From a9141ed422f342f4ae584ec1182355619f85a621 Mon Sep 17 00:00:00 2001
From: Carlos Holguera <perezholguera@gmail.com>
Date: Mon, 2 Sep 2024 15:47:26 +0200
Subject: [PATCH] update demos to use asm for better output

---
 .gitignore                                    |   4 +-
 .../MASTG-DEMO-0013/MASTG-DEMO-0013.md        |  96 +---
 .../{function.txt => function.asm}            |   0
 .../MASTG-DEMO-0013/{key.txt => key.asm}      |   0
 .../{output.txt => output.asm}                |   0
 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/run.sh |   2 +-
 .../MASTG-DEMO-0013/sec_hardcoded_rsa.r2      |   4 +-
 .../MASTG-DEMO-0014/MASTG-DEMO-0014.md        |   8 +-
 .../MASVS-CRYPTO/MASTG-DEMO-0014/MASTestApp   | Bin 118608 -> 120624 bytes
 .../MASTG-DEMO-0014/MastgTest.swift           |  30 +-
 .../cryptokit_hardcoded_ecdsa.r2              |  20 +
 .../MASTG-DEMO-0014/evaluation.txt            |   6 +
 .../MASVS-CRYPTO/MASTG-DEMO-0014/function.asm | 513 ++++++++++++++++++
 .../ios/MASVS-CRYPTO/MASTG-DEMO-0014/key.asm  |   3 +
 .../MASVS-CRYPTO/MASTG-DEMO-0014/output.asm   |  30 +
 .../MASVS-CRYPTO/MASTG-DEMO-0014/output.txt   | 222 --------
 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/run.sh |   2 +-
 .../ios/MASVS-CRYPTO/MASTG-TEST-0216.md       |  10 +-
 18 files changed, 617 insertions(+), 333 deletions(-)
 rename demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/{function.txt => function.asm} (100%)
 rename demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/{key.txt => key.asm} (100%)
 rename demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/{output.txt => output.asm} (100%)
 create mode 100644 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/evaluation.txt
 create mode 100644 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/function.asm
 create mode 100644 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/key.asm
 create mode 100644 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.asm
 delete mode 100644 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.txt
 mode change 100644 => 100755 demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/run.sh

diff --git a/.gitignore b/.gitignore
index b5ee583f8d..b55c20945b 100644
--- a/.gitignore
+++ b/.gitignore
@@ -27,4 +27,6 @@ docs/MASTG
 docs/MASWE
 docs/assets/Images
 OWASP_MASVS.yaml
-cross_references.yaml
\ No newline at end of file
+cross_references.yaml
+drafts/
+Payload/
\ No newline at end of file
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/MASTG-DEMO-0013.md b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/MASTG-DEMO-0013.md
index 1e40dbdc46..5e33764958 100644
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/MASTG-DEMO-0013.md
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/MASTG-DEMO-0013.md
@@ -8,7 +8,7 @@ test: MASTG-TEST-0216
 
 ### Sample
 
-{{ MastgTest.swift }}
+{{ MastgTest.swift # function.asm }}
 
 ### Steps
 
@@ -21,99 +21,9 @@ test: MASTG-TEST-0216
 
 ### Observation
 
-The output reveals the hardcoded RSA private key within the binary. This key is typically found in the DATA section of the binary, where it is loaded into memory for cryptographic operations. The presence of hardcoded keys can be identified by searching for sequences of bytes or strings corresponding to the key.
+The output reveals a call to `SecKeyCreateWithData` as well as the hardcoded RSA private key within the DATA section of the binary.
 
-{{ output.txt # function.txt # key.txt }}
-
-Identify where the x0 register, which holds the key data, is populated before the call to `SecKeyCreateWithData`. Trace back through the instructions to find where x0 comes from:
-
-```asm
-│           0x100004b74      mov x0, x20
-│           0x100004b78      mov x1, x21
-│           0x100004b7c      bl sym.imp.SecKeyCreateWithData
-```
-
-Look for `ldr`, `ldp`, `adrp`, and `add` instructions, which are often used to load data from memory or set up addresses.
-
-```asm
-│           0x100004998      adrp x0, segment.__DATA                   ; 0x100010000
-│           0x10000499c      add x0, x0, 0x328                         ; int64_t arg1
-```
-
-This seems to be the source of the data in `x0`. Check for earlier function calls or memory loading instructions.
-
-In this case data is loaded from `segment.__DATA` (0x100010000), let's inspect those memory regions:
-
-```asm
-[0x100004c84]> s 0x100010000
-[0x100010000]> px 256
-- offset -    0 1  2 3  4 5  6 7  8 9  A B  C D  E F  0123456789ABCDEF
-0x100010000  8100 0000 2800 0000 2800 0000 0000 0000  ....(...(.......
-0x100010010  0000 0000 0000 0000 5086 0000 0000 9000  ........P.......
-0x100010020  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010030  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010040  0000 0000 0000 0000 8000 0000 1000 0000  ................
-0x100010050  1000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010060  5086 0000 0000 6000 0000 0000 0000 0000  P.....`.........
-0x100010070  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010080  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010090  7888 0000 0000 1000 bb00 0000 0000 7088  x.............p.
-0x1000100a0  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x1000100b0  0000 0000 0000 0000 5f02 0000 0000 0000  ........_.......
-0x1000100c0  be04 0000 0000 0000 3082 025b 0201 0002  ........0..[....
-0x1000100d0  8181 00bd f689 8fbd 0ce6 4f9a 97ec 301a  ..........O...0.
-0x1000100e0  4893 4d2a bfdf f708 154c db87 e5df b1cf  H.M*.....L......
-0x1000100f0  8da2 5e2a 7d92 a8bd 30b9 10cf 96da 1025  ..^*}...0......%
-```
-
-RSA keys have specific patterns, especially when encoded in ASN.1/DER format. You can search for common byte patterns like 0x30 0x82 (which indicates the start of a DER sequence). You can also use r2 search capabilities to find such patterns:
-
-```asm
-[0x100007430]> e search.from = 0x1000100a0
-[0x100007430]> e search.to = 0x1000100a0 + 0x4c8
-[0x100007430]> /x 3082
-0x1000100c8 hit4_0 3082
-```
-
-There is only one hit for the 0x30 0x82 pattern within `segment.__DATA`. You can use the `px` command to print all the bytes from the RSA key. The total length of the encoded key is the length of the sequence plus the length of the initial identifier and length fields.
-
-The total length of the encoded key is calculated as:
-
-- 1 byte for 0x30 (SEQUENCE identifier)
-- 1 byte for 0x82 (indicating long-form length)
-- 2 bytes for 0x025b (length of the sequence)
-- 603 bytes for the sequence itself
-
-So, the total length is: 1 + 1 + 2 + 603 = 607 bytes
-
-{{ key.txt }}
-
-Note that it seems that we could not find this address in the disassembly, but if you recall, the very first reference to `segment.__DATA` we had was:
-
-```asm
-│           0x100004998      adrp x0, segment.__DATA                   ; 0x100010000
-│           0x10000499c      add x0, x0, 0x328                         ; int64_t arg1
-```
-
-And this is pointing to 0x100010000 + 0x328 = 0x100010328, which is exactly after the RSA key which goes from 0x1000100c8 to 0x10001327. So, the key must be held within some data structure which must be the one being loaded into memory and then passed to `SecKeyCreateWithData`.
-
-The length of the actual key can be obtained from the length of the modulus (n) in the RSA key. The modulus is the first integer in the RSA key, and its length is the key size. In this case, we see `0002 8181 00bd f689 ...`. In DER the length of the modulus is encoded as `02 81 81`, where:
-
-- `02` is the INTEGER tag, indicating that the following bytes represent an integer (in this case, the modulus).
-- the first `81` indicates that the length of the data (the modulus) is provided in the next byte.
-- the second `81` indicates that the length of the modulus is 129 bytes long including the `00` byte which is added to force the integer to be positive. The key size is calculated as `(0x81 - 1) * 8 = 128 * 8 = 1024 bits`.
-
-If you want to decode the key you can use this website: [https://lapo.it/asn1js/](https://lapo.it/asn1js/) which is going to decode it as:
-
-```txt
-RSAPrivateKey SEQUENCE (9 elem)
-    version Version INTEGER 0
-    modulus INTEGER (1024 bit) 133396580715800090592469243143215418884374307199930301828108855519157…
-    publicExponent INTEGER 65537
-...
-```
-
-You can hover over the different parts of the key to see the decoded values in hex on the right side of the screen.
+{{ output.asm # key.asm }}
 
 ### Evaluation
 
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/function.txt b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/function.asm
similarity index 100%
rename from demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/function.txt
rename to demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/function.asm
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/key.txt b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/key.asm
similarity index 100%
rename from demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/key.txt
rename to demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/key.asm
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/output.txt b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/output.asm
similarity index 100%
rename from demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/output.txt
rename to demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/output.asm
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/run.sh b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/run.sh
index b62cd5d124..9aaedb35d3 100755
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/run.sh
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/run.sh
@@ -1 +1 @@
-r2 -q -i sec_hardcoded_rsa.r2 -A MASTestApp > output.txt
\ No newline at end of file
+r2 -q -i sec_hardcoded_rsa.r2 -A MASTestApp > output.asm
\ No newline at end of file
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/sec_hardcoded_rsa.r2 b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/sec_hardcoded_rsa.r2
index 0aa0ab1423..a7bdab69e8 100644
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/sec_hardcoded_rsa.r2
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0013/sec_hardcoded_rsa.r2
@@ -13,6 +13,6 @@ axt @ 0x100007904
 
 !printf "\n"
 
-pdf @ sym.func.10000491c > function.txt
+pdf @ sym.func.10000491c > function.asm
 
-px 607 @ 0x1000100c8 > key.txt
\ No newline at end of file
+px 607 @ 0x1000100c8 > key.asm
\ No newline at end of file
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MASTG-DEMO-0014.md b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MASTG-DEMO-0014.md
index 519545bf3e..73b0a4a868 100644
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MASTG-DEMO-0014.md
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MASTG-DEMO-0014.md
@@ -8,22 +8,22 @@ test: MASTG-TEST-0216
 
 ### Sample
 
-{{ MastgTest.swift }}
+{{ MastgTest.swift # function.asm }}
 
 ### Steps
 
 1. Unzip the app package and locate the main binary file (@MASTG-TECH-0058), which in this case is `./Payload/MASTestApp.app/MASTestApp`.
 2. Open the app binary with @MASTG-TOOL-0073 with the `-i` option to run this script.
 
-{{ cryptokit_hardcoded_rsa.r2 }}
+{{ cryptokit_hardcoded_ecdsa.r2 }}
 
 {{ run.sh }}
 
 ### Observation
 
-The output reveals the hardcoded ECDSA private key within the binary. This key is typically found in the disassembled code section, where it is loaded into memory for cryptographic operations. The presence of hardcoded keys can be identified by searching for sequences of bytes or strings corresponding to the key.
+The output reveals the different uses of `CryptoKit.P256.Signing.PrivateKey` functions, especially `sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation` which is used to extract the raw representation of the private key. The output also reveals the hardcoded ECDSA private key within the binary's DATA section.
 
-{{ output.txt }}
+{{ output.asm # key.asm }}
 
 ### Evaluation
 
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MASTestApp b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MASTestApp
index 13b28c76f65a400c4da992a2043f52f734b58c7b..cabd7d1fab684617265a3df6dcf5a8978a1b6189 100755
GIT binary patch
delta 18104
zcmeHud013s-~WBiFfbtM$i4{!Du^rMhCVJcfDBq1iCeZHDFS9lfD3BPD6U!Lcu>qz
zaZ8xWP*K!2O51FC#msDZo>0ro-ptIDF>v0`_dYXtIQ3l5d;PB8U%%^jF23ixFZX)x
zGc%mp=2g4TYkgxEBVz(%>_!4^bQx_IM)}<+l%*vevhYTslqie}ESxWkQ^^At@gC9u
zeYjL57y|1S$l7!rS2E6X?KQ#R$1JjTvCEfPq!@8j;8LqBJ}3Jy;zjPXUNrbkS|)3Q
zUD`>@po)~5L_^?QmuiGdMZD~opfLniyR`0B5ie`48iU_Cm$sA3_uMk+fM!(SWtUj*
z5)&^w89WSu%`UC0b&PmfTL>*%E?4U7@+Dr@HbCp^(z<<#7o|@<yGnlA$iM)Xwx=LF
z6EFMD&>H-VWpd;US7c+Ev_V@gY?h)u!-Xtqq-XEI%_n4&Bd!3%Yj`JGHD1zo&rrXN
z_hk!r0U7U0Cp||6PE(1Amow|VJr0iWdPorRq~~>JK`))xWr+!uQnGhUuX7QM4P?wp
z{dDdjfl()mfDl05!vZ@B+%Q*QNfA=Hccf5Hm1vvu1a{qazrWPv-BUm2%v%Hhxp~9~
zQd<4};zyedQixAd<mP$sQ(S#OQ%Gh6SPvHXY|+N*5Pk;OcmSoRbaZtE5YN`4oCya9
z=uh|GU^PUhGqzs$gUO*2jE-teSo8T5<`~xU)aTP65BXUdWgX|~BFn9>i4VUcjb1jU
z({~+MMO9~3_q&GKzw01vSZ25Ehlu&eBBC#g?B`25HmP_{UeZmo(J=$@Sc8Y{ipVMi
zZ|lSh%sR2$msMOqh^DxPk<7z7lGoCRS|XT((_er#Fo(aD4Xg54b=v6p>UGxfzpe`n
zEvN5;@1O8((Fpb<WuemR%OCa}iyZMkNRef;#eTlhs<NkJc-AHl+mp!p;nk&|3(J^|
zG8^E16W*S_QsRmj&na*`dqtYQA|}Rx+ATiJp=B%}1>%{nm>d^0fp#4{nl%3QUcS<{
z6|tV<pc?msbaKT+@v{z6<jP*|<P%o*68CqI7O#vM^_>rznqWLC<{3*H5SBMp6JS4&
zFgG-!{WIt#p}GDB3c>K5K1=o<a@W*#kiK3yJmwumh@F2EqSi+mvg&wznWk~ay1_M7
zn!siX6bnn8HLJN=lUSpRHadRN=<FFNSpP5SDJi%|SwM4?z-(mMzs+*sUoB%Mc7d8Y
zISj$lyD0;i984U2_9qRq=|%#6S-N4Ep!;|<c;4kz8e4@R7ojSk-|8@IbJo+B(6U<y
z9f8nm{zK>_gpP8DZqV2kA#^s{6I~_Rj3|+&A@<qzhc0MrO&F^}=xKDT%0ioYIn2YB
z41IE)$#Gs2Xt7^~K@}$ZK}|?=l}2nluL-iRpn93n!7xR1-bRPObn6y5os|^mcT6&}
zBb&qbCDk;+o<?yEcoP*8VRY~WAw~z;UB)N}qLF*i$jJh$qoO=e=$a^_qe){4ut#GK
z#sDsAg6&KgeYOi`+v_t2)Eq0*H@{vssaZA*unQ`?HQ^LM_P^lrjq+emm^|1dlFvs$
zHJZuI)n${LYq}-XRBNVS7KAqEiPqCPcKf<6p4q&IF?KCp7-5TF#v0=V(}C)}Luz<8
z89Zz;2ymXdZl>5+hn8fa1@6`s2-2MmF_ty{M#r(T`<t6IVd#VaySt8~8h!I+O(>>z
zn4R3(a(W{trCg>+8JARZR5OX&FM@40(q2Sb-icUol)4GAsQpW!rzO&iL8$gBw$$jf
z)Cr-y<EqN0HNOCZBW3>0I_J{QqlU5H)`YQ1)hVnoLeMu?cVmsgz;zmbbV_D(9Xe$y
zlF?dpj~tCyizeLuC)VU;O$2YiV8q-Q$`0KCpX4gQfdVpGEzZi@aHifqk0PkUj$s;=
zU>Z~`_rUxMu%Be|+?JPuYwjJPxffs`>uPBzYdKA=q_rS`uHGdVO1)WqoHc4tbUYGQ
zm$61h4VlRr1>h!&t9$Eb7T46zOse5shWWRHcUgq}B3kmgCZqWVupR-Z*tc_&YABfj
z8*d*98n>vX8biRld2IP<!!NH~H+=f(b;C2iTsL{GI4u}kuZO~}jt@})kJE(0&TB&K
zmJ4WwCzOJo)!jl88W%h?uj!VJwCOOVbeK}|c#m$IVp$qiG`!22ElV&D!!Zx@Ixt(F
z|C%k;ng9%q*m%dArdf!cT0FxG3y|Uoqj)?4@yO;6*xb+rTkQYhgghaBX>nHm(KZ|*
z_P5dXhsuJQ>t?p^T2aVomb*2h`3(G<;X~s|E7O;^lqOsVAJT7lF`>MXa>JB`Sj5H|
zXaz$n8evG4$zy~B7^4s*qHa0~-HguY4c?N`?OJl&<yVF7J&)mh8+`TDMKyM;+#0N0
zJBFqPE4KzKxBAN=*lq&tmna_Q7_(rN;%L!sl@?L}uOipVh~O)udUc_Tm$w*N5jqq{
ztEURfx279wj0R8J54HSb#Gobp5yye{4}hz@ifi^E*X=vb;3^dME@T;1sO&rl12dc<
z;hSU#*|!SW5tr;sU;#Z4%|`N_Iay<!*bQrX7Vue@z4Xf3LBb*F{Mr;@uhiq|dxWjh
z6Hmu=*#z~Bo5l^TOH4I4?t8a-gVc9jlrTg3=;_R<MJio^Hw$pvHE6QVwk~<Qrd5L}
zMjf`6A3o|@m%LL=IwQ$yO%A^LvDG|)SY)R&c}TCl95|HwJo`630Y*nOH3e%e9X{za
zu-P6q*1G*e#FmDx>oI6Ko)@%x(k3vJYP>@_xqiysvqj#aa8Q{<{86VfSX#O+q>C>Z
z`xqT=<9KP$x;SqEQVL~|zF0Rp=2snYf%YrF8(~ZKR-9CPxK*HC>n#m=W?UD{xC$#&
zd4M%gUzKdnZ0mZBu^=0E)6<lekH~t_Mo*yqIu;-$yx3LBe>PZnTUz#Pkmj0vPS9f+
z(K!Jfc8$%@+RjMt+*S4{>vC6V)!I(naaPii!~L{RfD;cBBK0fxj=ILGw6;UAslwso
zZ|#Dm$IE?S*PylSAv+vp{?;x;+Q;KHX>A+1UC`gzoh|Rdn{lT+)N<{X=!wY}Y+w4f
zHU9M^<34Wih8sL>1@NOi=CAeK_4UCi=w6(HMhLziZ^z7|BbVF<-DIQ75Qal(0XBKb
z=M$d5=xLiG9er+KV7f~xZ$lCCb5#=7$C<r6Y2+iYIfc^`@>(*AYSOZbgSo?Mj^P;7
z8=h34JW`&vekhoZEj?lL1F*<gZE{1LG;e*V_BX_OOnP>G?pT_@Y&<ptcoQv*H9EF{
zZq;<P?*<+UpyzH2Jmf7l%zm(JB6ci)I}Xg(&Mw#5F5n=vUm9tPiav&1hj%Tg(FIzM
zo)LBHdcs1t(dY;ijCk3xo<1!-X-l#23Y$D_r&}>yx?7KW8>|!8&gr>`PS$h?n*^_l
zofJ2~z7i2>zW?DtnDha58)WaI9y;;Sv7}yeKk5mV{oa-R7Q%+kJ-Qy&qnA;MzrcpE
z@7aB9nN=FSp^N279yi#22zwV!gZ511EWSX#{`N^+7mi#JavNhjc^k91JP`6=j0+v#
z{q57aECPKpmG=qt#bn5M8=04F6SXnHdNdm~(Db7=jn}e%yiwGc2iuYb*{5-up0EKt
zh&<du_K8yKhTO0;H2L4IoETx9v_p#WY+G_c(zlYYw>-JLZ0XW(lD|@EsPK*9${Aj^
zp{TK{O#gRFXhKD#Y-aVc#c?ygzcVX$n^k$)g1H$EVt?HTKC6gy*Koa}pKwWv-WWI5
z56yC>FdMxG&?(}!Mq{7MnBQ;c3<qR#Z-?MW6KMY)k0uT5-S2$A<FIxE_H+>3C)qao
zcMRe4B+R}FRu`rH8^eXm(x)4vygj)*z+NK#u`y2gSn9edSU4jM-V`<9Nmwq{Fh81Q
zbe6k-$Ka0|nr*@M$<P@vGguY&O|AS=Hcnc(DQ@5#XlOo~fq6eRc-bm&453zFwec0l
zu;N%kUmI55`eef>>AOv#i6`B2qd{jYgT3G>M~y=qzP&JZie<mU--P+<36y$OrUZPH
z+^T~{{4}{$qc4c0_C7BytBjb`C@X|7l3PV6+{$N=rYeZxgdAvp0W^i)39K{Dh>Qmi
zEdqA~RHx9XC(zDJGa{n_2I;rTV8JALZ=Tu3y?}#V3)oM3a&t;HZ!i|H9~$6Zz%_gU
zhoTEZX!x!jdejSxCeZ$#t1Aa{O!`23BWNcEgsPG^x*+>h_}p4fKEd`QQuOov`@YFN
zg6u~$nOIsOvc*o>qJrz_q!z@t$Q{y?&-a#Rdy~#~PTK#x|Jdi+GScfwm|f3#f4jW&
z$v4<u>B>R09Fr=P?U~EIK<c=~JlKjJqsQ>W9Me=GD}Vbx9nMOc2=iU~)+Na}shDbR
zPCZ_IpR{(1Sy(JJZt2!{FWT!qZ_*Th5L3JkvKBtYLl7&JpW11PZ<3;42#!zX5#`h9
z1#J4S;o}QBn{|c!F;_IUes*M%l>LH#$9za=xv=%KA`_%#FAVjY1qq$|`81pnV(X-p
zPQI`y5`%Y&8N6)0{`||s`V>8^UyKYJ08g68;aI|XuGeyGETlgCV$5JUf``o)5vnh0
z8tZmx8qIL2-dk8xy>~#(9LVX_3J0ZA(KuXHLEl~KxHa4p)9IA%ywq=NkRK;MGCCq$
zGwYT{nzA)5@G3f8o)$s$YIZ6bmF|)DZyg#+Ym%O4x3EVvW8Js#bsuQoAPL+2JGS7B
zidMxO)Nxgc-WD8s3ifw9T*QkV?Gpj^r=<J0`FFa^?XkbZ{tt~*wCz#vPq--DK3w|e
zwsk`O!Tjy(gpp4p3O)b+MCViYzT<SBLc44l)HV}17Wn<kCjLH7Lzs$PVhm1H@4|kQ
zG+@U+I(-0&_t*@r?UF-Uyd%tqvsSI`pN@mub_@~5_#p|+gEE*lV}1OA(WWi#-zTGk
zL3mrTbofO{p}X!8#!5N6%)%Dw)m_~JF@FQ*i!5Lvz<m~8DE+XjcMKkOr;0@_&O`q8
zk(j@#ty-Q2VbZ<3bzPzmn%XUoxz^TO%Gn(kZGe<|MgCAAkS~ODctzk=My)MWdUbc4
z@U8U4?teUzj%2J6FY6*ZB=>`-tpk$M)0^{Eo;E(x4W2lQvQx>6jE>ca)f2StVfb}p
zH3o{2XT)c4%tj}VgUC;Db<3oJJ^h3u($+nrg=*=ad*UoO8Vy;G7B^v<JPu6!b1r_a
zq9?4KjE)?HvHBSuD}ZTgxVLzEOUQ+-)zeh79Qs==&S2+p)_CJSp{8|-Skqd@Y?Pk0
zDw>4{KwY!b%-a=&`l)|-`>Z;-eN{TSebq+CE3*DC?Rv=FuJcl-y|EAS9D>Qw;O;tu
z&L%Z0y3XhdJws<3gnB9-p)Lxr<MaB8rp&)~+X#1fK_@-8cUW{WV$qvQPwGmC(Q#Sj
z(@pwmZ-3!FDYQC87$rSiJzD4|ZLOY(2e(iYm&L1##?*ILhk*}LR%h^*8_u+H!!t|{
z{eKwPx3C5&u1@fl=I!Ywja%o}@#d|&?^7>JAJz2tls6XXPEB$Q@8KEVw&O6O9uLBn
z^<j+sA*E}}dek20lQCQ_fdxsDJ==@VCu4~8r#;%jn-OoK&!*d64;ekV3qx%@kuk(J
z-d&c-+x@D?Un3ExmO-z0r>c#{$DZ^~HB`8}?2x0D4fsor^~@0LPf2Q{@nSYePEw0W
zz3=6qA>3zhdmkgkL2Dm(bqUWu0<WZQ*B#RBmm@8rA~knu@Ui`Xo~JV1Z@}oBTD^!*
zI>o57oc2`Ecx!BvW1Y0oSPN}*tb*>Ppc9RjyGBD4iZlg1ML`!R=miRTxq@D$pvx8X
z1_iyvO<T~iZEgniJ_UV1K_6Do#}xEi3i@3I{l0?!OhKPj&|ibLxV!XU3dJP_eN{nU
zSI{>Vv`BA^?x9i8J_@>%g7&*hTl8Uf8GWRJj#bdT6m&lYov5IPDCkiNdWwRcuAm>`
zv_+m!vlWUt3c5f+7b)lk3VN}EUap{5Dd?vabh(1wU{Nre6!aDay-h*yRM0OeXuE=b
zOF_S@px;-}7hE*H+NjlERVc12=$i`qwt~K+pv7dx*ehrs1>H$O`zh$4WQV0~;)E#_
zkqSCSLB}fSUJAOOf=*P>LlpFI1wE>bj<3}xw=uQ)GzC3QrkU%K47JlHI__ia4Ij5i
z!#qL$0$H5U9yeWgI!XSm3!ii0%fRxtwv4qr!`Px{rIWQ`v)_ZM$Qr~G;}{!p%jui}
zz^QG#DRWXzafzw05Py`E?B*)c(^vUNA)Bmgk7qPHog~*e?xxc{D~;P9Zb`Y9vCLd1
zehyqJeu29gg6vZ9Bqzle?twfr(@Zi#OswIS$8papB>s8gNhPfIMt-MP!Z(yfJUW&l
zmXW`>hwdg*sW^)hDW&4aXj+!|@V($6m;c1kE;E;8j97peW>dOZ{DlXb2dB(jv)L?u
z!THgoHj6sWJUUiNI1nEFCLTVnc&0JpePn?EW>aF8*>r!YxN4j<_dpLzJtCEgU-A1l
z<RNY(+LT->w!kGzEC*{!DV6`kLaubPh`Sv=ys$`~y9#%?F!~y`R4gR5SscbAOPoOw
zB`71^oQ0T@{-BTLDtgbA01>UOh;5bDBN7~@k`Fx5qgo1=CEg@Dl$RdP6Y$PJRB;4c
zvc%7DH>H-!e_|~a)W(|9#P8s4HjOpMigdm$6`OFEYfs~RE$Pi-DNw2SxmkMqV7R3p
zF|HtKVuLG!*)$NHI<Zu|1xJ)Rjl#;Mwx*GHE_Xwpmcu|?OK##lbT>1OG2zJ0HTwBv
zG>aR>awAhJ?7D%p@VR4G*p4FGVchmlh><+iEIt9gRD6sV!^EEz=JOP^hFtHEli1Ma
zI)u9>a91&(ti|J8$;4f0_+5*8MqvtfC#|dGBXAQBlA$=Cn^PG)vG@ZOXBH#LT3jS6
z)6kwk<R}%*{7!wGC3c{KMv<Lq4E>2$s2G{1dx~fYC4UpbZRX*^U?2~fmGf7|@LUIh
zO2v+3OU5)3;*VUmgCb%u>8`~+ORU7*wam~aKG<!nDOIedh?Fpn5?I6<AUR`ap0QNU
zn9QTU$Qd~!?igDVXNiM=#4MiF2CpnWmf{prn$qY`6iF%5bWarrP$*1zv6igFL^-X6
zTFwO`>CNKDsif_}8Q1a<og_mW#8^0q(WDbELWUF^%RM9NNP)@7Be?a)Irk)Q+H3rN
z9%fl$F=&KLle<QoOe$qJt)TeSO&XY&iYsxKd+BE$a5AYe2RO4RRSK&Qw|t&*H%6+M
z;|gFl4Zu>$C>33OIfV}(6Muo8w&(YFd@l-wJ&Lxe-jIk_5sXj$$9alhxi$7jsJ@{*
z;<Mz}R<U?96%TmvsM{-vdmVFoi3ZL;O==49JcWR>nBG3hewc|R?jXODl{mjGh@5x~
z4<dHr$~?}%$((}xu6o4ZDcjxJ9-^pGWJ!x?8+W9F<PKfM`D=J3Mu#2+Di!^CRN5q%
z_$x`|SfW1#I!l(O6tg&)JAR2f1;PRMJ(sEY-;jx~x$KzuD#=AM6t|F&iQ(LJtLzGK
zCLe@W@RagZ;4E=8B`e|~`Qt$z?6xO|$s~^F8OE5!Psqw5PLSiF8FeHOBS~)-e>4$e
z;*4pGxrB*1pyeLH3|PdR-uhqp<J(*0kJ%}|@yG0T?w5}{it1iGG;?A8?2^f22jYm3
z0iRRcN{A*Ox}@5p2Fs+p{9*(CvJJ)Aj~C9(F_h#iDv|a4e)pi!e|&avNiLl_`V~`P
z*(ftVw;;P@eo+nu$uC%tJvV<=KZU=KPsaR5=jP8e+>=vk=$W3gD1Nv>p`OHieC~$$
ztDZqWC8sEVcK*!llKgoE?VNd>yWS{3PA^?NYV+&!htqjKEUr17&fcIa8l_doVk28x
zolXIRH}0m>c^x#FyaJPjFiHAVI(aNM_6WpdVDcgG1pxJZ9!xUu-OmkRD@<#Dm4aSR
zvs8fORWM)vyGrWXNsyg_*>JeJb%Y;r@d9k=ng+WVRDts$(*bJWGZ8Woc3}Xwd=um?
zEl%gG?4rlaMcJh(^XASgf<5%oH?Mn#`BJ{$aWX`0YwkFm9|H97dFB`C&g(<_7*P?d
z3Fvp8bP=t*G+=yLU)CUHztPR&+ldM5@!886;1@eHvAdoLv-FHD1>Ox@4g9^HY0|qe
z_D~llQ~{^^F^`B4=9Lh|G;5-mu1_@cIMoxs7wpNzYdx9wwRjwA<56;N#tglgcrWm@
z-c0zUFFqydi+KH*rlLP%oBOkP;gkMM)F&{Okif(S;4{Dh_=zKxj4yFLqB=8=&h%5%
zK5rVt-ESP6@a7TmpizHqnB>`zsQ2P6(_7bAiO{oy=?y<>1gkXdy-_}T>$5JcbmYA#
zfqq_U9lj_-HeBk$yIuHu7fz=sf<O<saFq*RzF)d>BGwY}9;ppjo`e~b^BOo!H^XCe
zH_}bMJY=MIvGlW33crE#daLBZ6)wEdg*Ulyr3-JC@pS9+oG@59!flJ2cNO#r*XY>`
zT&}mi=)zlFc$*7vci}1*u08nEd#??v5JJ2XtRz~G-iqIt-p0=$UVqM2{toU{TLxjs
z#v?+4<&*hNC*CofglW~B2FAOKYe_IhawX6GaeE8$+X}nG;PGnYBstkvEpR&1fhR7+
z%5=#Ii}-=tcfb+AUpbu?=LirVK`<8>KTdGI0(=noI<N#ht<>p!7Wjk<CoFb4FM)R#
z;>Lp@$8PH!1xyV|1<nM%0_<>MTJHf%oX!T|3Ba|^=}zZn5OxSI1AhtZ4(P_WA^%As
z7njP3+<Fi2)N)^7O6&)`1DLuvevwP)Hg@BkoX}g{cvoeqC`3h{C?vU_?RKdP@!=Zr
zdtCgk%A=ytKO}^YrhyCT_L59l4-U|`jOb_pmj}>cDekT8ViXE3z9JK5<1^+8k!h1P
zOnVG)4Y1w=7=W+swTl4<0AZd?I|Z--@HOBmFQ$D15UFF@hX5}EV!WAl7T_g--G^!Q
z9hi0^pbik^%e2!02LRnWGHrQBX3?Gjk<f{0mjjvr4|QhRO@J0anjSRZEWpqO&Va*!
ztAJQPrY!(m0hIeQ?FE1#fN9eKF9F0rrX2@Z0eA)QR1k^<EDB~?V+hlJ2<RDVVcMcl
zrrifP2bdKGV}M6E)7}fH0K5f=iD23ZfW?590H*;#T@eiM7Qi!-X_ElfNak@8kP*c^
zA`Q%=8IXakv>JflSb7`)yx5I-4DZgo%DXe+iUqfV9!&TQ5E09~rURY=JQK@=oxq*q
zSU|5hCX~c6uaKV1Ya#$&NqE%)P6BTCWSWq8rWp=+B%XP#06q*j1!#(A;&ni$UQFx*
z$N-e|VqR|mE&u|0GcU_H+@1m)1~dV5eVA7tKmp(wpnG2=1uO?t0p93~E(hrQp+^8#
z!0`S|i(i#%R{>5Y;2|;qT@087umipZL?og|6Pag8BH|=6@xOun1~Ol-n1Re|_CQQZ
z#wwr46AYEtl7+LK6OxlMisqHfn>lZ;$uxdu{k{}oZKu$LA%*-bl9pf^lQ2X+m!u_3
zS&&<~zf`cL3@dh@Wd_ckS7aJ9V9=P9)J#*`0b|Odtde^MB&5xoUoeXwMg}CNW|w5U
z6HQz^H;n@Is@yhFNUS_mDufMHM;I`)D0|_=oWi1<;+%pKIfx?QAd2UzC$h83xze;)
zFiaaJmyOfZlmSEXi>J_etF6K;Dm?SizbQRyQOSR<ylbK|`v1Pvt{oMA<FhM2nJAe0
z4?-VhC*>5(oHr}KAU88JGuLF2+n1M>nQ1bONgCtQO(~f<JEijWL}7?gS);;W(EO6w
zNv4zqxzkxz_u|aVe`AK!y)p&cgv`=*2E3BN^NUeNVnX)Zx$_p@JFmDH=cs}OIYq@d
zRJsexM49ah%gTJTB(1(aQ#d0A@-uJN{DPcCg*h`za%PPwDw<bRIl4sXQNM4Ba73)k
ze?S-zCam$&N30M}2#c&jUTr61YIj4bF*P;S7*M(Y0U@UH3~pj<MCI)Vgr_WBu?Ne4
zeEza=DjvTiCOytR@<spffj_OAKc(V-Qt>@-0#Mo;+w&H-zP$h+Gq!j5R>f<v@hbyH
ztN6((zF5W6_sw_xEsPy%Ct%DAhoid&jK!+>sVaVfir=K-zf$qHl|1sZaCD|J;Z_xY
zO2y;nJnigbJlpg5sZBdQe!$a?uU7DspPf+%i0_E=tFoYE6`!NxB^8ecYCHd*ReZdz
zP0#bQf7}&Ne)fopx2SkLrQ0Q_Q}I8lc>El+o&BITUe3=ZwF!8BR;uFh<JoorPN?`M
z72l%b4L<GtA93@p{H)e3kn^*zRlGyRckIwU;0P5zN5z+`_?KP0J3o6{WzZ8Zh{`!&
zR`EClwbR$D_^^)c^$)A~r7~~9T$ZnGDuWgkKLf9W%7S*Qc)TjM(>qjrFkaV`{(U%)
z!;`y!B9#G7aP1uID*mjBzpdgU@ph$5I8eps5Rd+ED`1Jrz^3B&s`xim{C6r|kC)<h
z1*rI`;4MmnLX|;<ia#pz*uUhfMa9qb;|bgJr&N54itp)<kFrrfo5Pd-?E}23;$!d_
zQrbVE;$M(?Y&Y_?OT{<JJVMBqe<1oFT$>;zusuIV#jln5wgfMz_?;^LRh9ommHs!2
zEI?iI6@=frC=1Gy`L={BRs2gTzD~uzqvF3(@s`Uf!8Mu36G6T_gLy%11@u($6J#FG
zQ2EMI@lUAu6*7;9I=?KeQWmr&sO7v7JGgv(rQ+!yGzDhF1}k6PWgh#Ze2tNLY-jTI
zxXfdFlCSkLkKKhXjDNi>XqyAy$~?9Y`D&4QtZw;=2;~J}vB{T7=CKy!Yqrd{_24R*
z$K02%dYQ-6#zp(@7qXyj4qWHF{8<y(I90q?7$1_hF4xPvyGvQ5itnr9M=N;B&+b<U
zh@UU>Z9{^80HaCS#_v$^Z>adQD*n2P_X=-|$Mdu3y8_D32CI0piqBK=<tqNTivL>0
zUvJ|vwsZ;j|6*keJ4aO7X9+RGXjaiop~0sCr!gXzNPq#*4bTG+2j~gt1?UY(tlU3a
z2)FzL<Ve6Mz-WL8kOD{ri~*zr#sV?`_X8#ZCIKb`rUIq`rUM=XJOp?IFbj|am<`AS
z<OAja9s|q;JPw!#D8$R?>Rh2?<>p+Wd&g%WsRHZ(?5zA}ju6-P6_Bq2UIWwu_5%(8
z4g%@`hX98G^?)Ol!fYYR+qLMdK9%vag$IRhl`CfpaoT<`;0>NCjIH#}6}k!2D*NUN
z_Xu+<=jRGh+4G@a09XiE1Skb81}p(A1w09O3P5wg3RnhM4k!bx0IUS80;~g2JDvqR
z2dD!4pSGvIYo4GN)bHq(ct_t}Uzab$>Hq(W`hWO{;s4f)df{SW?EgD2>Xmp=Uta&i
z5+PRGE9-Ax*I7~atfJxl`wt#6V9?+}iI~G!sG-Y*hsCw5e$g@^MKHdjUAAQVJ@3SS
zJ#yd3?mj=A%F4fZ<Vx1dFZs5lmoI)aweRHD%}qTnd|9yQz@?(zlYPwv_Bp!1RXr=-
zOJ2J!ESP;(`R8)MXo>vw!NrdI57$hb`tG++zu$DG<g-7{>LuSlzq+$P_x@+Ce(&}Q
z+jZ<d<I$@nh7WeH92j)o{>jzVahj)J>SKKAfiSIEcw;`>;JDg#dC}f!VP&s&C`qq!
z`knN+b?89M#+BPkhiZTJj(_=&J)dsx74z8O+Q+qLYgR6(kJ}Nr+LjpI+W&*-v=0~V
zG8I2uwx!-bDdM{!>#us|_Dq=2wC~}!moDG4qcQPoDszS*dvS2&^j;_W{I1s=Z@Mz|
zslsowzkhc`dC&2elAf-$r^L!upL+bh<k^>x#|JL`q%`f52Y*|a=+)=TXZA(S?BzJ{
zz$@u5ax2S_tGk9ic7fe4jhr2Eq>IkCHE>Kruj|{spJSi==8jPb^UwU)edw0aNuD(u
ztF}}u`1-^HuY0{6yZMp2D{nidbeKB-z#9KPxAJbjG|t;$OscF{Hh1&7>cL+-eV=<Y
z;fi1Ss0Yt{o+aEfS{&E;-37gG40>xs$b*|w-}-#e=%mPqnm=}5G(=C?*?a1(cW(EM
z9p^jeqaDpB{x#O?`>vNYU4#qQj$H3&dj0qMZ&nJ?{+6Kwh9xFVPw4OI-D_3)s#_fe
zZ;t^n9)_e5o%>81e`(qB;2mlCFHE`p-#@(i-Ond3_5NzfjyRoIusUIc%VFj$Z*f5X
zgub5MGghSwIT{a9_+NN07vg3A$|cVW=fm$yU6^riTHb`g^UNt}L(<II(@UoIp1*i*
z(X6D(g<FK-7E8|P{D6-SuU>X~@3oujhipEvdTf`IUyV$EZuiZ($A_%;cJAu@bDd>k
z?!ZnrzCYh_NQJQ0*LUG7_go&?YmoTsdvkBzdp_#N)ybI|I~RVi;;pf9qaz}B?L2Ni
zJ1Ext>dRy9S-JSpnV+0{V9K$3qkr6(CU)yKd2hlSXFhkNeZF^<$B&hZw_0*D8eZHQ
zXx-+`Oks}?D%khI8(Y^;dSm{XDdjto4<ufne##o2sF`@g*7W6`@qt@>Z+&~X`Nk8E
zMUGA!e$bIW<kR8Nt-0k79bc9`{YL%H9@8Isva{ymu!X;S_wer{?VRxP{2tdXez;**
p!l##FENjR6pDU?eSM+4a^2sBHo{(Pouk|^vi!YwUR}R|;{tqWwsl5OI

delta 14965
zcmbVz30PCd`uChk0s%#lT~G+1Ah;p!dje>*ZV2uh;EK3guS#p1D81IDwZuVVy|tpY
z6;f?g+_f!wwO8%(2ikJ$(iX9c-nL$9wGtKc{bo*r$J745=X<{M<URBL=3VBUca}3b
zfdlV(SG?(6SlPl#h(rkK*8w+vS#7lg0{ZQfYrogXmHqayWNARK;ecG7#w~DhtYuyN
zBUrIy2%dRRmJZPiArV+e>m)<KffKUyq%0%{POum{Ab377_x82Bnqw-A3aKF=?UXDH
zbxYGuK@`bqs3CZYThz}j;#f9J(inobxur>NDaW$Zsxbsya7&xHr58@ILz)4>U%RXQ
z-PIh+Mh2}R_@-Ox?j7M+mM(_0&Mj@~w&hrsmP7hTWy>*TpLw-r0lLUw?P<A}?c8bQ
zShmg983K|%kfrHv&q*J!&ALre5{veVkTO|+ulB)7=VX=RZU-D|L=vqUZ?@B`Wx&nz
zvPNU@=h-E%0l{^uYL4ZW{e84${k*40QZ{>CZ<YwVuFs<Budx)Ln8e(cgmlGB;d#oP
zC=s4y3JL?&17q?KLoQ-z$u{{!N)8^0?)XfJT(*r4WHmnR{D*Go*7s3W&-6F`+o}IU
z$*Y`&`SyyeallS-@fpco5-Z49w$OLGE^Zs#X9FgHc=NnDezgX1Y*>wOMwWH)|DVof
zM*nhtOZDGuG(@%|q)>mv<kU+>XNe}f{(35L_I~u@7rjs)c8U!!KI7$PHyPijKILqn
zX;8C+zNDzQIXV2hhByxTvdt!kr2tjLSFYmxO-g?LQBTG^o0r?`53|u}gg;`{+NvZ{
zB>7k~YKb*tU=vbQ3l}x<<^74)+F!)73$e5!PQkwo-awpzR?@pzySB>cwf_$B`=2{f
z`J*Zy*gk~qBaP%ZUeJ=AN}1|~&KD*eVUek`>36<tZR&;?(Q2{QHVds@xV`ENX*IF&
zmManAAFw{=%aYS#yn4W}`Xrl_78B!u#NtbwIzobCQ9Z+Ia@J~s9Vbv<qX~3e^<{6S
z#d#${^vn@<DJ_Fqd|Bk6L{H-*2PM+!zU;X{F#`_zpsPv76ExSDzXax@tC}Fkb-1~!
zp^jq6nN)x5E&{<|R+Vslt(=-!zU<1NJ~2$;BJ(d?tnpzz2LIEdkt%<O!#|LV`*8L=
zwN^!t2Y2M&Yiw^5Qlz(L)$5~;&RZJ21M{-b|2>nF(1F#rG{mOw5Bhc0=5CVylbw{<
zgk8DDW`~^#y3xhd)()-TgYOBzVK+3k8cmqvHOQT)vlL_E2qU7k#XuotoymC}3O_@k
zxFEd#NI_VA@eQf+x~8RL4-bYIodiRn_c1ypqTl$w%Vp<|>d^tN$8}EJ=v7(+eeP#3
za5N7j%;*&UgN#nDcN5tRCRR(;e&p$hL=M+rq<#U<)A=sS8*nOm-rDG_fpRp)J_baj
zfz<&RVXn6edJmx23K?1#CF@CUy&IZv2iIK}@x;E?T^FS#OL8PKrbc54aug!MV^@2X
zmKC(D&uvd^K7`aIoQbm~tR|HSlIc(~8sh=16}^8{_0gVQrH9djVrtDOL;%H_iS>t2
zVjrs0o8oPH*y&++3VNO_Tx@XJ`4ALqLhHvM8$~Hv3`3BklLbzB55y2;yNBQvJ_JFI
zjgavy98RT`ytfj0RK<HR$KC6PNIB0MpJ_ax8py6|A{?`TYf!$5vSjbdQcvef;(L~g
zb_`k@HkP96@EuYN=iIobFp|e?3Ske%$FMf(LCi4HAic;;BU7ct?C&FoNwZny$oQZv
zC};m++}!ZIsr2rsvn7*#ND!-=AI>|%5=LbP^;IdryHH@s=>dLkVao8fc>-eC==8t@
zJYj<Fj{2~);d!aFA(hzp=0vnc=OaDZ@ijU<?X+aO(&K%8LoK)UXO-y#W4;q8*l`8r
z7U*()D|Ueg?)rOrmOT2I7H0sh5aoi_LHsRyb@ZF93rTj64Kt>yT$5FeZMQBuJrT>m
znz2idfUgaXWV16u!YjP_D2LYnc_FfC=1{gj!#Aps7<9IWk6m`IQ&P~i^yvjF^nT6o
zjVL5Wo$Y70-k)^B+6B}{N$ypgt+QQ&VsSyx|I%<mfkNA=vwh07HNk(a9o8=JiR)sW
z?X*x1`77nB%(i_SH<_D!laZQ!Qc@5s?8jsF-ao6u><xA7`Rji84hfGD^Q=Z^+X59n
z@&6)q3&%vqJ=IJEnz5j{45XXy@WKc2vc15LjOiLY(Ot`Tuj`stj#>oJf;EhZH-~xg
z`Or$teQYsxDQNdM9VsfC)4TK}wzqz;<S`f^BL*+qSj5Erw}Z|PDDj*>kWvxI=8bKs
zqtIQ&){mVt6i=}_GQ#LAL=ESqp+@Hh@C};Qjv|ypKz#f6L&?4K)mK)KQO_R{cqr9X
zr|4|8nh?iX)_Yu3^e1TR=$_@J`e5scFR6Z`9vXU^(HSfmafq~5-C+6SQU{3$i@j`4
zY!~`A))PJkYsUJ#b}RYQ>pFaOgH_RV?l;J>6(0HOzo+FTmj^j^qwWhPjSut_nrmdu
zbu4;(`|g{BeyHO}!C1r??7(TK?%Ca3BhWER$Rb2uMeMb5?2Fmz@qx4E327_zZoKFn
z@6~M7iD=8cY#;DwldLCl&@VnMcy!Z*O|Xb+exvsg$6UdOihAxt9=8z34CWj^M;gy^
zCIot6Z>sZu4@)LSdV}ql5cQ-Ygnd1sX^cFM-nK=&U9sG{G%mMB+Yr`jVpAWXYV@{E
zV_haH9EUac7n50tv%PI2*^;NlEuM(2-nIek;1ltsiIJXwZcpqa-Dj;Q#fQgY3c9dy
z@kcm+5<bvq9AgOypk8d+q>$c05PMEM{Aqs|V*Y4&6ZOwh62P;@AC~;Ik|4%2+_4<8
zyKMiY2+7GVPKxpg74<=mne4Yo@hz_*cl^1*N3s^4Zov9`c=>^KnH(i8V527owyxLk
z{DwLP!4pAF2?@4II{A>&hpnC*-*plseD3r_DRNQlZ9DbIW#`?%3K6RVmIp|BxDBhM
zFeNFGU7g%A`6^nM_4PIf^d&FZYbgAP)lNtS@sm%6Vy3rXaZ^%*qKyqe6|}9fLF2zL
zl4rodUYOFVSAr~%IvN`&1RmiIG*cWx@c0jQ>;unTm!Z@fvm+BgWvp^agw%!oIwe%f
zV7jR@T6mUKsC!w(vizy3IdZ68w%!QUv#d(RvXY;7-I1IlDc)EL!H#No(z=V1%XxxH
zk-xirdHV@*^n}g*>D(sNagnv2*16;7!Xm_RT$71q5+-Y`ku}~HGQM$zz+0%}5X+y|
zewK)<TyJwdL|jJeiCtm=$r{Ct?FYdk+z~Bspko2zkYfmSl(<{G4v%sRJYHG9g<F3b
z^T{$tFBVoojuE1imnC2Lt<W-`0JGSVtUzfX`+JsI+Q>f3ij|JD-?9Q*p2wtnB&Hdk
zoP3%^V48(H_OjO5p+mbh#?lhf2uC^Pv4uPQP`?V6n1BvaI6HDEc+Z$UgK?V&dJc8`
z+(-&%Mw-|Q**ydPh8jMl37<R$jqS0PeVn~DQY5Ly%Ql)PNpTW(uk=oH!z1|yngVM+
zZ6lzP8!I1{-70t<u}^dK-GwKdeY(O^$qh~A;XRtl2{0?!ySTJuZ<o?kgwGH9;v9hQ
z4#kjnXFk&-I*DoZ4Gz4RR=GX-d6K6iRGcq`?7Y$0%01=uT9z?=aIg#c=kv7&BaZWL
zT{OCIl<lA1vo~Ls{PA-i`$Ro9gGXXB2zIPND8U-O8Ssrb91R3H{6t1uIwnEpVy$O{
z_QAnP<kcy58R~c_tb-g2p)p2ShrpU|!odz4&@mpZ9D^bA(z1m!ru%#&sv;bT?DC9_
z(sO0AW^R=FzW|^7QPvbCACp}!R|R6WX|VKXl*ik=Fd`oxH;H37p9N{yL<ZrI^aY|@
z%R0{PoBTC6q!;6+v-v%6*?AhpVBuSW=UB=Q<3h)%vuPicZJ*sk8l*#ue0~+dz8(?Z
zL*MyE`M*cNAN&!G5ln<#a~7OCOq#@Ua?R4atTZ<^xQ>#bwV-vNhUY&jZNQ;o9lM^}
zJ_ZlHif7OAvv;6lrt?n|ssfLlPIF^gB*86Dgb24rYs+9cbK|4Cpq8hJ52?H@1Uhcv
z94)kn&Sqq#bK|97S>@cmS?zc-E~4|49FY^_WlKhb{A4R|wwDblu86jJ@tw6IWtq{r
z4Zbj&D)bX!7fVVB_c7Cm@36$iPZfL6KKH9Pd9i^DW7(!WU+E%yJ#V0Nf?dvwXK#$s
zTSU9paSA5naKrOwO8B`}_<6~M*}&T~ITw5UNZvNmu=9dPFNKgEi;%J!Os(N4IbP_-
z!xX8sHZwZY;KLeVbk0D@&*JXqiY0?P8w_Qum#K6O6n=c<3U&RHRNfthqy6)=w4s35
zM37EJa`4!>R4*qd1WDjYmXoA+CrK|S=`EuZFJid-Ps!;kI;BH)&Uhm`!R*>R|FNQ>
z2BQ-jlROGUZ!2{-BpNWd8!+l^LC8+gB%bXc2VSBT)nxv;kqF)hJ2S66n?FA&dObX0
zIXd)wOzs(-H&qst?V8_Nn#C&Tr)tMQm%WkKi={8nYSTElme+<E7c^rV7Ic!%vl9#A
z<vG(D%d9b4ovnj1TH+(8qg*SeW4OtQE$;t1XLew{^DOAE>yef2eofsm^D*1NRxj-A
zCC>_WbYY5*NQu$Mc9}_w#A%7Ihww%5zKi4K2D5|Muthn@6eebIh>efaIs}0IH-i<9
z3X*4ETa$YB9Uw_se9OY@gHZ=hMA1G^%|4G)#ka8o(b?^7{M%TF^kgCP-jI%e(MFAA
zksHBRx<F4OIZrp@*$sq~E>Ao0^uFM}Jgg$1UU=K#@wNJCU%$Fsp<?ReJwPpjyiP1n
zq7=@GeQkJaS;TwfSz{Ql3V#ZxG^$$gUJ4#xO&ja6#u|AnqeebP!N)21PT(ybr^yOI
zih|Ej@OcV;se*q|!LL#98x;H|1;6zPZ}H#$1o%4?{Cf)ikb*y|;7=;}4;B1b1%FAw
zS1I^v!CT~%UQq~Y75sk`{A~q)N5MZ<@RYx1^9+-M_f_!C6nuz90m2o0jDn9-@QDh(
zlY&oH@O>0~hJqib;3v6xyiBU_pRN$hR`7WWexZV2uHc_j@GmO(%?f_2f<L6-KQuWl
zjp;h85PYoQFDdxX6?~O~uU7C^6#TaezE;8i*vMNd{QuJkD*SIN_&W;z4+Z}~!9P~;
zG(|D?3f@=2H*4e%_y=&lnV2jG{6k~`Tl}{P8P~B}KJvj{A}$TVS&Dpxx_In|%Cg(<
zE*Hm1?y`fs?1xhRodZ8;We{>agM}{-pS>Tdl$6t^*hId(?{d|Ha9kT<${aK6*=451
zi}B$ta=m?u=C!EXg}Sl&r_1_!my6dIJD)T+B!g{V9$|UD1tFPp2>mC@e0m;tGb(cO
z=}E!T8wepkGt<oLctPmvLbD9_ti>F!=a`G6f1z38@_y+mZ-q+DxyMhqJ^hv6O{RRh
zPcW(ZG!RS{eS0_x)XN|GvRlnvGl(9=v)XJLVy4}Nvtzht&M}+Kw6(x5bFrDGqsXU@
zX3V-GB3j2mqXWC!f!UOtWj2k@r=K@xr&qMKxP*N)Z;!?b^KW>KDJ7q#fytuPxSLY*
z<qthBgdS)bM1S&g2R2(6-^5)GY^1=)x!6osqsXUM1wb#BnR#Eb;FD#q^tJThQg<7J
z=mo9?abu(|cmf*FD`AO@j^GAabN~vP!y}?Ic#WJ4IHE7XB#Vad(9`ne53T0`HA2&1
z8ZR0eYL27t2<vuGkYnE@a6R7FBK9*V@@a%0Yn~rrS<Zpm$zZB?doY{2BB>eqbf6sS
z1hZ+VJJdnK`h8)BoL0kvRsxwR<99QDv=bVwg@%{_^dMK-CzKWnB~u#o=7F_{xpSup
z4?@;m%XL=^-Bgb*JpnGCmhtFd*p(x<`Z0y+Fm5_nnCcr%UlgV*g(*GAwP_O}B=qMd
zc=UT_6sGWeg)hQ=Jw%0>e!%Z$ge*5qJIcOh3t#23a4^D}iu!!|nz-{EXVFaVWG&Y-
z4dNe~%!M+~@2S+1!|hENl^Wr0I_%^jyC85f7n|urU+#LW08r+WhISSTw?y|MM57}_
zqu=4~UM1+080<!9N~3jfB^q4B?Je{-6mpB>g~KykZl)VVi{A?%w}?B&mRD!dRVe6Q
z(e!0lWr?w*Z*rk&F#phJxKQT#J&opbSD5g$o@>$P<Yq0r=c3{nE;rLa0Tu}0ULMrU
z>(B?f5Jq$^m(lk84#Z12Gc;XP(MoKa`Hk`>LVjL!?Y_7t;GRWK;SQIB<<!s}T%=6X
zr|=@uG)y@740kz8T?O93#b!ENv{mlI@>WGyA~<mSNTc|DOgJ!`x?m}#=Tmns$8oRA
z2<<LB66z;{8YOH~#5VOTB(#Sx$DBLDCA6ofeTZU3%~w2*#)#<vUz{SS<gu~}9qO^7
zxdK;V8^<UTdL4|&XyMadoKT~uxfY-9_%#Ske}KE(b-CeJg%diCyPyXIfYEDuwC|3G
z_I=vxTioj$k5~Le4MQG~?DcbjdkIHW5@50be3KxwC$Djj5`M2DG?EKVsb;!E=tj96
z;S}xXR;Asz-hFRbkI;MI@+nuOwY-wh8N&1j+z|t+Q+dF25HvWthx#n~GS@%JP2G<Q
zG1%^19S;l>-NK!j2AOFPcW0qnWq+6#kGL6~&E;m=S%CEdKpSJfAH19qJfK$+mru!m
z#p8P@4i|XL-u_KIW`Dw&BcC3`-AqWEXM1L@m^*vf*r8o<L`a8C?j2!+-$UhVv&9gY
zzI5*LoMp2N!)E0h+6|etGNF%w{cf=Z{BqCb8V$8Nm&^4t_>wBN)fyLxACp|A=(;aX
zA&0<om3>g@`G?C@SjVnd<KkAL`d6r|L%AD-mkT5pD(U$0co(G+s`}qp-0H!WF<|9T
znu@=p!TS*sgt`i-J!p6$<2sRW#Y>4`pTHFcy;>0O46;Z{VG{s+7Is%ap8Bn*KMg!H
zXX!li(wzL%Me`Reg+Ao$=hZ&ppQ3Yxh|7SIhkOC#51a3Avu100cCZpM2HKqX-xcwT
z^U4dSF~rn?oMubb#9D9$lakQ=WxhmOg_UY;LZlLu`%vC&LNvn>em1)M7Rup%L~95n
z-rd59=9O@wPijT9U&a!0Etb%`vBc+Y8@O&uByAj_L*kG|ltn0u<A@ZLfE*+csY4>s
zTuUURCJ}Y*NdleFo{*L83DtKXq*Vt(an|Dz68zk#jcQJ`I1%u(Az}Rr4D|5XvS|g!
zDf22%_Fsv=UgCd<!lxQaYuS+UpES&VZgrnk8$}JVy2}!GdDC4Ee?^vOyUVxS<u9+W
zjPr3Z2k_mP5CbMKFA<$+$RK!r%YBD!KOd>*f3d{dXG!M<#2Bm`@at7^2X<SZc8AGU
zo{I{wZWdC1D|446WurfSzc(}b=N3s}-Ugvth`-@U*fOLMXLIb&|Bi|`S0pTp3s4!h
z<+zk&S#`kW!r|D(OFm)Opu}`{&s0KqJ;yJie4wab4vZBh>bX4opvyG`WxydU0(U(x
z&jNpk@*2v^C?BD`h_XYO%XPx#vbg4h!N+w7H-<9ou*>x-%9q?_9m*epMc|6tUDRV+
za6LwO7p3-y%aw`Jfs%K~qq-Zo0{Byu<tV+5x?G6em5$Qk%5b@g!Teic;4wUe`df<n
zlfb+|kNh<79pG~)c>tGC;svjZr?zF%F}c#C>?yaf%JaeYwNwg^Zn}?G`V;(33oos?
zl&@lcg7>8YZ?&JHQs)+WF>(e`$#1V8lQfd1|CR$%Q=eSm3e1%4_7+BIu_X*IDDjd~
zcNa8YLv*`A_yIw;8*~NKK}U2mL7#&3UPPA$dIgl^O>_%E6`*E%q8kbN5)|S?bQ3^R
ze2MNXNZW+yaIDke?4@hk6uv;!Afq4A;aqCb)q?5PjOaFlnl&f7A)xm_^_=%7x^<u`
zP}3GfmkTNeeGM`M5ZxOfV<6ELfvP|cKof$9?l9;Ps7El-O#>x`AXrdhDAC;kJr{<~
zf!egR5M6dlqT2up35PQ1DCjY0a0JmU27L)4t&j=O1kg*M3!uc-kb{nc{sT&mB-&M=
zXQGI9cNFn{5JjYM2I74bbOm(NK%~bg^P=%eKAL#rcLi@>OAPTI4$1|s0Ue4VnhMYz
zP)IEC?iWim3qk8Z+py_5Kp%s?2kF}o+Mx~cUIy9@`V>Ul67L?Mg`jPqa?tmnxH#gy
z6m$*b8&ACZfF{HfUFI^}wu8O~`L-jvbD#|gMCYGKbYl{U_eqqOK(|5N+GG4c?|`b?
z6R*eZiFYD4(B&P7_Zy&npt=sk-eQ4du(wN<s*klzla@5IU(S%`*!O2j$@Yw~Qh)mo
ztEE``$TiYNd;0?E#baB>OBwXo<B8H$YOkImbql5Iy!~6fM9)bptx|4<&Y0H5kY-FX
z+S^Q(Vx%<tU=-M&e-5+fO_g4>#9{@=A3oCw=_3Pd>hi^3gyMt0gp;pQ6+WxNk5#xO
z){4@8?$g*pUVplR98uwKRrrAlcf!L**}!lW&Qsw{PhkrlY)@6-w4=gF$d<B!Q7XJh
zg%7Fl7b<*LiP1h;j^rvEC{^K0D*RA|JK;R0w9iuE)hfJSfqDDnM@0q45qLr?9S%_8
z`6|p$ol5<4Dok;HQp)+^)Qv^^grBID3KLZLZz{|W{7U_D73RlirQ8n(XC>~~h~@T4
zMq>r<KOu`$n18uaIyj-iU#T$v)}qwsUzU`3y$8G7CuN=rxqVWl!au5TaFeGUrmFB9
z6@E#Dx4E&WeIhk|+Mz*(`5O*p4+>TIcNOL@oRs=wRd|JrEtt#l^_5DYH{SCo9lW5z
z`&GC~h3iyUhjXdY-!Osk0P_T}NTpDq!tbl_7b<*Th4~9rWrG7$cnrtLe`5f7Dg~<w
zZ&l&rDtt?Y@yLHFfFu<j3T#nExIm?_S;p9}<jbkTZ39FDjq=el#_E@^i7NcEjM1cg
z9SgwQE}%w(iz<T(6~3x+&>~O-&}bhe<Hm<qno6Fd!fOJNe`NrLDuo>?d_;xMsqm*V
z#(pYawJNz5p()!-w8#~B<j7ZF6&|6&*)qm6P`;j(abpHv5!i_RPri<*@HH7@dy+2;
z3FZ+QvAxJww2ZMm$k$LAV|B~dd>Lc0$`_My<Cq?oF&3YEeJx|G4f(2<F{Y}xETlDl
zr$+#oTJn`5<Hi(DmoY|OzL<=WSou0AWAsbDJ{MU2O3G`ls_>1cFvkBExuP+p4^-GE
zRE$}pJVJ##s_<wTHx9{66@Ed9`To02Spj@Vg+Eu}8!FtO!Y#s{o@B8qoTk8od5ZEB
z6&&wW;iD@2xe9+1X8%vF6w{y2Dn3#8;PV0JV}#hm|DQymi~+R)#ew2M37|w!7f@Gw
z^gJnaY9FxtpO*TA27rv96i_NC4P*ul0gVEsgGPfgL1RGUK;uCZL6bm}K~q69Kr=zJ
z?3MGRz!3|;E(9$CEd%`xWCaz0wt%*R?4WI+*FoDs{{X!K+5vhKv=dYe+GTH@C&k;B
z<w>o0=lMHM($xNXo-|o%W4{NHuCZ_9rBU|$c~Y!2(Y|AzG|c|XJgJqm%zkUG6yLi5
zX8-@qOXS!G^Cf@Dj;{+ZAA5eG6z{M2&M<AYH0a59hGY27@RqLG(wvz~`*iNyy+@aB
z-Mb~*o$I8jbhY8wg!NLYWZc(l!MK{YJ{<CW<eil<^LwN(abA04W?<UAPgk5uPL7>d
z+@>EL`}p10yOWFscQ0r9(cU{(Hya%t_*>=+%eRGw7caM;+9+k)uWpo#_J<oJgQd0K
zrf(BkUHWL(kboU!J-$C#V!GEiwtd>auDrKkL6_3xjXhGmKD+WwzYSGKyH9OzzgIKo
z+QaN=6PCZ5Sv_;_7nN&XUSGTao!gyq2IL%^e&bfg$PVMJb3WW(_|e7xUjCz3#lJhm
z+<SH2oZeeQSG^kE*8cXLhaG0+TZ<p;-M;(nXD#s=H`+$`UHY$=pSkwtk4<-evG>fS
z@9tLzgc~wR_PE=dzy0O4DXj*)F9J6Flr(O_s>oI6GqSF>y&Ju%`QJX8e7<ey&4IhS
zcMWPbZ1e`9W$BkRw^zS0U59nQa(j<oTGEVV-yYgkzJ2t^m21jYbPP-jczfi<Th(Es
z9hnzzRTyeFR7?vvRde~M@6-e7D+aIoDJcF#;OLvXlMJ!W#OEJJl!Ug>{Ccn=Y<Sm`
zKduklckXWH@9%#0=2zwAb^AU!uX{9p#S1;gq?Mc>mHp3MQ~q(UCZ~IP^fH(JkLA;T
zxc@lrgWAoX<Q(18W{)*_&BXT}MlA|m8gRJF;bW&>m7)VJy}BiJOP-X}*~=$!?U1$i
z{Ujf4ml&;K?cG^DO7mw%R3x=tY`M{Y@^r7uEB$l(-d@<ObDK|pS+_o^pW9%@Odr~%
zb5chypX{|mq*)p*mHr>B*GLJny?yd7>3T%&@{IW-m(1@zDP{TS5h-0(%x*uT_xR+Y
z=Hv-;?BjP!eJm;Akqw8cFAP7i;_b<~7tUK#XN_U2ceV%$y}B>|+R;uMPW#3TzmVd+
zYwyy(TM7;@O&HTqyI|Ymp@U{!EzO%g@SAlbPp22X<QKeT?TlYOyA;&ywJ)0V>-bv8
z+I~x>+L!M*6g4pF&g~XHRe?XPNWa^*?oRAB?fWH5KYQ`RiiWjAAFp||$8sxt;L2UO
zdHrTA{N<&g>lzZ0<KJ1f=~CdeA4|F|dV6NO#6Re{c{@wbbm+h2==93|Q+HTLx;Fn~
zfM#vUq>Uq_o;8mzG->+Ik_R7bs;!(pP5b!YS?|yMca7$q#CzTM9(*VCJHKP|Lc2_y
r+`QktpGkG6$P<pO5qAc>F{$ORrI#Omy;E~Oj*jkB=KgQI3eEokiBNi!

diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MastgTest.swift b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MastgTest.swift
index f1577b506e..6ba4525041 100644
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MastgTest.swift
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/MastgTest.swift
@@ -6,9 +6,9 @@ struct MastgTest {
 
         // Step 1: Use a hardcoded ECDSA P-256 private key (32 bytes for P-256) in bytes
         let privateKeyBytes: [UInt8] = [
-            0x7c, 0x02, 0x2a, 0x7e, 0x53, 0x7e, 0x1a, 0x2d,
-            0x44, 0x77, 0xd4, 0xf6, 0x20, 0x8b, 0x14, 0xdb,
-            0x4e, 0x8d, 0x84, 0x19, 0xd6, 0x23, 0x5f, 0xf2,
+            0x7c, 0x02, 0x2a, 0x7e, 0x53, 0x7e, 0x1a, 0x2d, 
+            0x44, 0x77, 0xd4, 0xf6, 0x20, 0x8b, 0x14, 0xdb, 
+            0x4e, 0x8d, 0x84, 0x19, 0xd6, 0x23, 0x5f, 0xf2, 
             0x4e, 0x4b, 0x8d, 0x18, 0xf4, 0x2c, 0x76, 0xe2
         ]
         let privateKeyData = Data(privateKeyBytes)
@@ -18,8 +18,30 @@ struct MastgTest {
             return
         }
         
+        let publicKey = privateKey.publicKey
+        
+        // Data to sign
+        let dataToSign = "This is a sample text".data(using: .utf8)!
+        
+        // Step 2: Sign the data with the hardcoded private key
+        let signature = try! privateKey.signature(for: dataToSign)
+        
+        // Convert signature to hex string for display
+        let signatureHex = signature.rawRepresentation.map { String(format: "%02hhx", $0) }.joined()
+        
+        // Step 3: Verify the signature with the public key
+        let verificationStatus = publicKey.isValidSignature(signature, for: dataToSign)
+        
+        let verificationResult = verificationStatus ? "Signature is valid." : "Signature is invalid."
+        
         let value = """
-        Private Key (Hex): \(privateKeyData.map { String(format: "%02hhx", $0) }.joined())
+        Original: \(String(data: dataToSign, encoding: .utf8)!)
+        
+        Public Key (Hex): \(publicKey.rawRepresentation.map { String(format: "%02hhx", $0) }.joined())
+        
+        Signature (Hex): \(signatureHex)
+        
+        Verification: \(verificationResult)
         """
         
         completion(value)
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/cryptokit_hardcoded_ecdsa.r2 b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/cryptokit_hardcoded_ecdsa.r2
index e69de29bb2..181ff6a7e8 100644
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/cryptokit_hardcoded_ecdsa.r2
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/cryptokit_hardcoded_ecdsa.r2
@@ -0,0 +1,20 @@
+e asm.bytes = false
+e scr.color=false
+
+!printf "Uses of CryptoKit.P256.Signing.PrivateKey:\n"
+afl~CryptoKit.P256.Signing.PrivateKey
+
+!printf "\n"
+
+!printf "xrefs to CryptoKit.P256.Signing.PrivateKey.rawRepresentation:\n"
+axt @ 0x100007388
+
+!printf "\n"
+
+!printf "Use of CryptoKit.P256.Signing.PrivateKey.rawRepresentation:\n"
+
+pd-- 9 @ 0x1000048d4
+
+pdf @ sym.func.1000046dc > function.asm
+
+px 32 @ 0x1000100c8 > key.asm
\ No newline at end of file
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/evaluation.txt b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/evaluation.txt
new file mode 100644
index 0000000000..2069b1a81e
--- /dev/null
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/evaluation.txt
@@ -0,0 +1,6 @@
+0x1000047b4      adrp x0, segment.__DATA    ; 0x100010000   -> This instruction loads the base address of the `.data` segment into register `x0`.
+0x1000047b8      add x0, x0, 0xe8           ; int64_t arg1  -> This adds an offset to the base address, pointing to a specific memory location within the `.data` segment, possibly where the hardcoded key or related data is stored.
+0x1000047bc      bl sym.func.100004e0c                      -> A function is called, with `x0` as an argument, likely using the data at the computed address (which could be the key) for further operations.
+0x1000047c0      ldur x8, [x0, -8]                          -> This loads data from the memory location computed earlier (potentially part of the key) into register `x8`.
+0x1000047c4      ldr x8, [x8, 0x40]                         -> Further data manipulation, loading another piece of data related to the earlier load. This could be part of the key processing.
+0x1000047f0      bl sym CryptoKit.P256.Signing.PrivateKey.  -> This calls the `PrivateKey` initializer, which may use the previously loaded data (potentially a hardcoded key) in its process of key creation.
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/function.asm b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/function.asm
new file mode 100644
index 0000000000..04b2eb0424
--- /dev/null
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/function.asm
@@ -0,0 +1,513 @@
+            ; CALL XREF from sym.func.100005f30 @ 0x100005f68(x)
+┌ 1840: sym.func.1000046dc (int64_t arg1, int64_t arg2, int64_t arg3);
+│           ; arg int64_t arg1 @ x0
+│           ; arg int64_t arg2 @ x1
+│           ; arg int64_t arg3 @ x2
+│           ; var int64_t var_0h_2 @ sp+0x0
+│           ; var int64_t var_0h_10 @ sp+0x8
+│           ; var int64_t var_10h @ sp+0x10
+│           ; var int64_t var_0h_11 @ sp+0x18
+│           ; var int64_t var_20h @ sp+0x20
+│           ; var int64_t var_0h_9 @ sp+0x28
+│           ; var int64_t var_30h @ sp+0x30
+│           ; var int64_t var_0h_8 @ sp+0x38
+│           ; var int64_t var_40h @ sp+0x40
+│           ; var void *var_e8h @ sp+0x48
+│           ; var int64_t var_50h_2 @ sp+0x50
+│           ; var int64_t var_e0h @ sp+0x58
+│           ; var int64_t var_d0h @ sp+0x60
+│           ; var int64_t var_d0h_2 @ sp+0x68
+│           ; var int64_t var_0h_4 @ sp+0x70
+│           ; var int64_t var_0h_3 @ sp+0x78
+│           ; var int64_t var_0h @ sp+0x80
+│           ; var void *var_a8h @ sp+0x88
+│           ; var void *var_a0h @ sp+0x90
+│           ; var int64_t var_0h_12 @ sp+0x98
+│           ; var void *var_0h_7 @ sp+0xb0
+│           ; var void *arg0 @ sp+0xb8
+│           ; var int64_t var_0h_13 @ sp+0xc0
+│           ; var int64_t var_0h_5 @ sp+0xc8
+│           ; var int64_t var_0h_6 @ sp+0xd0
+│           ; var int64_t var_60h @ sp+0xe0
+│           ; var int64_t var_60h_2 @ sp+0xe8
+│           ; var int64_t var_10h_2 @ sp+0xf0
+│           ; var int64_t var_10h_3 @ sp+0xf8
+│           ; var int64_t var_20h_2 @ sp+0x100
+│           ; var int64_t var_20h_3 @ sp+0x108
+│           ; var int64_t var_30h_2 @ sp+0x110
+│           ; var int64_t var_30h_3 @ sp+0x118
+│           ; var int64_t var_40h_2 @ sp+0x120
+│           ; var int64_t var_40h_3 @ sp+0x128
+│           ; var int64_t var_50h @ sp+0x130
+│           ; var int64_t var_50h_3 @ sp+0x138
+│           0x1000046dc      stp x28, x27, [sp, -0x60]!
+│           0x1000046e0      stp x26, x25, [var_10h]
+│           0x1000046e4      stp x24, x23, [var_20h]
+│           0x1000046e8      stp x22, x21, [var_30h]
+│           0x1000046ec      stp x20, x19, [var_40h]
+│           0x1000046f0      stp x29, x30, [var_50h_2]
+│           0x1000046f4      add x29, sp, 0x50
+│           0x1000046f8      sub sp, sp, 0xe0
+│           0x1000046fc      stp x1, x2, [x29, -0xa8]                  ; arg3
+│           0x100004700      stur x0, [x29, -0xb0]                     ; arg1
+│           0x100004704      mov x0, 0
+│           0x100004708      bl sym CryptoKit.P256.Signing.ECDSASignature...VMa ; sym.imp.CryptoKit.P256.Signing.ECDSASignature...VMa
+│           0x10000470c      ldur x8, [x0, -8]
+│           0x100004710      stp x8, x0, [x29, -0xe0]
+│           0x100004714      ldr x8, [x8, 0x40]
+│           0x100004718      mov x9, x8
+│           0x10000471c      adrp x16, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x100004720      ldr x16, reloc.__chkstk_darwin            ; 0x10000c3b8
+│           0x100004724      blr x16
+│           0x100004728      mov x9, sp
+│           0x10000472c      add x8, x8, 0xf
+│           0x100004730      and x8, x8, 0xfffffffffffffff0
+│           0x100004734      sub x8, x9, x8
+│           0x100004738      stur x8, [x29, -0xb8]
+│           0x10000473c      mov sp, x8
+│           0x100004740      mov x0, 0
+│           0x100004744      bl sym Foundation...8EncodingVMa          ; sym.imp.Foundation...8EncodingVMa
+│           0x100004748      ldur x8, [x0, -8]
+│           0x10000474c      stp x8, x0, [x29, -0xd0]
+│           0x100004750      ldr x8, [x8, 0x40]
+│           0x100004754      mov x9, x8
+│           0x100004758      adrp x16, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x10000475c      ldr x16, reloc.__chkstk_darwin            ; 0x10000c3b8
+│           0x100004760      blr x16
+│           0x100004764      mov x9, sp
+│           0x100004768      add x8, x8, 0xf
+│           0x10000476c      and x8, x8, 0xfffffffffffffff0
+│           0x100004770      sub x8, x9, x8
+│           0x100004774      stur x8, [x29, -0xc0]
+│           0x100004778      mov sp, x8
+│           0x10000477c      mov x0, 0
+│           0x100004780      bl sym CryptoKit.P256.Signing.PublicKey...VMa ; sym.imp.CryptoKit.P256.Signing.PublicKey...VMa
+│           0x100004784      mov x27, x0
+│           0x100004788      ldur x26, [x0, -8]
+│           0x10000478c      ldr x8, [x26, 0x40]
+│           0x100004790      mov x9, x8
+│           0x100004794      adrp x16, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x100004798      ldr x16, reloc.__chkstk_darwin            ; 0x10000c3b8
+│           0x10000479c      blr x16
+│           0x1000047a0      mov x9, sp
+│           0x1000047a4      add x8, x8, 0xf
+│           0x1000047a8      and x8, x8, 0xfffffffffffffff0
+│           0x1000047ac      sub x25, x9, x8
+│           0x1000047b0      mov sp, x25
+│           0x1000047b4      adrp x0, segment.__DATA                   ; 0x100010000
+│           0x1000047b8      add x0, x0, 0xe8                          ; int64_t arg1
+│           0x1000047bc      bl sym.func.100004e0c
+│           0x1000047c0      ldur x8, [x0, -8]
+│           0x1000047c4      ldr x8, [x8, 0x40]
+│           0x1000047c8      mov x9, x8
+│           0x1000047cc      adrp x16, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x1000047d0      ldr x16, reloc.__chkstk_darwin            ; 0x10000c3b8
+│           0x1000047d4      blr x16
+│           0x1000047d8      mov x9, sp
+│           0x1000047dc      add x8, x8, 0xf
+│           0x1000047e0      and x8, x8, 0xfffffffffffffff0
+│           0x1000047e4      sub x20, x9, x8
+│           0x1000047e8      mov sp, x20
+│           0x1000047ec      mov x0, 0
+│           0x1000047f0      bl sym CryptoKit.P256.Signing.PrivateKey...VMa ; sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa
+│           0x1000047f4      mov x23, x0
+│           0x1000047f8      ldur x28, [x0, -8]
+│           0x1000047fc      ldr x8, [x28, 0x40]
+│           0x100004800      mov x9, x8
+│           0x100004804      adrp x16, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x100004808      ldr x16, reloc.__chkstk_darwin            ; 0x10000c3b8
+│           0x10000480c      blr x16
+│           0x100004810      mov x9, sp
+│           0x100004814      add x8, x8, 0xf
+│           0x100004818      and x8, x8, 0xfffffffffffffff0
+│           0x10000481c      sub x24, x9, x8
+│           0x100004820      mov sp, x24
+│           0x100004824      adrp x0, segment.__DATA                   ; 0x100010000
+│           0x100004828      add x0, x0, 0xf0                          ; int64_t arg1
+│           0x10000482c      bl sym.func.100004e0c
+│           0x100004830      adrp x1, segment.__DATA                   ; 0x100010000
+│           0x100004834      add x1, x1, 0xa8
+│           0x100004838      bl sym.imp.swift_initStaticObject
+│           0x10000483c      mov x19, x0
+│           0x100004840      adrp x21, segment.__DATA                  ; 0x100010000
+│           0x100004844      add x21, x21, 0xf8
+│           0x100004848      mov x0, x21                               ; int64_t arg1
+│           0x10000484c      bl sym.func.100004e0c
+│           0x100004850      mov x22, x0
+│           0x100004854      stur x0, [x29, -0x68]
+│           0x100004858      adrp x0, segment.__DATA                   ; 0x100010000
+│           0x10000485c      add x0, x0, 0x100                         ; int64_t arg1
+│           0x100004860      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x100004864      ldr x2, reloc.Foundation.ContiguousBytes.UInt8...szlMc ; 0x10000c368 ; int64_t arg3
+│           0x100004868      mov x1, x21                               ; int64_t arg2
+│           0x10000486c      bl sym.func.100005024
+│           0x100004870      stur x0, [x29, -0x60]
+│           0x100004874      stur x19, [x29, -0x80]
+│           0x100004878      sub x0, x29, 0x80                         ; int64_t arg1
+│           0x10000487c      mov x1, x22                               ; int64_t arg2
+│           0x100004880      bl sym.func.100004e90
+│           0x100004884      ldr x8, [x0]
+│           0x100004888      add x0, x8, 0x20                          ; int64_t arg1
+│           0x10000488c      ldr x8, [x8, 0x10]
+│           0x100004890      add x1, x0, x8                            ; int64_t arg2
+│           0x100004894      bl sym.func.100004674
+│           0x100004898      mov x22, x0
+│           0x10000489c      mov x19, x1
+│           0x1000048a0      sub x0, x29, 0x80                         ; int64_t arg1
+│           0x1000048a4      bl sym.func.100004eb4
+│           0x1000048a8      stp x22, x19, [x29, -0x80]
+│           0x1000048ac      mov x0, x22                               ; int64_t arg2
+│           0x1000048b0      mov x1, x19
+│           0x1000048b4      bl sym.func.100004ed4
+│           0x1000048b8      adrp x1, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x1000048bc      ldr x1, [x1, 0x38]                        ; 0x10000c038
+│                                                                      ; reloc.Foundation.Data...VN
+│           0x1000048c0      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x1000048c4      ldr x2, [x2, 0x30]                        ; 0x10000c030
+│                                                                      ; reloc.Foundation.Data...VAA15ContiguousBytesAAWP.ContiguousBytes...WP
+│           0x1000048c8      sub x0, x29, 0x80
+│           0x1000048cc      mov x8, x20
+│           0x1000048d0      mov x21, 0
+│           0x1000048d4      bl sym CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC ; sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC
+│       ┌─< 0x1000048d8      cbz x21, 0x100004900
+│       │   0x1000048dc      mov x0, x21
+│       │   0x1000048e0      bl sym.imp.swift_errorRelease
+│       │   0x1000048e4      ldr x8, [x28, 0x38]
+│       │   0x1000048e8      mov x0, x20
+│       │   0x1000048ec      mov w1, 1
+│       │   0x1000048f0      mov w2, 1
+│       │   0x1000048f4      mov x3, x23
+│       │   0x1000048f8      blr x8
+│      ┌──< 0x1000048fc      b 0x100004940
+│      ││   ; CODE XREF from sym.func.1000046dc @ 0x1000048d8(x)
+│      │└─> 0x100004900      stp x27, x24, [x29, -0xf0]
+│      │    0x100004904      stur x26, [x29, -0xf8]
+│      │    0x100004908      ldur x27, [x29, -0xb8]
+│      │    0x10000490c      ldr x8, [x28, 0x38]
+│      │    0x100004910      mov x0, x20
+│      │    0x100004914      mov w1, 0
+│      │    0x100004918      mov w2, 1
+│      │    0x10000491c      mov x3, x23
+│      │    0x100004920      blr x8
+│      │    0x100004924      ldr x8, [x28, 0x30]
+│      │    0x100004928      mov x0, x20
+│      │    0x10000492c      mov w1, 1
+│      │    0x100004930      mov x2, x23
+│      │    0x100004934      blr x8
+│      │    0x100004938      cmp w0, 1
+│      │┌─< 0x10000493c      b.ne 0x1000049c4
+│      ││   ; CODE XREF from sym.func.1000046dc @ 0x1000048fc(x)
+│      └──> 0x100004940      mov x0, x20                               ; int64_t arg1
+│       │   0x100004944      bl sym.func.100004f18
+│       │   0x100004948      ldur x9, [x29, -0xb0]
+│       │   0x10000494c      ldur x8, [x29, -0xa8]
+│       │   0x100004950      stp x9, x8, [x29, -0x80]
+│       │   0x100004954      ldur x8, [x29, -0xa0]
+│       │   0x100004958      stur x8, [x29, -0x70]
+│       │   0x10000495c      mov x8, 0x13
+│       │   0x100004960      movk x8, 0xd000, lsl 48
+│       │   0x100004964      add x8, x8, 0xa
+│       │   0x100004968      adrp x9, 0x100007000
+│       │   0x10000496c      add x9, x9, 0xf00                         ; 0x100007f00 ; "Failed to create private key."
+│       │   0x100004970      sub x9, x9, 0x20
+│       │   0x100004974      orr x9, x9, 0x8000000000000000
+│       │   0x100004978      stp x8, x9, [x29, -0x98]
+│       │   0x10000497c      adrp x0, segment.__DATA                   ; 0x100010000
+│       │   0x100004980      add x0, x0, 0x108                         ; int64_t arg1
+│       │   0x100004984      bl sym.func.100004e0c
+│       │   0x100004988      mov x1, x0
+│       │   0x10000498c      sub x0, x29, 0x98
+│       │   0x100004990      sub x20, x29, 0x80
+│       │   0x100004994      bl sym SwiftUI.State.wrappedValue...s     ; sym.imp.SwiftUI.State.wrappedValue...s
+│       │   ; CODE XREF from sym.func.1000046dc @ 0x100004db0(x)
+│      ┌──> 0x100004998      mov x0, x22                               ; void *arg0
+│      ╎│   0x10000499c      mov x1, x19                               ; int64_t arg2
+│      ╎│   0x1000049a0      bl sym.func.100004f58
+│      ╎│   0x1000049a4      sub sp, x29, 0x50
+│      ╎│   0x1000049a8      ldp x29, x30, [var_50h_2]
+│      ╎│   0x1000049ac      ldp x20, x19, [var_40h]
+│      ╎│   0x1000049b0      ldp x22, x21, [var_30h]
+│      ╎│   0x1000049b4      ldp x24, x23, [var_20h]
+│      ╎│   0x1000049b8      ldp x26, x25, [var_10h]
+│      ╎│   0x1000049bc      ldp x28, x27, [sp], 0x60
+│      ╎│   0x1000049c0      ret
+│      ╎│   ; CODE XREF from sym.func.1000046dc @ 0x10000493c(x)
+│      ╎└─> 0x1000049c4      ldr x8, [x28, 0x20]
+│      ╎    0x1000049c8      ldur x26, [x29, -0xe8]
+│      ╎    0x1000049cc      mov x0, x26
+│      ╎    0x1000049d0      mov x1, x20
+│      ╎    0x1000049d4      mov x2, x23
+│      ╎    0x1000049d8      blr x8
+│      ╎    0x1000049dc      stur x25, [x29, -0x100]
+│      ╎    0x1000049e0      mov x8, x25
+│      ╎    0x1000049e4      mov x20, x26
+│      ╎    0x1000049e8      bl sym CryptoKit.P256.Signing.PrivateKey.public...F0AE06PublicF0Vvg.Public...F0Vvg...Vvg ; sym.imp.CryptoKit.P256.Signing.PrivateKey.public...F0AE06PublicF0Vvg.Public...F0Vvg...Vvg
+│      ╎    0x1000049ec      mov x8, 0x13
+│      ╎    0x1000049f0      movk x8, 0xd000, lsl 48
+│      ╎    0x1000049f4      add x8, x8, 2
+│      ╎    0x1000049f8      adrp x9, 0x100007000
+│      ╎    0x1000049fc      add x9, x9, 0xf20                         ; 0x100007f20 ; "This is a sample text"
+│      ╎    0x100004a00      sub x9, x9, 0x20
+│      ╎    0x100004a04      orr x9, x9, 0x8000000000000000
+│      ╎    0x100004a08      stp x8, x9, [x29, -0x80]
+│      ╎    0x100004a0c      ldur x25, [x29, -0xc0]
+│      ╎    0x100004a10      mov x8, x25
+│      ╎    0x100004a14      bl sym Foundation...8EncodingV4utf8ACvgZ  ; sym.imp.Foundation...8EncodingV4utf8ACvgZ
+│      ╎    0x100004a18      bl sym.func.100004f9c
+│      ╎    0x100004a1c      mov x3, x0
+│      ╎    0x100004a20      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│      ╎    0x100004a24      ldr x2, reloc....SSN                      ; 0x10000c358
+│      ╎    0x100004a28      sub x20, x29, 0x80
+│      ╎    0x100004a2c      mov x0, x25
+│      ╎    0x100004a30      mov w1, 0
+│      ╎    0x100004a34      bl sym Foundation...btF                   ; sym.imp.Foundation...btF
+│      ╎    0x100004a38      mov x20, x0
+│      ╎    0x100004a3c      mov x24, x1
+│      ╎    0x100004a40      ldp x8, x1, [x29, -0xd0]
+│      ╎    0x100004a44      ldr x8, [x8, 8]
+│      ╎    0x100004a48      mov x0, x25
+│      ╎    0x100004a4c      blr x8
+│      ╎    0x100004a50      ldur x0, [x29, -0x78]                     ; void *arg0
+│      ╎    0x100004a54      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│      ╎    0x100004a58      stur x24, [x29, -0xc8]
+│      ╎    0x100004a5c      lsr x8, x24, 0x3c
+│      ╎    0x100004a60      cmp x8, 0xe
+│      ╎┌─< 0x100004a64      b.hi 0x100004db4
+│      ╎│   0x100004a68      sub x8, x29, 0x10
+│      ╎│   0x100004a6c      stur x28, [x8, -0x100]
+│      ╎│   0x100004a70      sub x8, x29, 8
+│      ╎│   0x100004a74      stur x23, [x8, -0x100]
+│      ╎│   0x100004a78      stur x20, [x29, -0xd0]
+│      ╎│   0x100004a7c      ldur x8, [x29, -0xc8]
+│      ╎│   0x100004a80      stp x20, x8, [x29, -0x80]
+│      ╎│   0x100004a84      bl sym.func.100004fe0
+│      ╎│   0x100004a88      mov x2, x0
+│      ╎│   0x100004a8c      adrp x1, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│      ╎│   0x100004a90      ldr x1, [x1, 0x38]                        ; 0x10000c038
+│      ╎│                                                              ; reloc.Foundation.Data...VN
+│      ╎│   0x100004a94      sub x0, x29, 0x80
+│      ╎│   0x100004a98      mov x28, x27
+│      ╎│   0x100004a9c      mov x27, x2
+│      ╎│   0x100004aa0      mov x8, x28
+│      ╎│   0x100004aa4      mov x20, x26
+│      ╎│   0x100004aa8      bl sym CryptoKit.P256.Signing.PrivateKey.signature.for.ECDSASignature.Foundation.DataProtocol...lF ; sym.imp.CryptoKit.P256.Signing.PrivateKey.signature.for.ECDSASignature.Foundation.DataProtocol...lF
+│     ┌───< 0x100004aac      cbnz x21, 0x100004ddc
+│     │╎│   0x100004ab0      mov x20, x28
+│     │╎│   0x100004ab4      bl sym CryptoKit.P256.Signing.ECDSASignature.rawRepresentation.Foundation.Data...Vvg ; sym.imp.CryptoKit.P256.Signing.ECDSASignature.rawRepresentation.Foundation.Data...Vvg
+│     │╎│   0x100004ab8      mov x20, x0
+│     │╎│   0x100004abc      mov x25, x1
+│     │╎│   0x100004ac0      bl sym.func.100004000
+│     │╎│   0x100004ac4      mov x26, x0
+│     │╎│   0x100004ac8      mov x0, x20                               ; void *arg0
+│     │╎│   0x100004acc      mov x1, x25                               ; int64_t arg2
+│     │╎│   0x100004ad0      bl sym.func.100004f58
+│     │╎│   0x100004ad4      stur x26, [x29, -0x80]
+│     │╎│   0x100004ad8      adrp x20, segment.__DATA                  ; 0x100010000
+│     │╎│   0x100004adc      add x20, x20, 0x120
+│     │╎│   0x100004ae0      mov x0, x20                               ; int64_t arg1
+│     │╎│   0x100004ae4      bl sym.func.100004e0c
+│     │╎│   0x100004ae8      mov x23, x0
+│     │╎│   0x100004aec      adrp x0, segment.__DATA                   ; 0x100010000
+│     │╎│   0x100004af0      add x0, x0, 0x128                         ; int64_t arg1
+│     │╎│   0x100004af4      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│     │╎│   0x100004af8      ldr x2, reloc....SayxGSKsMc               ; 0x10000c370 ; int64_t arg3
+│     │╎│   0x100004afc      mov x1, x20                               ; int64_t arg2
+│     │╎│   0x100004b00      bl sym.func.100005024
+│     │╎│   0x100004b04      mov x3, x0
+│     │╎│   0x100004b08      mov x25, -0x2000000000000000
+│     │╎│   0x100004b0c      sub x20, x29, 0x80
+│     │╎│   0x100004b10      mov x0, 0
+│     │╎│   0x100004b14      mov x1, -0x2000000000000000
+│     │╎│   0x100004b18      sub x8, x29, 0x28
+│     │╎│   0x100004b1c      stur x23, [x8, -0x100]
+│     │╎│   0x100004b20      mov x2, x23
+│     │╎│   0x100004b24      sub x8, x29, 0x30
+│     │╎│   0x100004b28      stur x3, [x8, -0x100]
+│     │╎│   0x100004b2c      bl sym Element...F                        ; sym.imp.Element...F
+│     │╎│   0x100004b30      sub x8, x29, 0x20
+│     │╎│   0x100004b34      stur x0, [x8, -0x100]
+│     │╎│   0x100004b38      sub x8, x29, 0x18
+│     │╎│   0x100004b3c      stur x1, [x8, -0x100]
+│     │╎│   0x100004b40      mov x0, x26                               ; void *arg0
+│     │╎│   0x100004b44      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│     │╎│   0x100004b48      ldp x23, x24, [x29, -0xd0]
+│     │╎│   0x100004b4c      stp x23, x24, [x29, -0x80]
+│     │╎│   0x100004b50      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│     │╎│   0x100004b54      ldr x2, [x2, 0x38]                        ; 0x10000c038
+│     │╎│                                                              ; reloc.Foundation.Data...VN
+│     │╎│   0x100004b58      sub x1, x29, 0x80
+│     │╎│   0x100004b5c      mov x0, x28
+│     │╎│   0x100004b60      mov x3, x27
+│     │╎│   0x100004b64      ldur x27, [x29, -0x100]
+│     │╎│   0x100004b68      mov x20, x27
+│     │╎│   0x100004b6c      bl sym CryptoKit.P256.Signing.PublicKey.isValidSignature.for.ECDSASignature.Foundation.DataProtocol...lF ; sym.imp.CryptoKit.P256.Signing.PublicKey.isValidSignature.for.ECDSASignature.Foundation.DataProtocol...lF
+│     │╎│   0x100004b70      mov x26, x0
+│     │╎│   0x100004b74      stp xzr, x25, [x29, -0x80]
+│     │╎│   0x100004b78      sub x20, x29, 0x80
+│     │╎│   0x100004b7c      mov w0, 0x49                              ; 'I'
+│     │╎│   0x100004b80      bl sym _StringGuts.grow...SiF             ; sym.imp._StringGuts.grow...SiF
+│     │╎│   0x100004b84      ldp x8, x9, [x29, -0x80]
+│     │╎│   0x100004b88      stp x8, x9, [x29, -0x80]
+│     │╎│   0x100004b8c      sub x20, x29, 0x80
+│     │╎│   0x100004b90      mov x0, 0x724f                            ; 'Or'
+│     │╎│   0x100004b94      movk x0, 0x6769, lsl 16                   ; 'ig'
+│     │╎│   0x100004b98      movk x0, 0x6e69, lsl 32                   ; 'in'
+│     │╎│   0x100004b9c      movk x0, 0x6c61, lsl 48                   ; 'al'
+│     │╎│   0x100004ba0      mov x1, 0x203a                            ; ': '
+│     │╎│   0x100004ba4      movk x1, 0xea00, lsl 48
+│     │╎│   0x100004ba8      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│     │╎│   0x100004bac      ldur x20, [x29, -0xc0]
+│     │╎│   0x100004bb0      mov x8, x20
+│     │╎│   0x100004bb4      bl sym Foundation...8EncodingV4utf8ACvgZ  ; sym.imp.Foundation...8EncodingV4utf8ACvgZ
+│     │╎│   0x100004bb8      mov x0, x23
+│     │╎│   0x100004bbc      mov x1, x24
+│     │╎│   0x100004bc0      mov x2, x20
+│     │╎│   0x100004bc4      bl sym Foundation__String...AAE8EncodingVtcfC ; sym.imp.Foundation__String...AAE8EncodingVtcfC
+│    ┌────< 0x100004bc8      cbz x1, 0x100004dc8
+│    ││╎│   0x100004bcc      mov x23, x27
+│    ││╎│   0x100004bd0      mov x24, x1
+│    ││╎│   0x100004bd4      adrp x8, 0x100007000
+│    ││╎│   0x100004bd8      add x8, x8, 0xf60                         ; 0x100007f60 ; "Signature is invalid."
+│    ││╎│   0x100004bdc      sub x8, x8, 0x20
+│    ││╎│   0x100004be0      orr x8, x8, 0x8000000000000000
+│    ││╎│   0x100004be4      adrp x9, 0x100007000
+│    ││╎│   0x100004be8      add x9, x9, 0xfe0                         ; 0x100007fe0 ; "Signature is valid."
+│    ││╎│   0x100004bec      sub x9, x9, 0x20
+│    ││╎│   0x100004bf0      orr x9, x9, 0x8000000000000000
+│    ││╎│   0x100004bf4      tst w26, 1
+│    ││╎│   0x100004bf8      csel x26, x9, x8, ne
+│    ││╎│   0x100004bfc      mov x27, 0x13
+│    ││╎│   0x100004c00      movk x27, 0xd000, lsl 48
+│    ││╎│   0x100004c04      add x8, x27, 2
+│    ││╎│   0x100004c08      csel x8, x27, x8, ne
+│    ││╎│   0x100004c0c      stur x8, [x29, -0xc0]
+│    ││╎│   0x100004c10      sub x20, x29, 0x80
+│    ││╎│   0x100004c14      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004c18      mov x0, x24                               ; void *arg0
+│    ││╎│   0x100004c1c      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││╎│   0x100004c20      add x0, x27, 1
+│    ││╎│   0x100004c24      adrp x8, 0x100007000
+│    ││╎│   0x100004c28      add x8, x8, 0xf80                         ; 0x100007f80 ; "\n\nPublic Key (Hex): "
+│    ││╎│   0x100004c2c      sub x8, x8, 0x20
+│    ││╎│   0x100004c30      orr x1, x8, 0x8000000000000000
+│    ││╎│   0x100004c34      sub x20, x29, 0x80
+│    ││╎│   0x100004c38      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004c3c      mov x20, x23
+│    ││╎│   0x100004c40      bl sym CryptoKit.P256.Signing.PublicKey.rawRepresentation.Foundation.Data...Vvg ; sym.imp.CryptoKit.P256.Signing.PublicKey.rawRepresentation.Foundation.Data...Vvg
+│    ││╎│   0x100004c44      mov x20, x0
+│    ││╎│   0x100004c48      mov x24, x1
+│    ││╎│   0x100004c4c      bl sym.func.100004000
+│    ││╎│   0x100004c50      mov x21, x0
+│    ││╎│   0x100004c54      mov x0, x20                               ; void *arg0
+│    ││╎│   0x100004c58      mov x1, x24                               ; int64_t arg2
+│    ││╎│   0x100004c5c      bl sym.func.100004f58
+│    ││╎│   0x100004c60      stur x21, [x29, -0x98]
+│    ││╎│   0x100004c64      sub x20, x29, 0x98
+│    ││╎│   0x100004c68      mov x0, 0
+│    ││╎│   0x100004c6c      mov x1, -0x2000000000000000
+│    ││╎│   0x100004c70      sub x8, x29, 0x28
+│    ││╎│   0x100004c74      ldur x2, [x8, -0x100]
+│    ││╎│   0x100004c78      sub x8, x29, 0x30
+│    ││╎│   0x100004c7c      ldur x3, [x8, -0x100]
+│    ││╎│   0x100004c80      bl sym Element...F                        ; sym.imp.Element...F
+│    ││╎│   0x100004c84      mov x24, x0
+│    ││╎│   0x100004c88      mov x25, x1
+│    ││╎│   0x100004c8c      mov x0, x21                               ; void *arg0
+│    ││╎│   0x100004c90      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││╎│   0x100004c94      sub x20, x29, 0x80
+│    ││╎│   0x100004c98      mov x0, x24
+│    ││╎│   0x100004c9c      mov x1, x25
+│    ││╎│   0x100004ca0      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004ca4      mov x0, x25                               ; void *arg0
+│    ││╎│   0x100004ca8      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││╎│   0x100004cac      adrp x8, 0x100007000
+│    ││╎│   0x100004cb0      add x8, x8, 0xfa0                         ; 0x100007fa0 ; "\n\nSignature (Hex): "
+│    ││╎│   0x100004cb4      sub x8, x8, 0x20
+│    ││╎│   0x100004cb8      orr x1, x8, 0x8000000000000000
+│    ││╎│   0x100004cbc      sub x20, x29, 0x80
+│    ││╎│   0x100004cc0      mov x0, 0x13
+│    ││╎│   0x100004cc4      movk x0, 0xd000, lsl 48
+│    ││╎│   0x100004cc8      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004ccc      sub x20, x29, 0x80
+│    ││╎│   0x100004cd0      sub x8, x29, 0x20
+│    ││╎│   0x100004cd4      ldur x0, [x8, -0x100]
+│    ││╎│   0x100004cd8      sub x8, x29, 0x18
+│    ││╎│   0x100004cdc      ldur x24, [x8, -0x100]
+│    ││╎│   0x100004ce0      mov x1, x24
+│    ││╎│   0x100004ce4      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004ce8      sub x0, x27, 3
+│    ││╎│   0x100004cec      adrp x8, 0x100007000
+│    ││╎│   0x100004cf0      add x8, x8, 0xfc0                         ; 0x100007fc0 ; "\n\nVerification: "
+│    ││╎│   0x100004cf4      sub x8, x8, 0x20
+│    ││╎│   0x100004cf8      orr x1, x8, 0x8000000000000000
+│    ││╎│   0x100004cfc      sub x20, x29, 0x80
+│    ││╎│   0x100004d00      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004d04      sub x20, x29, 0x80
+│    ││╎│   0x100004d08      ldur x0, [x29, -0xc0]
+│    ││╎│   0x100004d0c      mov x1, x26
+│    ││╎│   0x100004d10      bl sym append...ySSF                      ; sym.imp.append...ySSF
+│    ││╎│   0x100004d14      ldp x8, x21, [x29, -0x80]
+│    ││╎│   0x100004d18      ldur x10, [x29, -0xb0]
+│    ││╎│   0x100004d1c      ldur x9, [x29, -0xa8]
+│    ││╎│   0x100004d20      stp x10, x9, [x29, -0x80]
+│    ││╎│   0x100004d24      ldur x9, [x29, -0xa0]
+│    ││╎│   0x100004d28      stur x9, [x29, -0x70]
+│    ││╎│   0x100004d2c      stp x8, x21, [x29, -0x98]
+│    ││╎│   0x100004d30      mov x0, x21                               ; void *arg0
+│    ││╎│   0x100004d34      bl sym.imp.swift_bridgeObjectRetain       ; void *swift_bridgeObjectRetain(void *arg0)
+│    ││╎│   0x100004d38      adrp x0, segment.__DATA                   ; 0x100010000
+│    ││╎│   0x100004d3c      add x0, x0, 0x108                         ; int64_t arg1
+│    ││╎│   0x100004d40      bl sym.func.100004e0c
+│    ││╎│   0x100004d44      mov x1, x0
+│    ││╎│   0x100004d48      sub x0, x29, 0x98
+│    ││╎│   0x100004d4c      sub x20, x29, 0x80
+│    ││╎│   0x100004d50      bl sym SwiftUI.State.wrappedValue...s     ; sym.imp.SwiftUI.State.wrappedValue...s
+│    ││╎│   0x100004d54      ldp x8, x1, [x29, -0xe0]
+│    ││╎│   0x100004d58      ldr x8, [x8, 8]
+│    ││╎│   0x100004d5c      mov x0, x28
+│    ││╎│   0x100004d60      blr x8
+│    ││╎│   0x100004d64      ldp x8, x1, [x29, -0xf8]
+│    ││╎│   0x100004d68      ldr x8, [x8, 8]
+│    ││╎│   0x100004d6c      mov x0, x23
+│    ││╎│   0x100004d70      blr x8
+│    ││╎│   0x100004d74      sub x8, x29, 0x10
+│    ││╎│   0x100004d78      ldur x8, [x8, -0x100]
+│    ││╎│   0x100004d7c      ldr x8, [x8, 8]
+│    ││╎│   0x100004d80      ldur x0, [x29, -0xe8]
+│    ││╎│   0x100004d84      sub x9, x29, 8
+│    ││╎│   0x100004d88      ldur x1, [x9, -0x100]
+│    ││╎│   0x100004d8c      blr x8
+│    ││╎│   0x100004d90      mov x0, x24                               ; void *arg0
+│    ││╎│   0x100004d94      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││╎│   0x100004d98      mov x0, x26                               ; void *arg0
+│    ││╎│   0x100004d9c      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││╎│   0x100004da0      mov x0, x21                               ; void *arg0
+│    ││╎│   0x100004da4      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││╎│   0x100004da8      ldp x0, x1, [x29, -0xd0]                  ; int64_t arg2
+│    ││╎│   0x100004dac      bl sym.func.100005064
+│    ││└──< 0x100004db0      b 0x100004998
+│    ││ │   ; CODE XREF from sym.func.1000046dc @ 0x100004a64(x)
+│    ││ └─> 0x100004db4      ldur x0, [x29, -0xa8]                     ; void *arg0
+│    ││     0x100004db8      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│    ││     0x100004dbc      ldur x0, [x29, -0xa0]                     ; void *arg0
+│    ││     0x100004dc0      bl sym.imp.swift_release                  ; void swift_release(void *arg0)
+│    ││     0x100004dc4      brk 1
+│    ││     ; CODE XREF from sym.func.1000046dc @ 0x100004bc8(x)
+│    └────> 0x100004dc8      ldur x0, [x29, -0xa8]                     ; void *arg0
+│     │     0x100004dcc      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│     │     0x100004dd0      ldur x0, [x29, -0xa0]                     ; void *arg0
+│     │     0x100004dd4      bl sym.imp.swift_release                  ; void swift_release(void *arg0)
+│     │     0x100004dd8      brk 1
+│     │     ; CODE XREF from sym.func.1000046dc @ 0x100004aac(x)
+│     └───> 0x100004ddc      ldur x0, [x29, -0xa8]                     ; void *arg0
+│           0x100004de0      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
+│           0x100004de4      ldur x0, [x29, -0xa0]                     ; void *arg0
+│           0x100004de8      bl sym.imp.swift_release                  ; void swift_release(void *arg0)
+│           0x100004dec      adrp x1, 0x100007000
+│           0x100004df0      add x1, x1, 0xf40                         ; 0x100007f40 ; "MASTestApp/MastgTest.swift"
+│           0x100004df4      mov x0, x21                               ; void *arg0
+│           0x100004df8      mov w2, 0x1a
+│           0x100004dfc      mov w3, 1
+│           0x100004e00      mov w4, 0x1b
+│           0x100004e04      bl sym.imp.swift_unexpectedError          ; void swift_unexpectedError(void *arg0)
+└           0x100004e08      brk 1
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/key.asm b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/key.asm
new file mode 100644
index 0000000000..e5d3c64ff4
--- /dev/null
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/key.asm
@@ -0,0 +1,3 @@
+- offset -   C8C9 CACB CCCD CECF D0D1 D2D3 D4D5 D6D7  89ABCDEF01234567
+0x1000100c8  7c02 2a7e 537e 1a2d 4477 d4f6 208b 14db  |.*~S~.-Dw.. ...
+0x1000100d8  4e8d 8419 d623 5ff2 4e4b 8d18 f42c 76e2  N....#_.NK...,v.
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.asm b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.asm
new file mode 100644
index 0000000000..5be6139d99
--- /dev/null
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.asm
@@ -0,0 +1,30 @@
+Uses of CryptoKit.P256.Signing.PrivateKey:
+0x100007364    1     12 sym.imp.CryptoKit.P256.Signing.PrivateKey.public...F0AE06PublicF0Vvg.Public...F0Vvg...Vvg
+0x100007370    1     12 sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC
+0x10000737c    1     12 sym.imp.CryptoKit.P256.Signing.PrivateKey.signature.for.ECDSASignature.Foundation.DataProtocol...lF
+0x100007388    1     12 sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa
+
+xrefs to sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa:
+sym.func.1000046dc 0x1000047f0 [CALL:--x] bl sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa
+
+Use of sym.imp.CryptoKit.P256.Signing.PrivateKey:
+│           0x1000048b0      mov x1, x19
+│           0x1000048b4      bl sym.func.100004ed4
+│           0x1000048b8      adrp x1, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x1000048bc      ldr x1, [x1, 0x38]                        ; 0x10000c038
+│                                                                      ; reloc.Foundation.Data...VN
+│           0x1000048c0      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
+│           0x1000048c4      ldr x2, [x2, 0x30]                        ; 0x10000c030
+│                                                                      ; reloc.Foundation.Data...VAA15ContiguousBytesAAWP.ContiguousBytes...WP
+│           0x1000048c8      sub x0, x29, 0x80
+│           0x1000048cc      mov x8, x20
+│           0x1000048d0      mov x21, 0
+│           0x1000048d4      bl sym CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC ; sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC
+│       ┌─< 0x1000048d8      cbz x21, 0x100004900
+│       │   0x1000048dc      mov x0, x21
+│       │   0x1000048e0      bl sym.imp.swift_errorRelease
+│       │   0x1000048e4      ldr x8, [x28, 0x38]
+│       │   0x1000048e8      mov x0, x20
+│       │   0x1000048ec      mov w1, 1
+│       │   0x1000048f0      mov w2, 1
+│       │   0x1000048f4      mov x3, x23
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.txt b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.txt
deleted file mode 100644
index 84ee928ced..0000000000
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/output.txt
+++ /dev/null
@@ -1,222 +0,0 @@
-[0x10000aae0]> afl~P256.Signing.PrivateKey
-0x10000aeac    1     12 sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC
-0x10000aeb8    1     12 sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa
-
-[0x10000aae0]> axt @ 0x10000aeac
-sym.func.1000086dc 0x1000087f8 [CALL:--x] bl sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC
-
-[0x10000aae0]> pdf @ sym.func.1000086dc
-            ; CALL XREF from sym.func.100009a34 @ 0x100009a6c(x)
-┌ 720: sym.func.1000086dc (int64_t arg1, int64_t arg2, int64_t arg3, int64_t arg_10h, int64_t arg_20h, int64_t arg_30h, int64_t arg_40h, int64_t arg_50h);
-│           0x1000086dc      stp x28, x27, [sp, -0x60]!
-│           0x1000086e0      stp x26, x25, [var_0hx10]
-│           0x1000086e4      stp x24, x23, [var_0hx20]
-│           0x1000086e8      stp x22, x21, [var_0hx30]
-│           0x1000086ec      stp x20, x19, [var_60h]
-│           0x1000086f0      stp x29, x30, [arg_50h]
-│           0x1000086f4      add x29, sp, 0x50
-│           0x1000086f8      sub sp, sp, 0x40
-│           0x1000086fc      mov x19, x2                               ; arg3
-│           0x100008700      mov x22, x1                               ; arg2
-│           0x100008704      mov x23, x0                               ; arg1
-│           0x100008708      mov x27, 0x13
-│           0x10000870c      movk x27, 0xd000, lsl 48
-│           0x100008710      adrp x0, segment.__DATA                   ; 0x100010000
-│           0x100008714      add x0, x0, 0xe8                          ; int64_t arg1
-│           0x100008718      bl sym.func.1000089ac
-│           0x10000871c      ldur x8, [x0, -8]
-│           0x100008720      ldr x8, [x8, 0x40]
-│           0x100008724      mov x9, x8
-│           0x100008728      adrp x16, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
-│           0x10000872c      ldr x16, reloc.__chkstk_darwin            ; 0x10000c358
-│           0x100008730      blr x16
-│           0x100008734      mov x9, sp
-│           0x100008738      add x8, x8, 0xf
-│           0x10000873c      and x8, x8, 0xfffffffffffffff0
-│           0x100008740      sub x20, x9, x8
-│           0x100008744      mov sp, x20
-│           0x100008748      adrp x0, segment.__DATA                   ; 0x100010000
-│           0x10000874c      add x0, x0, 0xf0                          ; int64_t arg1
-│           0x100008750      bl sym.func.1000089ac
-│           0x100008754      adrp x1, segment.__DATA                   ; 0x100010000
-│           0x100008758      add x1, x1, 0xa8
-│           0x10000875c      bl sym.imp.swift_initStaticObject
-│           0x100008760      mov x21, x0
-│           0x100008764      adrp x24, segment.__DATA                  ; 0x100010000
-│           0x100008768      add x24, x24, 0xf8
-│           0x10000876c      mov x0, x24                               ; int64_t arg1
-│           0x100008770      bl sym.func.1000089ac
-│           0x100008774      mov x25, x0
-│           0x100008778      stur x0, [x29, -0x60]
-│           0x10000877c      adrp x0, segment.__DATA                   ; 0x100010000
-│           0x100008780      add x0, x0, 0x100                         ; int64_t arg1
-│           0x100008784      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
-│           0x100008788      ldr x2, reloc.Foundation.ContiguousBytes.UInt8...szlMc ; 0x10000c310 ; int64_t arg3
-│           0x10000878c      mov x1, x24                               ; int64_t arg2
-│           0x100008790      bl sym.func.100008b3c
-│           0x100008794      stur x0, [x29, -0x58]
-│           0x100008798      stur x21, [x29, -0x78]
-│           0x10000879c      sub x0, x29, 0x78                         ; int64_t arg1
-│           0x1000087a0      mov x1, x25                               ; int64_t arg2
-│           0x1000087a4      bl sym.func.100008a30
-│           0x1000087a8      ldr x8, [x0]
-│           0x1000087ac      add x0, x8, 0x20                          ; int64_t arg1
-│           0x1000087b0      ldr x8, [x8, 0x10]
-│           0x1000087b4      add x1, x0, x8                            ; int64_t arg2
-│           0x1000087b8      bl sym.func.100008674
-│           0x1000087bc      mov x25, x0
-│           0x1000087c0      mov x24, x1
-│           0x1000087c4      sub x0, x29, 0x78                         ; int64_t arg1
-│           0x1000087c8      bl sym.func.100008a54
-│           0x1000087cc      stp x25, x24, [x29, -0x78]
-│           0x1000087d0      mov x0, x25                               ; int64_t arg2
-│           0x1000087d4      mov x1, x24
-│           0x1000087d8      bl sym.func.100008a74
-│           0x1000087dc      adrp x1, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
-│           0x1000087e0      ldr x1, [x1, 0x30]                        ; 0x10000c030
-│                                                                      ; reloc.Foundation.Data...VN
-│           0x1000087e4      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
-│           0x1000087e8      ldr x2, [x2, 0x28]                        ; 0x10000c028
-│                                                                      ; reloc.Foundation.Data...VAA15ContiguousBytesAAWP.ContiguousBytes...WP
-│           0x1000087ec      sub x0, x29, 0x78
-│           0x1000087f0      mov x8, x20
-│           0x1000087f4      mov x21, 0
-│           0x1000087f8      bl sym CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC ; sym.imp.CryptoKit.P256.Signing.PrivateKey.rawRepresentation.Foundation.ContiguousBytes...lufC
-│       ┌─< 0x1000087fc      cbz x21, 0x100008830
-│       │   0x100008800      mov x0, x21
-│       │   0x100008804      bl sym.imp.swift_errorRelease
-│       │   0x100008808      mov x0, 0
-│       │   0x10000880c      bl sym CryptoKit.P256.Signing.PrivateKey...VMa ; sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa
-│       │   0x100008810      mov x3, x0
-│       │   0x100008814      ldur x8, [x0, -8]
-│       │   0x100008818      ldr x8, [x8, 0x38]
-│       │   0x10000881c      mov x0, x20
-│       │   0x100008820      mov w1, 1
-│       │   0x100008824      mov w2, 1
-│       │   0x100008828      blr x8
-│      ┌──< 0x10000882c      b 0x100008874
-│      ││   ; CODE XREF from sym.func.1000086dc @ 0x1000087fc(x)
-│      │└─> 0x100008830      mov x0, 0
-│      │    0x100008834      bl sym CryptoKit.P256.Signing.PrivateKey...VMa ; sym.imp.CryptoKit.P256.Signing.PrivateKey...VMa
-│      │    0x100008838      mov x26, x0
-│      │    0x10000883c      ldur x28, [x0, -8]
-│      │    0x100008840      ldr x8, [x28, 0x38]
-│      │    0x100008844      mov x0, x20
-│      │    0x100008848      mov w1, 0
-│      │    0x10000884c      mov w2, 1
-│      │    0x100008850      mov x3, x26
-│      │    0x100008854      blr x8
-│      │    0x100008858      ldr x8, [x28, 0x30]
-│      │    0x10000885c      mov x0, x20
-│      │    0x100008860      mov w1, 1
-│      │    0x100008864      mov x2, x26
-│      │    0x100008868      blr x8
-│      │    0x10000886c      cmp w0, 1
-│      │┌─< 0x100008870      b.ne 0x10000889c
-│      ││   ; CODE XREF from sym.func.1000086dc @ 0x10000882c(x)
-│      └──> 0x100008874      mov x0, x20                               ; int64_t arg1
-│       │   0x100008878      bl sym.func.100008ab8
-│       │   0x10000887c      stp x23, x22, [x29, -0x78]
-│       │   0x100008880      stur x19, [x29, -0x68]
-│       │   0x100008884      add x8, x27, 0xa
-│       │   0x100008888      adrp x9, 0x10000b000
-│       │   0x10000888c      add x9, x9, 0x9b0                         ; 0x10000b9b0 ; "Failed to create private key."
-│       │   0x100008890      sub x9, x9, 0x20
-│       │   0x100008894      orr x9, x9, 0x8000000000000000
-│      ┌──< 0x100008898      b 0x100008960
-│      ││   ; CODE XREF from sym.func.1000086dc @ 0x100008870(x)
-│      │└─> 0x10000889c      mov x0, x20                               ; int64_t arg1
-│      │    0x1000088a0      bl sym.func.100008ab8
-│      │    0x1000088a4      mov x8, -0x2000000000000000
-│      │    0x1000088a8      stp xzr, x8, [x29, -0x78]
-│      │    0x1000088ac      sub x20, x29, 0x78
-│      │    0x1000088b0      mov w0, 0x15
-│      │    0x1000088b4      bl sym _StringGuts.grow...SiF             ; sym.imp._StringGuts.grow...SiF
-│      │    0x1000088b8      ldur x0, [x29, -0x70]                     ; void *arg0
-│      │    0x1000088bc      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
-│      │    0x1000088c0      adrp x8, 0x10000b000
-│      │    0x1000088c4      add x8, x8, 0x9d0                         ; 0x10000b9d0 ; "Private Key (Hex): "
-│      │    0x1000088c8      sub x8, x8, 0x20
-│      │    0x1000088cc      orr x8, x8, 0x8000000000000000
-│      │    0x1000088d0      stp x27, x8, [x29, -0x78]
-│      │    0x1000088d4      mov x0, x25                               ; int64_t arg1
-│      │    0x1000088d8      mov x1, x24                               ; int64_t arg2
-│      │    0x1000088dc      bl sym.func.100008000
-│      │    0x1000088e0      mov x21, x0
-│      │    0x1000088e4      stur x0, [x29, -0x90]
-│      │    0x1000088e8      adrp x20, segment.__DATA                  ; 0x100010000
-│      │    0x1000088ec      add x20, x20, 0x110
-│      │    0x1000088f0      mov x0, x20                               ; int64_t arg1
-│      │    0x1000088f4      bl sym.func.1000089ac
-│      │    0x1000088f8      mov x26, x0
-│      │    0x1000088fc      adrp x0, segment.__DATA                   ; 0x100010000
-│      │    0x100008900      add x0, x0, 0x118                         ; int64_t arg1
-│      │    0x100008904      adrp x2, reloc.Foundation.__DataStorage.bytes.allocator...itcfc ; 0x10000c000
-│      │    0x100008908      ldr x2, reloc....SayxGSKsMc               ; 0x10000c318 ; int64_t arg3
-│      │    0x10000890c      mov x1, x20                               ; int64_t arg2
-│      │    0x100008910      bl sym.func.100008b3c
-│      │    0x100008914      mov x3, x0
-│      │    0x100008918      sub x20, x29, 0x90
-│      │    0x10000891c      mov x0, 0
-│      │    0x100008920      mov x1, -0x2000000000000000
-│      │    0x100008924      mov x2, x26
-│      │    0x100008928      bl sym Element...F                        ; sym.imp.Element...F
-│      │    0x10000892c      mov x26, x0
-│      │    0x100008930      mov x27, x1
-│      │    0x100008934      mov x0, x21                               ; void *arg0
-│      │    0x100008938      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
-│      │    0x10000893c      sub x20, x29, 0x78
-│      │    0x100008940      mov x0, x26
-│      │    0x100008944      mov x1, x27
-│      │    0x100008948      bl sym append...ySSF                      ; sym.imp.append...ySSF
-│      │    0x10000894c      mov x0, x27                               ; void *arg0
-│      │    0x100008950      bl sym.imp.swift_bridgeObjectRelease      ; void swift_bridgeObjectRelease(void *arg0)
-│      │    0x100008954      ldp x8, x9, [x29, -0x78]
-│      │    0x100008958      stp x23, x22, [x29, -0x78]
-│      │    0x10000895c      stur x19, [x29, -0x68]
-│      │    ; CODE XREF from sym.func.1000086dc @ 0x100008898(x)
-│      └──> 0x100008960      stp x8, x9, [x29, -0x90]
-│           0x100008964      adrp x0, segment.__DATA                   ; 0x100010000
-│           0x100008968      add x0, x0, 0x108                         ; int64_t arg1
-│           0x10000896c      bl sym.func.1000089ac
-│           0x100008970      mov x1, x0
-│           0x100008974      sub x0, x29, 0x90
-│           0x100008978      sub x20, x29, 0x78
-│           0x10000897c      bl sym SwiftUI.State.wrappedValue...s     ; sym.imp.SwiftUI.State.wrappedValue...s
-│           0x100008980      mov x0, x25                               ; void *arg0
-│           0x100008984      mov x1, x24                               ; int64_t arg2
-│           0x100008988      bl sym.func.100008af8
-│           0x10000898c      sub sp, x29, 0x50
-│           0x100008990      ldp x29, x30, [arg_50h]
-│           0x100008994      ldp x20, x19, [var_60h]
-│           0x100008998      ldp x22, x21, [var_0hx30]
-│           0x10000899c      ldp x24, x23, [var_0hx20]
-│           0x1000089a0      ldp x26, x25, [var_0hx10]
-│           0x1000089a4      ldp x28, x27, [sp], 0x60
-└           0x1000089a8      ret
-
-
-[0x10000aae0]> px 256 @ 0x100010000
-- offset -    0 1  2 3  4 5  6 7  8 9  A B  C D  E F  0123456789ABCDEF
-0x100010000  8100 0000 2800 0000 2800 0000 0000 0000  ....(...(.......
-0x100010010  0000 0000 0000 0000 20ba 0000 0000 9000  ........ .......
-0x100010020  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010030  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010040  0000 0000 0000 0000 8000 0000 1000 0000  ................
-0x100010050  1000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010060  20ba 0000 0000 6000 0000 0000 0000 0000   .....`.........
-0x100010070  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010080  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x100010090  c8bb 0000 0000 1000 9400 0000 0000 a083  ................
-0x1000100a0  0000 0000 0000 0000 0000 0000 0000 0000  ................
-0x1000100b0  0000 0000 0000 0000 2000 0000 0000 0000  ........ .......
-0x1000100c0  4000 0000 0000 0000 7c02 2a7e 537e 1a2d  @.......|.*~S~.-
-0x1000100d0  4477 d4f6 208b 14db 4e8d 8419 d623 5ff2  Dw.. ...N....#_.
-0x1000100e0  4e4b 8d18 f42c 76e2 7cb0 ffff f9ff ffff  NK...,v.|.......
-0x1000100f0  7cb0 ffff f4ff ffff 82b0 ffff f7ff ffff  |...............
-
-
-[0x10000aae0]> px 32 @ 0x1000100c8
-- offset -   C8C9 CACB CCCD CECF D0D1 D2D3 D4D5 D6D7  89ABCDEF01234567
-0x1000100c8  7c02 2a7e 537e 1a2d 4477 d4f6 208b 14db  |.*~S~.-Dw.. ...
-0x1000100d8  4e8d 8419 d623 5ff2 4e4b 8d18 f42c 76e2  N....#_.NK...,v.
\ No newline at end of file
diff --git a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/run.sh b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/run.sh
old mode 100644
new mode 100755
index abd7676937..18d8db679d
--- a/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/run.sh
+++ b/demos/ios/MASVS-CRYPTO/MASTG-DEMO-0014/run.sh
@@ -1 +1 @@
-r2 -q -i cryptokit_hardcoded_rsa.r2 -A MASTestApp
+r2 -q -i cryptokit_hardcoded_ecdsa.r2 -A MASTestApp > output.asm
diff --git a/tests-beta/ios/MASVS-CRYPTO/MASTG-TEST-0216.md b/tests-beta/ios/MASVS-CRYPTO/MASTG-TEST-0216.md
index 2ab74629c6..b3e61bf72e 100644
--- a/tests-beta/ios/MASVS-CRYPTO/MASTG-TEST-0216.md
+++ b/tests-beta/ios/MASVS-CRYPTO/MASTG-TEST-0216.md
@@ -10,9 +10,9 @@ weakness: MASWE-0014
 
 In this test case, we will examine iOS applications for the presence of hardcoded cryptographic keys. Hardcoded keys can be typically found in calls to cryptographic functions or stored as constants or variables within the code. In iOS, cryptographic keys are often used in the following frameworks:
 
-- **Security Framework**: The [`SecKeyCreateWithData`](https://developer.apple.com/documentation/security/2977516-seckeycreatewithdata) function allows developers to create a cryptographic key from raw data. If developers hardcode this data within the app, it results in hardcoded cryptographic keys.
-- **CommonCrypto**: The [`CCCrypt`](https://developer.apple.com/library/archive/documentation/System/Conceptual/ManPages_iPhoneOS/man3/CCCrypt.3cc.html) function is often used for symmetric encryption in iOS. Developers might mistakenly hardcode symmetric keys (like AES keys) in the app's source code.
-- **CryptoKit**: Although `CryptoKit` provides higher-level abstractions for cryptographic operations, developers might still hardcode private keys or other sensitive data when using the [`P256.Signing.PrivateKey`](https://developer.apple.com/documentation/cryptokit/p256/signing/privatekey) or similar classes.
+- **Security Framework**: The [`SecKeyCreateWithData`](https://developer.apple.com/documentation/security/2977516-seckeycreatewithdata) function allows developers to create a cryptographic key from raw data.
+- **CommonCrypto**: The [`CCCrypt`](https://developer.apple.com/library/archive/documentation/System/Conceptual/ManPages_iPhoneOS/man3/CCCrypt.3cc.html) can be initialized with raw key data in its `key` parameter.
+- **CryptoKit**: Although `CryptoKit` provides higher-level abstractions for cryptographic operations, developers might still hardcode cryptographic keys in different formats and feed it to methods like [`P256.Signing.PrivateKey.init(rawRepresentation:)`](https://developer.apple.com/documentation/cryptokit/p256/signing/privatekey/init(rawrepresentation:)) or similar.
 
 ## Steps
 
@@ -20,11 +20,11 @@ In this test case, we will examine iOS applications for the presence of hardcode
 
 ## Observation
 
-The output should include any instances where potential cryptographic keys are found hardcoded within the app binary.
+The output should include any instances where the app uses cryptographic functions that accept raw key data. Whenever possible, the output should also try to point to the raw key data from the binary.
 
 ## Evaluation
 
-The test fails if hardcoded cryptographic keys are found within the app binary.
+The test fails if calls to cryptographic functions with hardcoded keys are found within binary.
 
 You may find the keys being directly passed as arguments to cryptographic functions (byte arrays or string literals) or stored in variables or constants within the code. Typical representations of hardcoded keys include: