apple-data 1.0.600 → 1.0.601

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 15275056392f38b0ee0cddf9a78c75b789c35a661373610d40eccd59cd87fe97
-  data.tar.gz: d2e9f6553af7cd431f91bd7731d57d869eb0a455bd9a959291399e717024d0a2
+  metadata.gz: 743643db69e6ebb5aeffe4a7889c49924b76154a9f08eb3c4e79e3b2c8b721e3
+  data.tar.gz: 5375a2fa841a2304c181e84294adba5601c63d43afc0e96ec40546e584ae1c21
 SHA512:
-  metadata.gz: 0ae8f21160273e15588b6dda61b31b204d4abd8ed89d379b4ca5e25210e3cb26156b646858e7703643637f37d981a34c56f9a26b4fc4a908cda0d8e6cfae266a
-  data.tar.gz: e7d821eef75a798598043a5034735c326986c081475dcf1be5a1d6428792a113e7989e7b9d10261c195fe64999b72a7eb95a9c9ff3099a5fb6fd8a66d3282ea6
+  metadata.gz: a17e3415a457336e496cc41c0c4b5c5697162b55ff5e9b10957ce9353b1809a52fdd0f217749e8d844fc452a2c8bde61c83f29dfd2d42bf0104aeb4ce86a9f18
+  data.tar.gz: 8174dafa632c4e430412d91dc3444ff5414837f778ef1d83c18906b9c3c5dd2c44d6a8a21aed278f4c03e316b159c81aacba27e425fc6aff0994f6585abc8150

data/lib/apple_data/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module AppleData
-  VERSION = '1.0.600'
+  VERSION = '1.0.601'
 end

data/share/apns.yaml

@@ -575,7 +575,7 @@ apns_environments:
         com.apple.aps.remindd.dataaccess.dev:
         com.apple.dataaccess.dataaccessd.aps.dev:
       processes:
-      - cloudd
+        cloudd:
     _applepay:
   production:
     endpoints:

data/share/fdr.yaml

@@ -75,6 +75,8 @@ fdr_properties:
     description:
   jlnl:
     description:
+  esdm:
+    description: Extended Security Domain Fuse
   jlnm:
     description:
   jlnv:
@@ -85,6 +87,29 @@ fdr_properties:
     description:
   jlsk:
     description:
+  mmap:
+    description: The memory map passed from the iBoot loader to the Kernel
+  sePK:
+    description: Point Compressed Elliptic Curve point sering as the master Public Key for the SE
+  comb:
+    description: Combined FDR object
+  rssl:
+    description: Root SSL / TLS certificate
+  trst:
+    description: Trust Object
+  rvok:
+    description: Trust Object Revocation
+  fdrd:
+    description: FDR2 Data
+  secb:
+  sreq:
+    description: Sealing request
+  fdr2:
+  mft2:
+  trpk:
+    description: Trusted Public Key
+  IM4C:
+    description: Img4 Certificate
   lcrt:
     description:
     contexts:

data/share/sandbox.yaml

@@ -0,0 +1,19 @@
+---
+metadata:
+  description:
+  credits:
+profiles:
+  nonet:
+  nointernet:
+  pure-computation:
+  write-tmp-only:
+  nowrite:
+  sandbox-compilerd:
+  mDNSResponder:
+  apsd:
+  AppleDiags:
+  PasteBoard:
+  container:
+  MobileSafari:
+  MobileMail:
+  MobileMaps:

data/share/terms.yaml

@@ -0,0 +1,340 @@
+---
+terms:
+  ace:
+  - title: USB-C Port Controller
+  aht:
+  - title: Apple Hardware Test
+  ane:
+  - title: Apple Neural Engine
+  anps:
+  - title: Apple Push Notification Service
+    description:
+  aop:
+  - title: Always-On Processor
+  AP:
+  - title: Application Processor
+  aps:
+    see:
+    - apns
+  APTicket:
+  mach:
+  tfp0:
+  gcd:
+    - title: Grand Central Dispatch
+  xnu:
+  seatbelt:
+    see:
+      - sandbox
+  dfu:
+    - title: Device Firmware Update
+  recovery:
+  restore:
+  mdm:
+    - title: Mobile Device Management
+  dep:
+    - title: Device Enrollment Program
+  se:
+    - title: Secure Element
+  register:
+    - title: Processor Register
+  msr:
+    - title: Model/Machine Specific Register
+      see:
+        - register
+  ecore:
+    - title: Efficienty Core
+  pcore:
+    - title: Performance Core
+  x86:
+  x86_64:
+  x86_64h:
+  arm:
+  armv7:
+  aarch64:
+  aarch64e:
+  sp:
+    - title: Stack Pointer
+  fp:
+    - title: Frame Pointer
+  baseband:
+  bluetooth:
+  wlan:
+  bridge:
+  bridgeOS:
+  eOS:
+  OHCI:
+  EHCI:
+  VHCI:
+  XPC:
+  RemoteXPC:
+  "Mach Port":
+    see:
+      - mach_port
+  mach_port:
+  bundle:
+  AppKit:
+  UIKit:
+  entitlement:
+  cs:
+    - title: Code Signing
+  ioreg:
+  macho:
+  dylib:
+  dsc:
+  syscall:
+  plist:
+  asn:
+  asn1:
+  der:
+  pdu:
+  quarantine:
+  dyld:
+  executable:
+  service:
+  launchd:
+  Framework:
+  defaults:
+  iv:
+    - title: Initialization Vector (Encryption)
+  key:
+    - title: Encryption Key
+  pem:
+  efi:
+  nub:
+  aes:
+    - title: Advanced Encryption Standard
+  pki:
+    - title: Public Key Infrastructure
+  ecc:
+    - title: Elliptic Curve Cryptograph
+    - title: Error Checking and Correction
+  hid:
+    - title: Human Interface Device
+  uart:
+  amfm:
+  i2c:
+    - title: Inter Integrated Circuit
+  spmi:
+  smmu:
+  mmu:
+  pa:
+    - title: Physical Address
+  tc:
+    see:
+      - TrustCache
+  iboot:
+  reg:
+    see:
+      - register
+  ean:
+  ans:
+    - title: Apple NAND Storage
+  soc:
+    - title: System-on-a-Chip
+  fpga:
+  AuxKC:
+  BootKC:
+  sio:
+    - title: SmartIO (iPad keyboard covers)
+  tss:
+    - title: Tatsu Signing Server
+  kc:
+    see:
+      - kernelcache
+  rsep:
+    - title: Restore SEP Firmware Image
+  keynag:
+  asmb:
+  - title: Apple Secure Multi Boot
+  awdl:
+  csr:
+    see:
+    - sip
+  ctrr:
+  dart:
+  - title: Device Address Resolution Table
+  dext:
+  dmg:
+  - title: Disk Image
+  dt:
+  - title: Device Tree
+  en:
+  - title: Ethernet Adapter (generic)
+    description: Often `en` in the form `enX` where X is a number is used to identify
+      a network adapter.
+  esim:
+  - title: Embedded Subscriber Identificaton Module
+    see:
+    - sim
+  euicc:
+    see:
+    - esim
+  FindMy:
+  - title: FindMy iPhone / Mac
+    description: A set of technologies that both help find the location of a lost
+      Apple device, as well as prevent theft from being able to reset the device for
+      sale or use.
+  FireWire:
+  - title: FireWire
+  fmm:
+    see:
+    - FindMy
+  fw:
+    see:
+    - FireWire
+    - firmware
+  isp:
+  - title: Image Signal Processor
+  kdp:
+  - title: Kernel Debug Port / Protocol
+    description: KDP is a general way in which XNU allows for the kernel itself to
+      be attached to a debugger. Attaching a kernel debugger allows for the complete
+      control of a device and subverts all security guarantees, therefore should be
+      exercised with care.  Apple makes majority of the KDP for external users available
+      through Kernel Debug Kits.  These are components that help with two machine
+      debugging, but nearly all kernels shipped by Apple can be debugged if the proper
+      `boot-args` are passed on startup.
+  kernel:
+  kernelcache:
+  - title: Kernel Cache
+    description: A kernel cache is a combined object that contains the kernel itself
+      as well as various kexts (Kernel Extensions).  Older macs would load the kernel
+      itself, then load the various kexts from disk. The process of loading the kexts
+      and then binding the symbols was a process that slowed the starup of a mac.  Apple
+      then started doing the combine of the kernel and the extensions into a BootCache
+      that allowed the system to load one large monolithic binary.
+  kext:
+  ktrr:
+  - title: Kernel Text Readonly Region
+  lpddr:
+  - title: Low-Power Double Data Rate RAM
+    description: LPDDR differs as it uses techniques to minimize the amount of power
+      needed to maintain the memory.  Most RAM requires that the RAM controller occasionally
+      read each value, and write it again as the data is stored in capacitors that
+      leak current over time.  Were the cells not refreshed, every 1 in memory would
+      eventually leak enough current that it would become a zero.
+    see:
+    - ddr
+  lr:
+  - title: Link Register (ARM)
+    description: The LR is populated when a `bx` is called to inform a function of
+      the address to return to.
+  nand:
+  - title: Not-AND Based Non-volatile Memory
+    see:
+    - nvme
+  nmi:
+  - title: Non-maskable Interrupt
+  nor:
+  - title: Not-OR Based Non-volatile Memory
+    see:
+    - spi
+  nvram:
+  - title: Non-Volatile RAM
+  ota:
+  - title: Over-the-Air Update - Incremental Update (Somewhat arcane)
+    description: In the earliest days of the iPhone, users had to connect the device
+      to a computer with iTunes to download and Apply updates to the operating system.  Eventually
+      Apple produced a system called OTA (because at the time it was mostly focused
+      on download of these updates over cellular - therefore over-the-air as in wireless)
+      to allow users to keep a device updated without being tied to a computer. This
+      is somewhat of a misnomer now because OTA updates can be delivered over several
+      means, some of which include over ethernet for example which, ironically isn't
+      over any wireless protocol.  Some types of devices and restore flows make use
+      of 'full OTAs' which are a delta update in OTA format, but includes the entire
+      set of data to restore devices.  These are typically employed for devices that
+      lack the port needed for DFU/iBoot/IPSW based recovery.
+  otg:
+  - title: USB On-the-go
+    description: USB-OTG is a way to describe a device that is typically a peripheral
+      acting instead as a USB host.  The technology evolved as phones became not just
+      devices you could attach to a computer such as to sync with iTunes, but hosts
+      in their own right such as to access a flash drive.
+  panic:
+  - title: Kernel / Device Panic
+    description:
+  pc:
+  - title: Program Counter (ARM/Intel)
+    description: The PC or Program Counter is the address (typically virtual address)
+      which the processor is currently executing.  When a subroutine is called, the
+      PC is the address passed to LR so that the called function knows where to return
+      to.
+  pio:
+  - title: Programmed IO
+  pmgr:
+  - title: Power Manager
+  pmp:
+  - title: Power Management Processor
+  pram:
+  - title: Parameter RAM
+    see:
+    - nvram
+  rtkit:
+  - title: RealtimeKit (Realtime OS)
+  sart:
+  - title: Secure Address Resolution Table
+  sep:
+  - title: Secure Enclave Processor
+  sim:
+  - title: Subscriber Identification Module
+  SIP:
+  - title: System Integrity Protection
+    description: System Integrity Protection is a set of technologies employed by
+      Apple to ensure that even when a process executes as root (UID0) it cannot modify
+      a system in such a way as to disable security features.  The feature is also
+      known as `csr` due to it being managed by `csrutil` and stored in Intel macs
+      in the nvram variable `csr-status`.
+  smc:
+  - title: System Management Controller
+  spi:
+  - title: Serial Peripheral Interconnect
+    description: SPI is a physical pin layer used to pass data between chips.  It's
+      primary use is in SPI Flash, which is a simple, low level way to read and write
+      firmware from flash storage.  This was used to load the BIOS/Firmware for Intel
+      macs before the T2. (The T2 uses eSPI or enhanced SPI to expose a "synthetic"
+      or fake SPI Flash chip to the Intel chip from the T2).  Often SPI is used by
+      Apple devices to load and store non-volatile data prior to bringing up the NAND/NVMe
+      chip, this historically was called NOR as it was a distinct component.  NOR
+      Flash is usually more expensive compared to NAND which is why the early iPhone
+      models made use of a smaller (in the few megabytes range) NOR chip to load iBoot,
+      and stored the user's data on a larger NAND flash chip. In newer devices the
+      NOR/SPI flash is synthetic and provided by ANS2/3.
+  SysCfg:
+    see:
+    - SysConfig
+  SysConfig:
+  - title: System Configuration
+    description: SysCfg / SysConfig is a portion of non-volatile memory of Apple devices
+      that encodes various data that is only to be set by Apple.  The most canonical
+      example is this is the location of the serial number.  This is because the device
+      serial number cannot be burned in as it is the whole device, not any one component.  SysCfg
+      is a series of key/value pairs and is documented in `syscfg.yaml`.
+  tbm:
+  - title: Trusted Boot Monitor
+  tcon:
+  - title: Timing Controller (Displays)
+    description: The TCON is used to control the refresh of a LED/OLED display, ensuring
+      that each frame is shown for the right amount of time, and that new frames are
+      updated all at once / not-torn.
+  tdm:
+  - title: Target Disk Mode
+  trustcache:
+  - title:
+  tz:
+  - title: ARM TrustZone
+    see:
+    - tz0
+    - tz1
+  tz0:
+  tz1:
+  uicc:
+    see:
+    - sim
+  usb-pd:
+  - title: USB Power Delivery
+  vm:
+  - title: Virtual Memory
+  - title: Virtual Machine
+metadata:
+  description:
+  credits: []

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: apple-data
 version: !ruby/object:Gem::Version
-  version: 1.0.600
+  version: 1.0.601
 platform: ruby
 authors:
 - Rick Mark
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2024-02-06 00:00:00.000000000 Z
+date: 2024-02-14 00:00:00.000000000 Z
 dependencies: []
 description: |2
       This package includes machine readable data about Apple platforms maintained by hack-different.
@@ -264,11 +264,13 @@ files:
 - share/pmu.yaml
 - share/registers.yaml
 - share/resources.yaml
+- share/sandbox.yaml
 - share/sep.yaml
 - share/services.yaml
 - share/sip.yaml
 - share/smc.yaml
 - share/syscfg.yaml
+- share/terms.yaml
 - share/tipw_sync.yaml
 - share/vmapple.yaml
 homepage: https://docs.hackdiffe.rent