eskimo

eskimo, Thanks for taking the lead on this issue. My app communicates with the Nissan Leaf electric vehicle by using a WiFi OBDII adapter plugged into the Leaf's OBDII port. This makes a local hotspot that my app can communicate with after the user has selected the OBDII WiFi network. The first thing a user of my app does after install is to register the WiFi OBDII adatper's SSID with the app. The user starts my app and confirms on a settings screen that the current WiFi SSID is the WiFi OBDII adapter's SSID. Now my app knows (but not in iOS 9!) by reading the current WiFi SSID if the iOS device is connected to the Leaf. If it is my app will start collecting data to display to the user. If the SSID is not the registered one then my app goes into an offline mode and just lets the user review previously saved data. If will also disable running in the background if the SSID does not match. While in offline mode the app polls the current SSID to see if it ever matches the registered one. If it does match

So perhaps it's a limitation of older versions of iOS that's fixed in more recent versions of iOS.Sounds likely.You may be able to work around this on pre-iOS 9 systems by issuing the initial request in a standard session, stopping that request once you get the redirect, and then issuing the redirected request in your background session. This will work as long as the server that issues the redirect doesn't have some sort of timeout on the redirect.Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

Can you please verify that the required low level api's are not restricted to Apple only.The APIs I've mentioned are all part of the public iOS SDK. That's as much of a guarantee as I'm able to give you. The only folks who can definitively say what is or isn't allowed on the store is App Review, and I can't speak on their behalfShare and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

… is it possible to get the file descriptor (FD) of TUN interface associated to tunnel so that the FD can be used to sending/receiving packets to/from the interface (rather than receiving/sending through the functions readPacketsWithCompletionHandlerprovided()/writePackets() by NEPacketTunnelFlow).No. The design requires that you tunnel provider use the NEPacketTunnelFlow to transfer data.Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

… could you confirm my experimental results that NSURLSession active background download session limits apply to the total number of active download sessions used by all applications on the device?I'm sorry, I can't answer this. The limits you're hitting are not specified as part of the API contract but rather artefacts of the implementation. The implementation has changed in the past and will change again in the future, and likewise these limits. For example, back in the iOS 7 days, folks started hitting problems at around 50 transfers.I will say that we strongly encourage folks to use a small number of large resumable transfers. That's the scenario that the API was designed for. Attempting to run thousands of background transfers in parallel will end badly, either due to on-the-device problems like the one you've been investigating or due to horrible on-the-wire behaviour.Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo

To start, what platform are you working on?Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

Error -34018 is not publicly documented but it translates to errSecMissingEntitlement. There are two causes of this error: build-time entitlement problemsa hard-to-reproduce runtime bugThe second problem is covered by a long-running thread elsewhere on DevForums. However, it sounds like you're hitting this problem every time, in which case you have a build-time problem. Run the following command over the app binary to confirm that it's built with the entitlements you're expecting.$ codesign -d --entitlements :- /path/to/your.appShare and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

On OS X you must export the key using one of the keychain export APIs. For example:- (NSData *)subjectPublicKeyInfoDataForPublicKey:(SecKeyRef)publicKey { BOOL success; NSData * result; CFDataRef exportResult; result = nil; success = SecItemExport(publicKey, kSecFormatOpenSSL, 0, NULL, &exportResult) == errSecSuccess; if (success) { result = CFBridgingRelease(exportResult); } return result; }Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

As KMT noted, there's no protection of resources within a .ipa. It's trivial to pull one apart:download the app using iTunes on the Macdo a Show in Findermake a copy of the .iparename it to .zipdouble click to unpack itSo, you definitely need to talk this issue over with your client.Whether you actually need to write any code depends on a lot of business factors:How important is the resource?How likely is it that someone would 'steal' it?What protection can you implement?How much harder would that make it for the attacker?Will your protection system cause compatibility problems down the line?and so onIt's important to realise that protecting resources like this is effectively implementing a DRM scheme; once you view things in this way, lots of the trade-offs become much clearer.Does Data Protection have anything to do with this?No.Or is Data Protection only relevant for files that the application writes to its documents directory at runtime?Correct.Also, keep in mind that data protection is designed to protec

I think you're misinterpreting the output of nm. Consider this code: extern void Foo(void); extern void Bar(void); extern void Foo(void) { Bar(); }It has a function Foo that references another function Bar. If you put it in a static library and then dump the symbol table you get this: $ nm libxxx.a libxxx.a(xxx.o): … U _Bar 0000000000000000 T _Foo …Note that Foo is flagged with T, indicating that it's a code ( T stands for text) symbol that's exported. OTOH, Bar is flagged with U, which stands for Undefined, indicating that it's a symbol used by this library but not defined in it. Looking at your nm dump it seems that all the functions you're expecting to export are flagged with U. Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

eskimo --I'll file a radar for this too, but I wanted to share my use for CaptiveNetwork: We have a custom device that acts as a WiFi Access Point and we're using the first 24 bits of the BSSID (Organization Unique Identifier) as a verification check that the user is connected to an expected WiFi network. It allows us to be more specific in suggesting trouble-shooting steps (i.e. Please check that you're connected to the correct WiFi network) rather than just reporting a generic TCP-level connection failure. For our case, even if the user had to confirm they wanted to share that info, that would work with our flow and still provide value.

Unfortunately, you have not indicated in the official documentation, that this feature is to enjoy with caution.I doubt this is covered in the docs. As always, if you find the documentation deficient, please do file a bug against it (and post your bug number, just for the record).I am assuming that my mistake arises from the fact that I have the discretionary Property set.I don't think that discretionary is the root cause of this issue, but rather the fact that you're using a background session. Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

[I'm using the latest Xcode 7b4 ...]Please retry with Xcode 7.0b5. Stuff is changing pretty rapidly on this front and so I want to make sure we're all on the same page.Share and Enjoy — Quinn The Eskimo! Apple Developer Relations, Developer Technical Support, Core OS/Hardware let myEmail = eskimo + 1 + @apple.com

Hi Eskimo,This email address: - networkextension@apple.com as listed in the following document 717_whats_new_in_network_extension_and_vpn.pdf bounces back. Has the email address changed for these requests?

If this is a username / password authentication challenge (typically NSURLAuthenticationMethodDefault, NSURLAuthenticationMethodHTTPBasic, NSURLAuthenticationMethodHTTPDigest) then the problem is that you've implemented the delegate callback method for session challenges ( -URLSession:didReceiveChallenge:completionHandler:) not task challenges ( -URLSession:task:didReceiveChallenge:completionHandler:). NSURLSession makes a clear distinction between different types of challenges:Session challenges are those that are caused by a connection within the session. The TLS challenges fall into this category (NSURLAuthenticationMethodClientCertificate and NSURLAuthenticationMethodServerTrust), as well as NTLM ( NSURLAuthenticationMethodNTLM). Session challenges are delivered via -URLSession:didReceiveChallenge:completionHandler:. If that's not implemented, the challenge is sent to -URLSession:task:didReceiveChallenge:completionHandler: with the task that triggered the connection that triggered the challenge. Task chal