURLBag +_kSecPolicyAppleX509Basic +_kSecPolicyMacAppStoreReceipt +_kSecPolicyAppleAnchorIncludeTestRoots +_kSecPolicyCheckAnchorSHA1 +_kSecPolicyCheckAnchorSHA256 +_kSecPolicyCheckAnchorApple +_kSecPolicyCheckAnchorTrusted +_kSecPolicyCheckBasicCertificateProcessing +_kSecPolicyCheckBasicConstraints +_kSecPolicyCheckBlackListedKey +_kSecPolicyCheckBlackListedLeaf +_kSecPolicyCheckCertificatePolicy +_kSecPolicyCheckCertificateTransparency +_kSecPolicyCheckChainLength +_kSecPolicyCheckCriticalExtensions +_kSecPolicyCheckEAPTrustedServerNames +_kSecPolicyCheckEmail +_kSecPolicyCheckExtendedKeyUsage +_kSecPolicyCheckExtendedValidation +_kSecPolicyCheckGrayListedKey +_kSecPolicyCheckGrayListedLeaf +_kSecPolicyCheckIdLinkage +_kSecPolicyCheckIntermediateEKU +_kSecPolicyCheckIntermediateMarkerOid +_kSecPolicyCheckIntermediateSPKISHA256 +_kSecPolicyCheckIssuerCommonName +_kSecPolicyCheckKeySize +_kSecPolicyCheckKeyUsage +_kSecPolicyCheckLeafMarkerOid +_kSecPolicyCheckLeafMarkerOidWithoutValueCheck +_kSecPolicyCheckNoNetworkAccess +_kSecPolicyCheckNonEmptySubject +_kSecPolicyCheckNotValidBefore +_kSecPolicyCheckQualifiedCertStatements +_kSecPolicyCheckRevocation +_kSecPolicyCheckRevocationResponseRequired +_kSecPolicyCheckRevocationOCSP +_kSecPolicyCheckRevocationCRL +_kSecPolicyCheckRevocationAny +_kSecPolicyCheckSignatureHashAlgorithms +_kSecPolicyCheckSSLHostname +_kSecPolicyCheckSubjectCommonName +_kSecPolicyCheckSubjectCommonNamePrefix +_kSecPolicyCheckSubjectCommonNameTEST +_kSecPolicyCheckSubjectOrganization +_kSecPolicyCheckSubjectOrganizationalUnit +_kSecPolicyCheckUsageConstraints +_kSecPolicyCheckValidIntermediates +_kSecPolicyCheckValidLeaf +_kSecPolicyCheckValidRoot +_kSecPolicyCheckWeakIntermediates +_kSecPolicyCheckWeakLeaf +_kSecPolicyCheckWeakRoot _kSecPolicyClient +_kSecPolicyContext +_kSecPolicyIntermediateMarkerOid +_kSecPolicyLeafMarkerOid +_kSecPolicyName +_kSecPolicyOid +_kSecPolicyPolicyName _kSecPolicyRevocationFlags _kSecPolicyTeamIdentifier -_kSecPolicyKU_DigitalSignature -_kSecPolicyKU_NonRepudiation -_kSecPolicyKU_KeyEncipherment +#if TARGET_OS_MAC && !TARGET_OS_IPHONE +_kSecPolicyKU_CRLSign _kSecPolicyKU_DataEncipherment +_kSecPolicyKU_DecipherOnly +_kSecPolicyKU_DigitalSignature +_kSecPolicyKU_EncipherOnly _kSecPolicyKU_KeyAgreement _kSecPolicyKU_KeyCertSign -_kSecPolicyKU_CRLSign -_kSecPolicyKU_EncipherOnly -_kSecPolicyKU_DecipherOnly +_kSecPolicyKU_KeyEncipherment +_kSecPolicyKU_NonRepudiation +#endif _kSecPropertyTypeTitle _kSecPropertyTypeError _kSecPropertyKeyType @@ -1461,8 +1629,25 @@ _kSecOIDX509V3SignedCertificate _kSecOIDX509V3SignedCertificateCStruct _kSecOIDSRVName _kSecRandomDefault +_kSecSignatureDigestAlgorithmUnknown +_kSecSignatureDigestAlgorithmMD2 +_kSecSignatureDigestAlgorithmMD4 +_kSecSignatureDigestAlgorithmMD5 +_kSecSignatureDigestAlgorithmSHA1 +_kSecSignatureDigestAlgorithmSHA224 +_kSecSignatureDigestAlgorithmSHA256 +_kSecSignatureDigestAlgorithmSHA384 +_kSecSignatureDigestAlgorithmSHA512 +_kSecTrustCertificateTransparency +_kSecTrustCertificateTransparencyWhiteList _kSecTrustEvaluationDate _kSecTrustExtendedValidation +_kSecTrustInfoCertificateTransparencyKey +_kSecTrustInfoCertificateTransparencyWhiteListKey +_kSecTrustInfoCompanyNameKey +_kSecTrustInfoExtendedValidationKey +_kSecTrustInfoRevocationKey +_kSecTrustInfoRevocationValidUntilKey _kSecTrustOrganizationName _kSecTrustResultDetails _kSecTrustResultValue @@ -1481,6 +1666,7 @@ _SecACLSetAuthorizations _SecACLUpdateAuthorizations _SecACLSetContents _SecACLSetSimpleContents +_SecBase64Encode _SecAccessCopyACLList _SecAccessCopySelectedACLList _SecAccessCopyMatchingACLList @@ -1496,19 +1682,36 @@ _SecCertificateAddToKeychain _SecCertificateBundleExport _SecCertificateBundleImport _SecCertificateCopyCommonName +_SecCertificateCopyCompanyName _SecCertificateCopyData -_SecCertificateCopySubjectComponent +_SecCertificateCopyDNSNames _SecCertificateCopyEmailAddresses +_SecCertificateCopyEscrowRoots _SecCertificateCopyFieldValues _SecCertificateCopyFirstFieldValue +_SecCertificateCopyiAPAuthCapabilities +_SecCertificateCopyIssuerSHA1Digest +_SecCertificateCopyIssuerSummary +_SecCertificateCopyLongDescription +_SecCertificateCopyNTPrincipalNames +_SecCertificateCopyPrecertTBS _SecCertificateCopyPreference _SecCertificateCopyPreferred _SecCertificateCopyPublicKey +_SecCertificateCopyPublicKey_ios _SecCertificateCopyPublicKeySHA1Digest _SecCertificateCopyPublicKeySHA1DigestFromCertificateData +_SecCertificateCopyRFC822Names _SecCertificateCopySHA256Digest +_SecCertificateCopyShortDescription +_SecCertificateCopySignedCertificateTimestamps +_SecCertificateCopySubjectComponent +_SecCertificateCopySubjectPublicKeyInfoSHA1Digest +_SecCertificateCopySubjectPublicKeyInfoSHA256Digest _SecCertificateCopySubjectSummary -_SecCertificateCopyDNSNames +_SecCertificateCopySubjectString +_SecCertificateCopySummaryProperties +_SecCertificateCopyValues _SecCertificateCreateItemImplInstance _SecCertificateCreateFromData _SecCertificateCreateWithBytes @@ -1524,15 +1727,48 @@ _SecCertificateGetCLHandle_legacy _SecCertificateGetCommonName _SecCertificateGetData _SecCertificateGetEmailAddress +_SecCertificateGetExcludedSubtrees _SecCertificateGetIssuer +_SecCertificateGetKeyUsage _SecCertificateGetLength +_SecCertificateGetPermittedSubtrees _SecCertificateGetSHA1Digest _SecCertificateGetSignatureHashAlgorithm _SecCertificateGetSubject +_SecCertificateGetSubjectAltName _SecCertificateGetType _SecCertificateGetTypeID +_SecCertificateHasMarkerExtension _SecCertificateInferLabel +_SecCertificateIsAtLeastMinKeySize +_SecCertificateIsCA _SecCertificateIsSelfSigned +_SecCertificateIsSelfSignedCA +_SecCertificateIsSignedBy +_SecCertificateIsWeak +_SecCertificateParseGeneralNameContentProperty +_SecCertificateParseGeneralNames +_SecCertificatePathCopyAddingLeaf +_SecCertificatePathCopyCertificates +_SecCertificatePathCopyFromParent +_SecCertificatePathCopyPublicKeyAtIndex +_SecCertificatePathCopyXPCArray +_SecCertificatePathCreate +_SecCertificatePathCreateSerialized +_SecCertificatePathGetCertificateAtIndex +_SecCertificatePathGetCount +_SecCertificatePathGetIndexOfCertificate +_SecCertificatePathGetNextSourceIndex +_SecCertificatePathGetRoot +_SecCertificatePathGetUsageConstraintsAtIndex +_SecCertificatePathHasWeakHash +_SecCertificatePathIsAnchored +_SecCertificatePathScore +_SecCertificatePathSelfSignedIndex +_SecCertificatePathSetIsAnchored +_SecCertificatePathSetNextSourceIndex +_SecCertificatePathSetSelfIssued +_SecCertificatePathVerify _SecCertificateRequestCreate _SecCertificateRequestGetTypeID _SecCertificateRequestSubmit @@ -1544,15 +1780,20 @@ _SecCertificateRequestGetData _SecCertificateReleaseFirstFieldValue _SecCertificateSetPreference _SecCertificateSetPreferred -_SecCertificateCopyValues -_SecCertificateCopyLongDescription -_SecCertificateCopyShortDescription -_SecCertificateCopyEscrowRoots +_SecCertificateVersion +_SecCertificateXPCArrayCopyArray _kSecCertificateProductionEscrowKey _kSecCertificateProductionPCSEscrowKey _kSecCertificateEscrowFileName +_SecCopyEncryptedToServer +_SecCopyEncryptedToServerKey +_SecCopyDecryptedForServer _SecCopyErrorMessageString +_SecDigestCreate _SecDigestGetData +_SecSHA256DigestCreateFromData +_SecDistinguishedNameCopyNormalizedContent +_SecErrorGetOSStatus _SecIdentityAddPreferenceItem _SecIdentityCompare _SecIdentityCopyCertificate @@ -1578,6 +1819,12 @@ _SecInferLabelFromX509Name _SecItemAdd _SecItemCopyDisplayNames _SecItemCopyMatching +_SecItemCopyParentCertificates +_SecItemCopyStoredCertificate +#if TARGET_OS_EMBEDDED +_SecCopyLastError +_SecItemUpdateWithError +#endif #if TARGET_OS_MAC _SecItemAdd_ios _SecItemCopyMatching_ios @@ -1586,7 +1833,11 @@ _SecItemUpdate_ios #endif _SecItemDelete _SecItemUpdate +_SecItemUpdateTokenItems +_SecItemDeleteAllWithAccessGroups __SecItemGetPersistentReference +__SecItemMakePersistentRef +__SecItemParsePersistentRef _kSecAttrKeyTypeRSA _kSecAttrKeyTypeDSA _kSecAttrKeyTypeAES @@ -1597,6 +1848,7 @@ _kSecAttrKeyTypeRC2 _kSecAttrKeyTypeCAST _kSecAttrKeyTypeECDSA _kSecAttrKeyTypeEC +_kSecAttrKeyTypeECSECPrimeRandom _kSecAttrPRF _kSecAttrPRFHmacAlgSHA1 _kSecAttrPRFHmacAlgSHA224 @@ -1608,14 +1860,33 @@ _kSecAttrRounds _SecECKeyGetNamedCurve _SecItemExport _SecItemImport +_CreatePrivateKeyMatchingQuery +_SecKeyCopyAttestationKey +_SecKeyCopyAttributes +_SecKeyCopyExponent +_SecKeyCopyExternalRepresentation +_SecKeyCopyKeyExchangeResult +_SecKeyCopyPersistentRef _SecKeyCopyPublicBytes +_SecKeyCopyPublicKey +_SecKeyCopyMatchingPrivateKey _SecKeyCopyModulus -_SecKeyCopyExponent _SecKeyCreate +_SecKeyCreateAttestation +_SecKeyCreateDecryptedData +_SecKeyCreateEncryptedData +_SecKeyCreateFromAttributeDictionary +_SecKeyCreateFromPublicBytes +_SecKeyCreateFromSubjectPublicKeyInfoData _SecKeyCreatePair +_SecKeyCreatePersistentRefToMatchingPrivateKey _SecKeyCreateRSAPublicKey +_SecKeyCreateRandomKey +_SecKeyCreateSignature _SecKeyCreateWithCSSMKey +_SecKeyCreateWithData _SecKeyDecrypt +_SecKeyDigestAndVerify _SecKeyEncrypt _SecKeyGenerate _SecKeyGeneratePair @@ -1625,13 +1896,18 @@ _SecKeyGetBlockSize _SecKeyGetCSPHandle _SecKeyGetCSSMKey _SecKeyGetCredentials +_SecKeyGetMatchingPrivateKeyStatus +_SecKeyGetSize _SecKeyGetStrengthInBits _SecKeyGetTypeID _SecKeyImportPair +_SecKeyIsAlgorithmSupported _SecKeyRawSign _SecKeyRawVerify +_SecKeySetParameter _SecKeySignDigest _SecKeyVerifyDigest +_SecKeyVerifySignature _SecKeyGenerateSymmetric _SecKeyCreateFromData _SecKeyCreateFromPublicData @@ -1646,6 +1922,7 @@ _SecKeychainAddGenericPassword _SecKeychainAddIToolsPassword _SecKeychainAddInternetPassword _SecKeychainAttributeInfoForItemID +_SecKeychainAttemptMigrationWithMasterKey _SecKeychainChangePassword _SecKeychainCopyAccess _SecKeychainCopyBlob @@ -1674,6 +1951,7 @@ _SecKeychainGetTypeID _SecKeychainGetUserInteractionAllowed _SecKeychainGetVersion _SecKeychainGetKeychainVersion +_SecKeychainGetUserPromptAttempts _SecKeychainMDSInstall _SecKeychainIsValid _SecKeychainItemAdd @@ -1751,81 +2029,165 @@ __SecKeychainSyncUpdateMessage _SecKeychainUnlock _SecKeychainVerifyKeyStorePassphrase _SecKeychainChangeKeyStorePassphrase +_SecKeychainStoreUnlockKeyWithPubKeyHash +_SecKeychainEraseUnlockKeyWithPubKeyHash _SecGenericPasswordCreate _SecPasswordSetInitialAccess _SecPasswordAction _SecPKCS12Import +_SecPolicyCheckCertEAPTrustedServerNames +_SecPolicyCheckCertEmail +_SecPolicyCheckCertExtendedKeyUsage +_SecPolicyCheckCertLeafMarkerOid +_SecPolicyCheckCertLeafMarkerOidWithoutValueCheck +_SecPolicyCheckCertKeyUsage +_SecPolicyCheckCertNotValidBefore +_SecPolicyCheckCertSignatureHashAlgorithms +_SecPolicyCheckCertSSLHostname +_SecPolicyCheckCertSubjectCommonName +_SecPolicyCheckCertSubjectCommonNamePrefix +_SecPolicyCheckCertSubjectCommonNameTEST +_SecPolicyCheckCertSubjectOrganization +_SecPolicyCheckCertSubjectOrganizationalUnit +_SecPolicyCopyProperties +_SecPolicyCreate +_SecPolicyCreateAppleAST2Service +_SecPolicyCreateAppleATVVPNProfileSigning +_SecPolicyCreateAppleCompatibilityEscrowProxyService +_SecPolicyCreateAppleCompatibilityMMCSService +_SecPolicyCreateAppleEscrowProxyService +_SecPolicyCreateAppleExternalDeveloper +_SecPolicyCreateAppleFMiPService _SecPolicyCreateAppleGSService +_SecPolicyCreateAppleHomeKitServerAuth +_SecPolicyCreateAppleIDAuthorityPolicy _SecPolicyCreateAppleIDSService _SecPolicyCreateAppleIDSServiceContext -_SecPolicyCreateApplePushService -_SecPolicyCreateApplePushServiceLegacy +_SecPolicyCreateAppleIDValidationRecordSigningPolicy _SecPolicyCreateAppleMMCSService -_SecPolicyCreateApplePPQService -_SecPolicyCreateAppleAST2Service -_SecPolicyCreateAppleATVAppSigning -_SecPolicyCreateTestAppleATVAppSigning -_SecPolicyCreateAppleATVVPNProfileSigning +_SecPolicyCreateApplePackageSigning _SecPolicyCreateApplePayIssuerEncryption +_SecPolicyCreateApplePinned +_SecPolicyCreateApplePPQService +_SecPolicyCreateApplePPQSigning +_SecPolicyCreateApplePushService +_SecPolicyCreateApplePushServiceLegacy +_SecPolicyCreateAppleSMPEncryption +_SecPolicyCreateAppleSoftwareSigning +_SecPolicyCreateAppleSSLPinned _SecPolicyCreateAppleSSLService +_SecPolicyCreateAppleTimeStamping +_SecPolicyCreateAppleTVOSApplicationSigning _SecPolicyCreateBasicX509 +_SecPolicyCreateCodeSigning +_SecPolicyCreateConfigurationProfileSigner +_SecPolicyCreateEAP +_SecPolicyCreateEscrowServiceSigner +_SecPolicyCreateFactoryDeviceCertificate +_SecPolicyCreateiAP +_SecPolicyCreateiPhoneActivation +_SecPolicyCreateiPhoneApplicationSigning +_SecPolicyCreateiPhoneDeviceCertificate +_SecPolicyCreateiPhoneProfileApplicationSigning +_SecPolicyCreateiPhoneProvisioningProfileSigning +_SecPolicyCreateIPSec +_SecPolicyCreateiTunesStoreURLBag +_SecPolicyCreateLockdownPairing +_SecPolicyCreateMacAppStoreReceipt +_SecPolicyCreateMobileAsset +_SecPolicyCreateMobileStoreSigner +_SecPolicyCreateOCSPSigner _SecPolicyCreateOSXProvisioningProfileSigning +_SecPolicyCreateOTAPKISigner +_SecPolicyCreateOTATasking +_SecPolicyCreatePassbookCardSigner +_SecPolicyCreatePCSEscrowServiceSigner +_SecPolicyCreateQAConfigurationProfileSigner _SecPolicyCreateRevocation _SecPolicyCreateSSL -_SecPolicyCreateWithOID +_SecPolicyCreateSMIME +_SecPolicyCreateTestApplePPQSigning +_SecPolicyCreateTestAppleSMPEncryption +_SecPolicyCreateTestMobileStoreSigner +_SecPolicyCreateTestOTAPKISigner +_SecPolicyCreateAppleUniqueDeviceCertificate +_SecPolicyCreateURLBag _SecPolicyCreateWithProperties +_SecPolicyGetName +_SecPolicyGetOidString +_SecPolicyGetTypeID +_SecPolicyXPCArrayCopyArray +#if TARGET_OS_MAC && !TARGET_OS_IPHONE +_SecPolicyCopy +_SecPolicyCopyAll _SecPolicyCreateAppleTimeStampingAndRevocationPolicies -_SecPolicyCreateApplePackageSigning -_SecPolicyCreateAppleSWUpdateSigning -_SecPolicyCreateAppleHomeKitServerAuth +_SecPolicyCreateItemImplInstance +_SecPolicyCreateWithOID _SecPolicyGetOID +_SecPolicyGetStringForOID _SecPolicyGetTPHandle -_SecPolicyGetTypeID _SecPolicyGetValue _SecPolicySearchCopyNext _SecPolicySearchCreate _SecPolicySearchGetTypeID -_SecPolicySetValue -_SecPolicyCopy -_SecPolicyCopyAll -_SecPolicyCopyProperties _SecPolicySetProperties -_SecPolicyCopyEscrowRootCertificates -_SecTrustCopyAnchorCertificates +_SecPolicySetValue +#endif _SecTrustCopyCustomAnchorCertificates +_SecTrustCopyDetailedPropertiesAtIndex _SecTrustCopyExceptions -_SecTrustCopyExtendedResult +_SecTrustCopyFailureDescription +_SecTrustCopyInfo _SecTrustCopyPolicies _SecTrustCopyProperties _SecTrustCopyPublicKey _SecTrustCopyResult +_SecTrustCopySummaryPropertiesAtIndex _SecTrustCreateWithCertificates +_SecTrustDeserialize _SecTrustEvaluate _SecTrustEvaluateAsync +_SecTrustEvaluateLeafOnly _SecTrustGetCertificateAtIndex _SecTrustGetCertificateCount -_SecTrustGetCSSMAnchorCertificates -_SecTrustGetCssmResult -_SecTrustGetCssmResultCode +_SecTrustGetDetails +_SecTrustGetKeychainsAllowed _SecTrustGetNetworkFetchAllowed -_SecTrustGetResult +_SecTrustGetOTAPKIAssetVersionNumber _SecTrustGetTrustResult -_SecTrustGetTPHandle _SecTrustGetTypeID -_SecTrustGetUserTrust _SecTrustGetVerifyTime +_SecTrustOTAPKIGetUpdatedAsset +_SecTrustSerialize _SecTrustSetAnchorCertificates _SecTrustSetAnchorCertificatesOnly _SecTrustSetExceptions -_SecTrustSetKeychains +_SecTrustSetKeychainsAllowed _SecTrustSetNetworkFetchAllowed _SecTrustSetOCSPResponse +_SecTrustSetPolicies +_SecTrustSetSignedCertificateTimestamps +_SecTrustSetTrustedLogs +_SecTrustSetVerifyDate +#if TARGET_OS_MAC && !TARGET_OS_IPHONE +_SecTrustCopyAnchorCertificates +_SecTrustCopyExtendedResult +_SecTrustCopyProperties_ios +_SecTrustGetCSSMAnchorCertificates +_SecTrustGetCssmResult +_SecTrustGetCssmResultCode +_SecTrustGetResult +_SecTrustGetTPHandle +_SecTrustGetUserTrust +_SecTrustLegacySourcesEventRunloopCreate +_SecTrustLegacyCRLFetch +_SecTrustLegacyCRLStatus +_SecTrustSetKeychains _SecTrustSetOptions _SecTrustSetParameters -_SecTrustSetPolicies _SecTrustSetUserTrust _SecTrustSetUserTrustLegacy -_SecTrustSetVerifyDate +#endif _SecTrustedApplicationCopyData _SecTrustedApplicationCreateFromPath _SecTrustedApplicationCreateApplicationGroup @@ -1845,6 +2207,7 @@ _SecTrustSettingsCopyTrustSettings _SecTrustSettingsSetTrustSettings _SecTrustSettingsRemoveTrustSettings _SecTrustSettingsCopyCertificates +_SecTrustSettingsCopyCertificatesForUserAdminDomains _SecTrustSettingsCopyModificationDate _SecTrustSettingsCreateExternalRepresentation _SecTrustSettingsImportExternalRepresentation @@ -1858,6 +2221,7 @@ _SecCertificateGetCRLDistributionPoints _SecCertificateGetOCSPResponders _SecCertificateGetCAIssuers _SecCertificateShow +_SecCertificateCreateOidDataFromString _SecCertificateCopyIssuerSequence _SecCertificateCopySubjectSequence _SecCertificateGetNormalizedIssuerContent @@ -1865,6 +2229,7 @@ _SecCertificateGetNormalizedSubjectContent _SecCertificateHasSubject _SecCertificateHasCriticalSubjectAltName _SecCertificateHasUnknownCriticalExtension +_SecCertificateIsOidString _SecCertificateIsValid _SecCertificateIsValidX _SecCertificateNotValidBefore @@ -1876,6 +2241,7 @@ _SecCertificateGetBasicConstraints _SecCertificateGetPolicyConstraints _SecCertificateGetPolicyMappings _SecCertificateGetCertificatePolicies +_SecCertificateGetiAuthVersion _SecCertificateGetInhibitAnyPolicySkipCerts _SecCertificateGetPublicKeyAlgorithm _SecCertificateGetPublicKeyData @@ -1883,6 +2249,7 @@ _SecCertificateCreateWithPEM _SecCertificateCopySerialNumber _SecCertificateCopyNormalizedIssuerContent _SecCertificateCopyNormalizedSubjectContent +_SecCertificateCopyProperties _SecDERItemCopyOIDDecimalRepresentation _SecAbsoluteTimeFromDateContent _SecWrapRecoveryPasswordWithAnswers @@ -1906,6 +2273,7 @@ __SecKeychainBackupSyncable __SecKeychainRestoreSyncable __SecKeychainWriteBackupToFileDescriptor __SecKeychainRestoreBackupFromFileDescriptor +__SecKeychainCopyKeybagUUIDFromFileDescriptor _SecItemBackupWithRegisteredBackups _SecItemBackupSetConfirmedManifest _SecItemBackupRestore @@ -1915,7 +2283,23 @@ __SecSecuritydCopyWhoAmI __SecSyncBubbleTransfer __SecSystemKeychainTransfer __SecSyncDeleteUserViews - +_SecOTRFullIdentityCreateFromSecKeyRef +_SecOTRPublicIdentityCreateFromSecKeyRef +_SecOTRSAppendRestartPacket +_SecOTRSAppendSerialization +_SecOTRSAppendStartPacket +_SecOTRSessionCreateFromData +_SecOTRSessionCreateFromID +_SecOTRSessionCreateFromIDAndFlags +_SecOTRSessionReset +_SecOTRSGetIsIdle +_SecOTRSGetIsReadyForMessages +_SecOTRSGetMessageKind +_SecOTRSIsForKeys +_SecOTRSProcessPacket +_SecOTRSSignAndProtectMessage +_SecOTRSVerifyAndExposeMessage +__SecTokenItemCopyValueData // // libsecurity_manifest @@ -1953,6 +2337,18 @@ _MDS_RemoveSubservice // // libsecurity_smime // +_kSecCMSSignDigest +_kSecCMSSignDetached +_kSecCMSSignHashAlgorithm +_kSecCMSCertChainMode +_kSecCMSAdditionalCerts +_kSecCMSSignedAttributes +_kSecCMSSignDate +_kSecCMSAllCerts +_kSecCMSHashingAlgorithmSHA1 +_kSecCMSHashingAlgorithmSHA256 +_kSecCMSHashingAlgorithmSHA384 +_kSecCMSHashingAlgorithmSHA512 _SecArenaPoolCreate _SecArenaPoolFree _SecCmsContentInfoGetBulkKey @@ -1973,6 +2369,7 @@ _SecCmsContentInfoSetContentEncryptedData _SecCmsContentInfoSetContentEnvelopedData _SecCmsContentInfoSetContentSignedData _SecCmsContentInfoSetContentOther +_SecCMSCreateSignedData _SecCmsDecoderCreate _SecCmsDecoderDestroy _SecCmsDecoderFinish @@ -2067,7 +2464,11 @@ _SecCmsSignerInfoSaveSMIMEProfile _SecCmsUtilVerificationStatusToString _SecSMIMEFindBulkAlgForRecipients _SecCMSCertificatesOnlyMessageCopyCertificates +_SecCMSCreateCertificatesOnlyMessage _SecCMSCreateCertificatesOnlyMessageIAP +_SecCMSVerify +_SecCMSVerifyCopyDataAndAttributes +_SecCMSVerifySignedData // // libsecurity_ssl @@ -2119,6 +2520,7 @@ _SSLGetCipherSizes _SSLInternal_PRF _SSLNewContext _SSLRead +_SSLReHandshake _SSLSetAllowsAnyRoot _SSLSetAllowsExpiredCerts _SSLSetAllowsExpiredRoots @@ -2177,11 +2579,9 @@ _SSLSetPSKSharedSecret _SSLSetPSKIdentity _SSLSetMinimumDHGroupSize _SSLGetMinimumDHGroupSize -_SSLSetSessionStrengthPolicy _SSLSetDHEEnabled _SSLGetDHEEnabled _SSLSetSessionConfig -_SSLGetSessionConfig _kSSLSessionConfig_default _kSSLSessionConfig_ATSv1 @@ -2192,6 +2592,7 @@ _kSSLSessionConfig_RC4_fallback _kSSLSessionConfig_TLSv1_fallback _kSSLSessionConfig_TLSv1_RC4_fallback _kSSLSessionConfig_legacy_DHE +_kSSLSessionConfig_anonymous // // libsecurity_transform @@ -2298,10 +2699,20 @@ _SecKeyCreatePublicFromPrivate // // libsecurity_utilities // -_add_security_log_handler -_remove_security_log_handler _secdebug_internal _secdebugfunc_internal +#ifdef TARGET_OS_OSX +_weak_os_log_impl +_weak_os_log_create +_weak_os_log_type_enabled +_logObjForScope +#endif + +// +// utilities +// +_readFileSizet +_writeFileSizet // // libSecureObjectSync @@ -2331,6 +2742,7 @@ _kSecPasswordCharacterCount _kSecPasswordGroupSize _kSecPasswordNumberOfGroups _kSecPasswordSeparator +_SecCFAllocatorZeroize // // Logging @@ -2345,11 +2757,6 @@ _SecSetLoggingInfoForCircleScope // #include "../sec/Security/SecAccessControlExports.exp-in" -// -// utilities -// -_SecSecdUsage - // SecDH _SecDHComputeKey _SecDHCreate @@ -2460,3 +2867,24 @@ _oidExtendedKeyUsageMicrosoftSGC _oidExtendedKeyUsageNetscapeSGC _oidGoogleEmbeddedSignedCertificateTimestamp _oidGoogleOCSPSignedCertificateTimestamp + +// +// anchor-test SPIs +// +_SecIsAppleTrustAnchorData +_SecIsAppleTrustAnchor + +// +// libsecurity_translocate +// +_SecTranslocateStartListening +_SecTranslocateStartListeningWithOptions +_SecTranslocateCreateSecureDirectoryForURL +_SecTranslocateDeleteSecureDirectory +_SecTranslocateAppLaunchCheckin +_SecTranslocateURLShouldRunTranslocated +_SecTranslocateIsTranslocatedURL +_SecTranslocateCreateOriginalPathForURL + +_secLogDisable +_secLogEnable