apple-data 1.0.585 → 1.0.587
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/apple_data/version.rb +1 -1
- data/share/img4.yaml +152 -78
- data/share/keybags/8103.yaml +7 -0
- data/share/registers.yaml +6736 -1662
- metadata +3 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA256:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: f240e7d367575fe8d99486eb07bca0d43ec2fa8d5cf7545003687d2cedd0c0c4
|
4
|
+
data.tar.gz: a76ebd9e597d58911736579fcc105d9e6e56b27ac7fbf96dc1764eb1ce58e3d7
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 667efca7e6dfc8c5e6e7a38a18f1bfeda459004fdcc433572dfc22f6ca0fbb76b921e033f30a07439e568c00d04748773dd4afe97f28f52eb20fa98f854a42d7
|
7
|
+
data.tar.gz: 63c66b3939a84118fd437eaca612f4fa49b2450de3369106bce31a75c440cffc51483f776a1496aa38a8b097d9245f8ee9d577243d1807c4a358530f25b96eb2
|
data/lib/apple_data/version.rb
CHANGED
data/share/img4.yaml
CHANGED
@@ -18,15 +18,16 @@ img4_tags:
|
|
18
18
|
almo:
|
19
19
|
description:
|
20
20
|
AMNM:
|
21
|
-
description:
|
21
|
+
description: allow mix-n-match
|
22
|
+
type: boolean
|
22
23
|
anef:
|
23
|
-
description:
|
24
|
+
description: Apple Neural Engine Firmware
|
24
25
|
anrd:
|
25
26
|
description:
|
26
27
|
aofi:
|
27
28
|
description:
|
28
29
|
aopf:
|
29
|
-
description:
|
30
|
+
description: Always on processor firmware
|
30
31
|
apmv:
|
31
32
|
description:
|
32
33
|
ater:
|
@@ -38,19 +39,19 @@ img4_tags:
|
|
38
39
|
aubt:
|
39
40
|
description:
|
40
41
|
augs:
|
41
|
-
description:
|
42
|
+
description: Included in APTicket CA extensions
|
42
43
|
aupr:
|
43
44
|
description:
|
44
45
|
auxi:
|
45
|
-
description:
|
46
|
+
description: Auxiliary Kernel Cache Image4 Hash
|
46
47
|
auxk:
|
47
|
-
description:
|
48
|
+
description: Auxiliary Kernel Cache
|
48
49
|
auxp:
|
49
|
-
description:
|
50
|
+
description: User Authorized Kext List Hash
|
50
51
|
auxr:
|
51
|
-
description:
|
52
|
+
description: AuxKC Kext Receipt Hash
|
52
53
|
avef:
|
53
|
-
description:
|
54
|
+
description: AV Encryption (DRM) Firmware
|
54
55
|
bat0:
|
55
56
|
description: battery image 0
|
56
57
|
bat1:
|
@@ -62,35 +63,41 @@ img4_tags:
|
|
62
63
|
bles:
|
63
64
|
description:
|
64
65
|
BNCH:
|
65
|
-
description:
|
66
|
-
BNCN:
|
67
|
-
description:
|
66
|
+
description: Boot Nonce Hash - based on the values of com.apple.System.boot-nonces
|
68
67
|
BORD:
|
69
68
|
description: |-
|
70
69
|
The board the chip is attached to. With iPhones/iPads this is the variation between device sizes (occasionally
|
71
|
-
also used for low cost devices like the SE/XR).
|
70
|
+
also used for low cost devices like the SE/XR). This is usually expressed as a hex encoded uint8_t. Some
|
71
|
+
types of board seem to encode a bitfield for non MP (mainline production) boards such as EVT/DVT
|
72
72
|
|
73
|
-
With the T2 this value is unique to all MacBooks with the T2
|
73
|
+
With the T2 this value is unique to all MacBooks with the T2.
|
74
|
+
type: integer
|
75
|
+
alias:
|
76
|
+
- board-id
|
74
77
|
bstc:
|
75
78
|
description:
|
76
79
|
bsys:
|
77
80
|
description:
|
78
81
|
CEPO:
|
79
82
|
description: |-
|
80
|
-
Certificate Epoch. This is a unit of roll-forward time (monotonic) that allows for any security issues
|
83
|
+
Certificate/Chip Epoch. This is a unit of roll-forward time (monotonic) that allows for any security issues
|
81
84
|
in the prior epoch to be fixed by a anti-rollback scheme.
|
85
|
+
alias:
|
86
|
+
- chip-epoch
|
82
87
|
cfel:
|
83
88
|
description:
|
84
89
|
chg0:
|
85
|
-
description:
|
90
|
+
description: Charging Image 0
|
86
91
|
chg1:
|
87
|
-
description:
|
92
|
+
description: Charging Image 1
|
88
93
|
CHIP:
|
89
94
|
description: Unique identifier for a single Apple designed application processor
|
90
95
|
sharing the same GID key
|
91
96
|
width: 2
|
97
|
+
nsph:
|
98
|
+
description: preboot splat manifest hash
|
92
99
|
CHMH:
|
93
|
-
description:
|
100
|
+
description: chained manifest hash
|
94
101
|
cker:
|
95
102
|
description:
|
96
103
|
ckih:
|
@@ -100,9 +107,14 @@ img4_tags:
|
|
100
107
|
coih:
|
101
108
|
description:
|
102
109
|
CPRO:
|
103
|
-
description:
|
110
|
+
description: Chip promotion fuse value (what is burned in)
|
111
|
+
alias:
|
112
|
+
- certificate-production-status
|
113
|
+
type: boolean
|
104
114
|
CSEC:
|
105
115
|
description: Burned-in chip security mode
|
116
|
+
alias:
|
117
|
+
- certificate-security-mode
|
106
118
|
csys:
|
107
119
|
description:
|
108
120
|
dali:
|
@@ -110,7 +122,7 @@ img4_tags:
|
|
110
122
|
data:
|
111
123
|
description:
|
112
124
|
DGST:
|
113
|
-
description:
|
125
|
+
description: payload digest
|
114
126
|
diag:
|
115
127
|
description:
|
116
128
|
disk:
|
@@ -130,29 +142,47 @@ img4_tags:
|
|
130
142
|
efib:
|
131
143
|
description:
|
132
144
|
eg0n:
|
133
|
-
description:
|
145
|
+
description: Effective GID 0 Nonce
|
134
146
|
eg0t:
|
135
147
|
description:
|
136
148
|
eg1n:
|
137
|
-
description:
|
149
|
+
description: Effective GID 1 Nonce
|
138
150
|
eg1t:
|
139
151
|
description:
|
140
152
|
eg3n:
|
141
|
-
description:
|
153
|
+
description: Effective GID3 Nonce
|
142
154
|
eg3t:
|
143
155
|
description:
|
144
156
|
EKEY:
|
145
|
-
description:
|
157
|
+
description: Effective chip promoted
|
146
158
|
EPRO:
|
147
|
-
description:
|
159
|
+
description: Effective chip promotion / demotion state (if CPFM 03 this must be 0 to set ESEC)
|
160
|
+
alias:
|
161
|
+
- effective-production-status-ap
|
148
162
|
esca:
|
149
163
|
description:
|
150
164
|
esdm:
|
151
|
-
description:
|
165
|
+
description: Extended Security Domain fuses
|
166
|
+
alias:
|
167
|
+
- esdm-fuses
|
168
|
+
styp:
|
169
|
+
description: Crytpex Subtype
|
170
|
+
type: u32
|
171
|
+
alias:
|
172
|
+
- cryptex subtype
|
173
|
+
oppd:
|
174
|
+
description: Unknown, used by `stg1`/`sepi` - sha384 hash sized
|
152
175
|
ESEC:
|
153
176
|
description: Effective security mode
|
177
|
+
alias:
|
178
|
+
- effective-security-mode-ap
|
154
179
|
euou:
|
155
|
-
description:
|
180
|
+
description: engineering use-only unit
|
181
|
+
clas:
|
182
|
+
description: product class
|
183
|
+
psmh:
|
184
|
+
description: previous stage manifest hash
|
185
|
+
fchp:
|
156
186
|
fdrs:
|
157
187
|
description:
|
158
188
|
fdrt:
|
@@ -168,9 +198,9 @@ img4_tags:
|
|
168
198
|
ftsp:
|
169
199
|
description:
|
170
200
|
fuos:
|
171
|
-
description:
|
201
|
+
description: Fully Unsigned OS
|
172
202
|
gfxf:
|
173
|
-
description:
|
203
|
+
description: Graphics Firmware
|
174
204
|
ging:
|
175
205
|
description:
|
176
206
|
glyc:
|
@@ -190,17 +220,17 @@ img4_tags:
|
|
190
220
|
hrlp:
|
191
221
|
description:
|
192
222
|
hypr:
|
193
|
-
description:
|
223
|
+
description: Hypervisor
|
194
224
|
iBEC:
|
195
|
-
description:
|
225
|
+
description: iBoot Epoch Change
|
196
226
|
iBoot:
|
197
|
-
description:
|
227
|
+
description: iBoot
|
198
228
|
iBSS:
|
199
|
-
description:
|
229
|
+
description: iBoot Second Stage
|
200
230
|
ienv:
|
201
231
|
description:
|
202
232
|
LLB:
|
203
|
-
description:
|
233
|
+
description: Low Level iBoot
|
204
234
|
IM4M:
|
205
235
|
description:
|
206
236
|
IM4P:
|
@@ -214,9 +244,9 @@ img4_tags:
|
|
214
244
|
isor:
|
215
245
|
description:
|
216
246
|
ispf:
|
217
|
-
description:
|
247
|
+
description: Image Signal Processor Firmware
|
218
248
|
isys:
|
219
|
-
description:
|
249
|
+
description: iBridge System
|
220
250
|
itst:
|
221
251
|
description:
|
222
252
|
iuob:
|
@@ -228,9 +258,9 @@ img4_tags:
|
|
228
258
|
kdlv:
|
229
259
|
description:
|
230
260
|
krnl:
|
231
|
-
description:
|
261
|
+
description: Kernel
|
232
262
|
kuid:
|
233
|
-
description:
|
263
|
+
description: KEK Group UUID
|
234
264
|
lamo:
|
235
265
|
description:
|
236
266
|
lckr:
|
@@ -238,18 +268,27 @@ img4_tags:
|
|
238
268
|
LNCH:
|
239
269
|
description:
|
240
270
|
lobo:
|
241
|
-
description:
|
271
|
+
description: Local Boot
|
242
272
|
logo:
|
243
|
-
description:
|
273
|
+
description: Apple logo image
|
244
274
|
love:
|
245
|
-
description:
|
275
|
+
description: OS Version - dotted form. Last portion after the version and comma is a cryptex update?
|
276
|
+
type: string
|
277
|
+
example: "21.3.66.0.0,0"
|
278
|
+
prtp:
|
279
|
+
description: Product ID String
|
280
|
+
type: string
|
281
|
+
example: iPhone16,2
|
282
|
+
sdkp:
|
283
|
+
description: SEP Product Type
|
284
|
+
type: string
|
285
|
+
example: iphoneos
|
246
286
|
lphp:
|
247
287
|
description:
|
248
288
|
lpnh:
|
249
289
|
description: LocalPolicy nonce hash
|
250
290
|
lpol:
|
251
|
-
|
252
|
-
description:
|
291
|
+
description: Local Policy
|
253
292
|
ltrs:
|
254
293
|
description:
|
255
294
|
magg:
|
@@ -257,11 +296,11 @@ img4_tags:
|
|
257
296
|
MANB:
|
258
297
|
description:
|
259
298
|
MANP:
|
260
|
-
description:
|
299
|
+
description: Manifest Payload
|
261
300
|
manx:
|
262
301
|
description:
|
263
302
|
mefi:
|
264
|
-
description:
|
303
|
+
description: MacEFI (T2 firmware for Intel chip)
|
265
304
|
ment:
|
266
305
|
description:
|
267
306
|
mmap:
|
@@ -283,7 +322,7 @@ img4_tags:
|
|
283
322
|
nrde:
|
284
323
|
description:
|
285
324
|
nsih:
|
286
|
-
description:
|
325
|
+
description: Next Stage Image Hash
|
287
326
|
nsrv:
|
288
327
|
description:
|
289
328
|
OBJP:
|
@@ -303,9 +342,9 @@ img4_tags:
|
|
303
342
|
PAYP:
|
304
343
|
description:
|
305
344
|
pcrp:
|
306
|
-
description:
|
345
|
+
description: Production certificate root
|
307
346
|
pdmg:
|
308
|
-
description:
|
347
|
+
description: Personalized Disk Image
|
309
348
|
pert:
|
310
349
|
description:
|
311
350
|
pfle:
|
@@ -315,7 +354,7 @@ img4_tags:
|
|
315
354
|
phlt:
|
316
355
|
description:
|
317
356
|
pmpf:
|
318
|
-
description:
|
357
|
+
description: Power Management Processor Firmware
|
319
358
|
pndp:
|
320
359
|
description:
|
321
360
|
prot:
|
@@ -325,7 +364,7 @@ img4_tags:
|
|
325
364
|
rddg:
|
326
365
|
description:
|
327
366
|
rdsk:
|
328
|
-
description:
|
367
|
+
description: Restore Disk Image
|
329
368
|
rdtr:
|
330
369
|
description:
|
331
370
|
recm:
|
@@ -335,23 +374,42 @@ img4_tags:
|
|
335
374
|
rfts:
|
336
375
|
description:
|
337
376
|
rkrn:
|
338
|
-
description:
|
377
|
+
description: restore kernel
|
339
378
|
rlgo:
|
340
379
|
description:
|
341
380
|
RNCH:
|
342
381
|
description:
|
343
382
|
rolp:
|
344
|
-
description:
|
383
|
+
description: recoveryOS local policy
|
345
384
|
ronh:
|
346
385
|
description: recoveryOS nonce hash
|
347
386
|
rosi:
|
348
387
|
description:
|
388
|
+
nish:
|
389
|
+
description: preboot splat manifest hash
|
390
|
+
spih:
|
391
|
+
description: Cryptex1 Image4 Hash
|
392
|
+
stng:
|
393
|
+
description: Cryptex1 Generation
|
394
|
+
auxh:
|
395
|
+
description: User Authorized Kext List Hash
|
349
396
|
rpnh:
|
350
397
|
description: RemotePolicy nonce hash
|
351
398
|
RSCH:
|
352
|
-
description:
|
399
|
+
description: Research mode
|
400
|
+
fgpt:
|
401
|
+
description: factory pre-release global trust
|
402
|
+
UDID:
|
403
|
+
description: universal device identifier
|
404
|
+
rsch:
|
405
|
+
description: research mode
|
406
|
+
vnum:
|
407
|
+
description: maximum restore version
|
408
|
+
type: string
|
353
409
|
rsep:
|
354
|
-
description:
|
410
|
+
description: Restore SEP Image, paired with oppd/tbms
|
411
|
+
type: string
|
412
|
+
encoding: sha2-384
|
355
413
|
rso0:
|
356
414
|
description:
|
357
415
|
rso1:
|
@@ -373,40 +431,48 @@ img4_tags:
|
|
373
431
|
Known values:
|
374
432
|
0x01 - Main Production certificates
|
375
433
|
width: 2
|
434
|
+
alias:
|
435
|
+
- security-domain
|
376
436
|
SECM:
|
377
437
|
description:
|
378
438
|
seid:
|
379
|
-
description:
|
439
|
+
description: Secure Enclave ID
|
440
|
+
stg1:
|
441
|
+
description: stage 1 bootloader
|
442
|
+
type: string
|
443
|
+
encoding: sha2-384
|
380
444
|
sepi:
|
381
|
-
description:
|
445
|
+
description: SEP Image, contains oppd and tbms in seal
|
446
|
+
type: string
|
447
|
+
encoding: sha2-384
|
382
448
|
sika:
|
383
449
|
description:
|
384
450
|
siof:
|
385
|
-
description:
|
451
|
+
description: Smart IO Firmware
|
386
452
|
sip0:
|
387
|
-
description:
|
453
|
+
description: System Integrity Protection (SIP) 0 Status - Overall
|
388
454
|
sip1:
|
389
|
-
description:
|
455
|
+
description: System Integrity Protection (SIP) 1 Status - Signed System Volume Status
|
390
456
|
sip2:
|
391
|
-
description:
|
457
|
+
description: System Integrity Protection (SIP) 2 Status - Kernel CTRR Status
|
392
458
|
sip3:
|
393
|
-
description:
|
459
|
+
description: System Integrity Protection (SIP) 3 Status - Boot Args Filtering Status
|
394
460
|
slvn:
|
395
461
|
description:
|
396
462
|
smb0:
|
397
|
-
description:
|
463
|
+
description: Secure Multi-Boot 0 - Security Mode - Full Security, Reduced, Disabled
|
398
464
|
smb1:
|
399
|
-
description:
|
465
|
+
description: Secure Multi-Boot 1
|
400
466
|
smb2:
|
401
|
-
description:
|
467
|
+
description: Secure Multi-Boot 2 - 3rd Party Kexts Status
|
402
468
|
smb3:
|
403
|
-
description:
|
469
|
+
description: Secure Multi-Boot 3 - User-allowed MDM Control
|
404
470
|
smb4:
|
405
|
-
description:
|
471
|
+
description: Secure Multi-Boot 3 - DEP-allowed MDM Control
|
406
472
|
SNON:
|
407
|
-
description:
|
473
|
+
description: SEP Nonce
|
408
474
|
snon:
|
409
|
-
description:
|
475
|
+
description: SEP Nonce
|
410
476
|
snuf:
|
411
477
|
description:
|
412
478
|
srnm:
|
@@ -416,9 +482,12 @@ img4_tags:
|
|
416
482
|
svrn:
|
417
483
|
description: Server nonce
|
418
484
|
tbmr:
|
419
|
-
description:
|
485
|
+
description: Trusted Boot Measurement (Root?)
|
420
486
|
tbms:
|
421
|
-
description:
|
487
|
+
description: Trusted Boot Measurement (Signature?)
|
488
|
+
notes: Likely encrypted by the SEP and opaque to the AP
|
489
|
+
tatp:
|
490
|
+
description: Board Name (such as d84)
|
422
491
|
tery:
|
423
492
|
description:
|
424
493
|
test:
|
@@ -426,32 +495,37 @@ img4_tags:
|
|
426
495
|
tics:
|
427
496
|
description:
|
428
497
|
trst:
|
429
|
-
description:
|
498
|
+
description: Trust Cache
|
430
499
|
tsys:
|
431
500
|
description:
|
432
501
|
type:
|
433
|
-
description:
|
502
|
+
description: Cryptex Type
|
434
503
|
ucer:
|
435
|
-
description:
|
504
|
+
description: User Cert
|
436
505
|
ucon:
|
437
506
|
description:
|
438
507
|
udid:
|
439
|
-
description:
|
508
|
+
description: Unique Device ID
|
440
509
|
uidm:
|
441
510
|
description:
|
511
|
+
type: boolean
|
442
512
|
vice:
|
443
513
|
description:
|
444
514
|
vkdl:
|
445
515
|
description:
|
446
516
|
vuid:
|
447
|
-
description:
|
517
|
+
description: Volume Group UUID
|
448
518
|
ware:
|
449
519
|
description:
|
450
520
|
wchf:
|
451
|
-
description:
|
521
|
+
description: Wireless Charging Framework
|
452
522
|
xbtc:
|
453
|
-
description:
|
523
|
+
description: x86 Boot Trust Cache
|
454
524
|
xsys:
|
455
|
-
description:
|
525
|
+
description: x86 System Root Hash
|
456
526
|
xugs:
|
457
527
|
description:
|
528
|
+
SPTM:
|
529
|
+
description: Secure Page Table Monitor
|
530
|
+
WCHF:
|
531
|
+
description: Wireless Charging Firmware
|