From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from firstgate.proxmox.com (firstgate.proxmox.com [IPv6:2a01:7e0:0:424::9]) by lore.proxmox.com (Postfix) with ESMTPS id 370B81FF16F for ; Tue, 30 Sep 2025 10:48:55 +0200 (CEST) Received: from firstgate.proxmox.com (localhost [127.0.0.1]) by firstgate.proxmox.com (Proxmox) with ESMTP id 11BC9214B; Tue, 30 Sep 2025 10:49:01 +0200 (CEST) From: Shan Shaji To: pve-devel@lists.proxmox.com Date: Tue, 30 Sep 2025 10:48:52 +0200 Message-ID: <20250930084852.39176-1-s.shaji@proxmox.com> X-Mailer: git-send-email 2.50.1 MIME-Version: 1.0 X-Bm-Milter-Handled: 55990f41-d878-4baa-be0a-ee34c49e34d2 X-Bm-Transport-Timestamp: 1759222115808 X-SPAM-LEVEL: Spam detection results: 0 AWL 0.133 Adjusted score from AWL reputation of From: address BAYES_00 -1.9 Bayes spam probability is 0 to 1% DMARC_MISSING 0.1 Missing DMARC policy KAM_DMARC_STATUS 0.01 Test Rule for DKIM or SPF Failure with Strict Alignment SPF_HELO_NONE 0.001 SPF: HELO does not publish an SPF Record SPF_PASS -0.001 SPF: sender matches SPF record Subject: [pve-devel] [PATCH pve_flutter_frontend v3] chore: ios: add export compliance key to info.plist X-BeenThere: pve-devel@lists.proxmox.com X-Mailman-Version: 2.1.29 Precedence: list List-Id: Proxmox VE development discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-To: Proxmox VE development discussion Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: pve-devel-bounces@lists.proxmox.com Sender: "pve-devel" The app only uses TLS/SSL through iOS platform APIs, which are already exported by Apple, and is therefore classified under 5A992/5D992 (Mass Market [1]). Since march 29, 2021, mass market software no longer requires a self-classification report except for "non-standared" algorithms. The `crypto` package is used solely for data integrity with SHA-256 (publicly available, standard algorithm) and not for confidentiality [3], so it should fall under 5D992. Also this package should also fall under mass market cryptographic library which implements a standard algorithm [2] (Table Reference: Third Row). The `biometric_storage` package relies on iOS platform APIs [4] for biometrics, which are already exported by Apple. To avoid manually completing the App Store export compliance step, the `ITSAppUsesNonExemptEncryption = false` key has been added to Info.plist. - [1] https://www.bis.doc.gov/index.php/policy-guidance/encryption/3-license-exception-enc-and-mass-market/a-mass-market - [2] https://www.bis.doc.gov/index.php/documents/pdfs/2759-table-of-changes-to-enc-in-wa2019-rule-final-version/file - [3] https://www.bis.doc.gov/index.php/documents/new-encryption/1652-cat-5-part-2-quick-reference-guide/file - [4] https://github.com/authpass/biometric_storage/blob/main/macos/Classes/BiometricStorageImpl.swift Signed-off-by: Shan Shaji --- changes since v1: - Updated commit message with more rationale. ios/Runner/Info.plist | 2 ++ 1 file changed, 2 insertions(+) diff --git a/ios/Runner/Info.plist b/ios/Runner/Info.plist index 9949e0f..a5587ed 100644 --- a/ios/Runner/Info.plist +++ b/ios/Runner/Info.plist @@ -22,6 +22,8 @@ ???? CFBundleVersion $(FLUTTER_BUILD_NUMBER) + ITSAppUsesNonExemptEncryption + LSRequiresIPhoneOS NSFaceIDUsageDescription -- 2.50.1 _______________________________________________ pve-devel mailing list pve-devel@lists.proxmox.com https://lists.proxmox.com/cgi-bin/mailman/listinfo/pve-devel