configd.tproj/session.h

   1 /*
   2  * Copyright (c) 2000, 2001, 2005-2007, 2009-2012 Apple Inc. All rights reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. Please obtain a copy of the License at
  10  * http://www.opensource.apple.com/apsl/ and read it before using this
  11  * file.
  12  *
  13  * The Original Code and all software distributed under the License are
  14  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  15  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  16  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  17  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  18  * Please see the License for the specific language governing rights and
  19  * limitations under the License.
  20  *
  21  * @APPLE_LICENSE_HEADER_END@
  22  */
  23
  24 /*
  25  * Modification History
  26  *
  27  * June 1, 2001                 Allan Nathanson <ajn@apple.com>
  28  * - public API conversion
  29  *
  30  * March 24, 2000               Allan Nathanson <ajn@apple.com>
  31  * - initial revision
  32  */
  33
  34 #ifndef _S_SESSION_H
  35 #define _S_SESSION_H
  36
  37 #include <sys/cdefs.h>
  38 #include <Availability.h>
  39 #include <TargetConditionals.h>
  40
  41
  42 #if     TARGET_OS_IPHONE || (__MAC_OS_X_VERSION_MIN_REQUIRED >= 1070)
  43 /*
  44  * SCDynamicStore write access entitlement
  45  *
  46  *   Key   : "com.apple.SystemConfiguration.SCDynamicStore-write-access"
  47  *   Value : Boolean
  48  *             TRUE == allow SCDynamicStore write access for this process
  49  *
  50  *           Dictionary
  51  *             Key   : "keys"
  52  *             Value : <array> of CFString with write access allowed for
  53  *                     each SCDynamicStore key matching the string(s)
  54  *
  55  *             Key   : "patterns"
  56  *             Value : <array> of CFString with write access allowed for
  57  *                     each SCDynamicStore key matching the regex pattern(s)
  58  */
  59 #define kSCWriteEntitlementName CFSTR("com.apple.SystemConfiguration.SCDynamicStore-write-access")
  60 #endif  // TARGET_OS_IPHONE || (__MAC_OS_X_VERSION_MIN_REQUIRED >= 1070)
  61
  62
  63 typedef enum { NO = 0, YES, UNKNOWN } lazyBoolean;
  64
  65
  66 /* Per client server state */
  67 typedef struct {
  68
  69         /* mach port used as the key to this session */
  70         mach_port_t             key;
  71
  72         /* mach port associated with this session */
  73         CFMachPortRef           serverPort;
  74         CFRunLoopSourceRef      serverRunLoopSource;
  75
  76         /* data associated with this "open" session */
  77         SCDynamicStoreRef       store;
  78
  79         /* credentials associated with this "open" session */
  80         uid_t                   callerEUID;
  81
  82         /* Mach security audit trailer for evaluating credentials */
  83         audit_token_t           auditToken;
  84
  85         /* root access credential associated with this "open" session */
  86         lazyBoolean             callerRootAccess;
  87
  88 #if     TARGET_OS_IPHONE || (__MAC_OS_X_VERSION_MIN_REQUIRED >= 1080/*FIXME*/)
  89         /*
  90          * write access entitlement associated with this "open" session
  91          *
  92          *   kCFNull            caller entitlements unknown (need to fetch)
  93          *   NULL               no entitlement
  94          *   CFBoolean          true/false
  95          *   CFDictionary       "keys"     = CFArray[writable keys]
  96          *                      "patterns" = CFArray[writable patterns]
  97          */
  98         CFTypeRef               callerWriteEntitlement;
  99 #endif  // TARGET_OS_IPHONE || (__MAC_OS_X_VERSION_MIN_REQUIRED >= 1080/*FIXME*/)
 100
 101 } serverSession, *serverSessionRef;
 102
 103 __BEGIN_DECLS
 104
 105 serverSessionRef        getSession      (mach_port_t    server);
 106
 107 serverSessionRef        tempSession     (mach_port_t    server,
 108                                          CFStringRef    name,
 109                                          audit_token_t  auditToken);
 110
 111 serverSessionRef        addSession      (mach_port_t    server,
 112                                          CFStringRef    (*copyDescription)(const void *info));
 113
 114 void                    cleanupSession  (mach_port_t    server);
 115
 116 void                    listSessions    (FILE           *f);
 117
 118 Boolean                 hasRootAccess   (serverSessionRef       session);
 119
 120 Boolean                 hasWriteAccess  (serverSessionRef       session,
 121                                          CFStringRef            key);
 122
 123 Boolean                 hasPathAccess   (serverSessionRef       session,
 124                                          const char             *path);
 125
 126 __END_DECLS
 127
 128 #endif /* !_S_SESSION_H */