[apple/libsecurity_codesigning.git] / lib / bundlediskrep.h

/*
 * Copyright (c) 2006-2011 Apple Inc. All Rights Reserved.
 * 
 * @APPLE_LICENSE_HEADER_START@
 * 
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this
 * file.
 * 
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 * 
 * @APPLE_LICENSE_HEADER_END@
 */

//
// bundlediskrep - bundle directory disk representation
//
#ifndef _H_BUNDLEDISKREP
#define _H_BUNDLEDISKREP

#include "diskrep.h"
#include "machorep.h"

namespace Security {
namespace CodeSigning {


#define BUNDLEDISKREP_DIRECTORY		"_CodeSignature"
#define STORE_RECEIPT_DIRECTORY		"_MASReceipt"


//
// A BundleDiskRep represents a standard Mac OS X bundle on disk.
// The bundle is expected to have an Info.plist, and a "main executable file"
// of some sort (as indicated therein).
// The BundleDiskRep stores the necessary components in the main executable
// if it is in Mach-O format, or in files in a _CodeSignature directory if not.
// This DiskRep supports resource sealing.
//
class BundleDiskRep : public DiskRep {
public:
	BundleDiskRep(const char *path, const Context *ctx = NULL);
	BundleDiskRep(CFBundleRef ref, const Context *ctx = NULL);
	
	CFDataRef component(CodeDirectory::SpecialSlot slot);
	CFDataRef identification();
	std::string mainExecutablePath();
	CFURLRef canonicalPath();
	std::string resourcesRootPath();
	void adjustResources(ResourceBuilder &builder);
	Universal *mainExecutableImage();
	size_t signingBase();
	size_t signingLimit();
	std::string format();
	CFArrayRef modifiedFiles();
	UnixPlusPlus::FileDesc &fd();
	void flush();
	
	std::string recommendedIdentifier(const SigningContext &ctx);
	CFDictionaryRef defaultResourceRules(const SigningContext &ctx);
	const Requirements *defaultRequirements(const Architecture *arch, const SigningContext &ctx);
	size_t pageSize(const SigningContext &ctx);

	CFBundleRef bundle() const { return mBundle; }
	
public:
	Writer *writer();
	class Writer;
	friend class Writer;
	
protected:
	std::string metaPath(const char *name);
	CFDataRef metaData(const char *name) { return cfLoadFile(CFTempURL(metaPath(name))); }
	void createMeta();						// (try to) create the meta-file directory
	
private:
	void setup(const Context *ctx);			// shared init
	void checkModifiedFile(CFMutableArrayRef files, CodeDirectory::SpecialSlot slot);

private:
	CFRef<CFBundleRef> mBundle;
	std::string mMetaPath;					// path to directory containing signing files
	bool mMetaExists;						// separate meta-file directory exists
	CFRef<CFURLRef> mMainExecutableURL;		// chosen main executable URL
	bool mInstallerPackage;					// is an installer (not executable) bundle
	string mFormat;							// format description string
	RefPointer<DiskRep> mExecRep;			// DiskRep for main executable file
};


//
// Writers
//
//
class BundleDiskRep::Writer : public DiskRep::Writer {
	friend class BundleDiskRep;
public:
	Writer(BundleDiskRep *r);
	
	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
	void remove();
	void flush();
	
protected:
	DiskRep *execRep() { return rep->mExecRep; }
	void remove(CodeDirectory::SpecialSlot slot);

protected:
	RefPointer<BundleDiskRep> rep;
	RefPointer<DiskRep::Writer> execWriter;
	bool mMadeMetaDirectory;
};


} // end namespace CodeSigning
} // end namespace Security

#endif // !_H_BUNDLEDISKREP
Commit	Line	Data
7d31e928	1	/*
f60086fc	2	* Copyright (c) 2006-2011 Apple Inc. All Rights Reserved.
7d31e928 A	3	*
	4	* @APPLE_LICENSE_HEADER_START@
	5	*
	6	* This file contains Original Code and/or Modifications of Original Code
	7	* as defined in and that are subject to the Apple Public Source License
	8	* Version 2.0 (the 'License'). You may not use this file except in
	9	* compliance with the License. Please obtain a copy of the License at
	10	* http://www.opensource.apple.com/apsl/ and read it before using this
	11	* file.
	12	*
	13	* The Original Code and all software distributed under the License are
	14	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
	15	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
	16	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
	17	* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
	18	* Please see the License for the specific language governing rights and
	19	* limitations under the License.
	20	*
	21	* @APPLE_LICENSE_HEADER_END@
	22	*/
	23
	24	//
	25	// bundlediskrep - bundle directory disk representation
	26	//
	27	#ifndef _H_BUNDLEDISKREP
	28	#define _H_BUNDLEDISKREP
	29
	30	#include "diskrep.h"
	31	#include "machorep.h"
	32
	33	namespace Security {
	34	namespace CodeSigning {
	35
	36
516ae477	37	#define BUNDLEDISKREP_DIRECTORY "_CodeSignature"
f60086fc	38	#define STORE_RECEIPT_DIRECTORY "_MASReceipt"
516ae477 A	39
516ae477 A	40
7d31e928 A	41	//
	42	// A BundleDiskRep represents a standard Mac OS X bundle on disk.
	43	// The bundle is expected to have an Info.plist, and a "main executable file"
	44	// of some sort (as indicated therein).
	45	// The BundleDiskRep stores the necessary components in the main executable
f60086fc	46	// if it is in Mach-O format, or in files in a _CodeSignature directory if not.
7d31e928 A	47	// This DiskRep supports resource sealing.
	48	//
	49	class BundleDiskRep : public DiskRep {
	50	public:
d1c1ab47 A	51	BundleDiskRep(const char path, const Context ctx = NULL);
d1c1ab47 A	52	BundleDiskRep(CFBundleRef ref, const Context *ctx = NULL);
7d31e928 A	53
7d31e928 A	54	CFDataRef component(CodeDirectory::SpecialSlot slot);
d1c1ab47	55	CFDataRef identification();
7d31e928 A	56	std::string mainExecutablePath();
7d31e928 A	57	CFURLRef canonicalPath();
7d31e928	58	std::string resourcesRootPath();
516ae477	59	void adjustResources(ResourceBuilder &builder);
7d31e928	60	Universal *mainExecutableImage();
7d31e928 A	61	size_t signingBase();
	62	size_t signingLimit();
	63	std::string format();
	64	CFArrayRef modifiedFiles();
	65	UnixPlusPlus::FileDesc &fd();
	66	void flush();
f60086fc A	67
	68	std::string recommendedIdentifier(const SigningContext &ctx);
	69	CFDictionaryRef defaultResourceRules(const SigningContext &ctx);
	70	const Requirements defaultRequirements(const Architecture arch, const SigningContext &ctx);
	71	size_t pageSize(const SigningContext &ctx);
7d31e928 A	72
	73	CFBundleRef bundle() const { return mBundle; }
	74
	75	public:
	76	Writer *writer();
	77	class Writer;
	78	friend class Writer;
	79
	80	protected:
516ae477 A	81	std::string metaPath(const char *name);
	82	CFDataRef metaData(const char *name) { return cfLoadFile(CFTempURL(metaPath(name))); }
	83	void createMeta(); // (try to) create the meta-file directory
7d31e928 A	84
7d31e928 A	85	private:
f60086fc	86	void setup(const Context *ctx); // shared init
7d31e928 A	87	void checkModifiedFile(CFMutableArrayRef files, CodeDirectory::SpecialSlot slot);
	88
	89	private:
	90	CFRef<CFBundleRef> mBundle;
516ae477 A	91	std::string mMetaPath; // path to directory containing signing files
516ae477 A	92	bool mMetaExists; // separate meta-file directory exists
62e4ed3d A	93	CFRef<CFURLRef> mMainExecutableURL; // chosen main executable URL
62e4ed3d A	94	bool mInstallerPackage; // is an installer (not executable) bundle
f60086fc	95	string mFormat; // format description string
516ae477	96	RefPointer<DiskRep> mExecRep; // DiskRep for main executable file
7d31e928 A	97	};
	98
	99
	100	//
	101	// Writers
	102	//
	103	//
	104	class BundleDiskRep::Writer : public DiskRep::Writer {
	105	friend class BundleDiskRep;
	106	public:
	107	Writer(BundleDiskRep *r);
	108
	109	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
d1c1ab47	110	void remove();
7d31e928 A	111	void flush();
	112
	113	protected:
	114	DiskRep *execRep() { return rep->mExecRep; }
d1c1ab47	115	void remove(CodeDirectory::SpecialSlot slot);
7d31e928 A	116
	117	protected:
	118	RefPointer<BundleDiskRep> rep;
	119	RefPointer<DiskRep::Writer> execWriter;
516ae477	120	bool mMadeMetaDirectory;
7d31e928 A	121	};
	122
	123
	124	} // end namespace CodeSigning
	125	} // end namespace Security
	126
	127	#endif // !_H_BUNDLEDISKREP