[apple/libsecurity_codesigning.git] / lib / signerutils.h

/*
 * Copyright (c) 2006-2010 Apple Inc. All Rights Reserved.
 * 
 * @APPLE_LICENSE_HEADER_START@
 * 
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this
 * file.
 * 
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 * 
 * @APPLE_LICENSE_HEADER_END@
 */

//
// signerutils - utilities for signature generation
//
#ifndef _H_SIGNERUTILS
#define _H_SIGNERUTILS

#include "CodeSigner.h"
#include "sigblob.h"
#include "cdbuilder.h"
#include <security_utilities/utilities.h>
#include <security_utilities/blob.h>
#include <security_utilities/unix++.h>
#include <security_utilities/unixchild.h>

namespace Security {
namespace CodeSigning {


//
// A helper to deal with the magic merger logic of internal requirements
//
class InternalRequirements : public Requirements::Maker {
public:
	InternalRequirements() : mReqs(NULL) { }
	~InternalRequirements() { ::free((void *)mReqs); }
	void operator () (const Requirements *given, const Requirements *defaulted, const Requirement::Context &context);
	operator const Requirements * () const { return mReqs; }

private:
	const Requirements *mReqs;
};


//
// A DiskRep::Writer that assembles data in a SuperBlob (in memory)
//
class BlobWriter : public DiskRep::Writer, public EmbeddedSignatureBlob::Maker {
public:	
	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
};


class DetachedBlobWriter : public BlobWriter {
public:
	DetachedBlobWriter(SecCodeSigner::Signer &s) : signer(s) { }

	SecCodeSigner::Signer &signer;
	
	void flush();
};


//
// A multi-architecture editing assistant.
// ArchEditor collects (Mach-O) architectures in use, and maintains per-archtitecture
// data structures. It must be subclassed to express a particular way to handle the signing
// data.
//
class ArchEditor : public DiskRep::Writer {
public:
	ArchEditor(Universal &fat, CodeDirectory::HashAlgorithm hashType, uint32_t attrs);
	virtual ~ArchEditor();

public:
	//
	// One architecture's signing construction element.
	// This also implements DispRep::Writer so generic writing code
	// can work with both Mach-O and other files.
	//
	struct Arch : public BlobWriter {
		Architecture architecture;		// our architecture
		auto_ptr<MachO> source;			// Mach-O object to be signed
		CodeDirectory::Builder cdbuilder; // builder for CodeDirectory
		InternalRequirements ireqs;		// consolidated internal requirements
		size_t blobSize;				// calculated SuperBlob size
		
		Arch(const Architecture &arch, CodeDirectory::HashAlgorithm hashType)
			: architecture(arch), cdbuilder(hashType) { }
	};

	//
	// Our callers access the architectural universe through a map
	// from Architectures to Arch objects.
	//
	typedef std::map<Architecture, Arch *> ArchMap;
	typedef ArchMap::iterator Iterator;
	ArchMap::iterator begin()		{ return architecture.begin(); }
	ArchMap::iterator end()			{ return architecture.end(); }
	unsigned count() const			{ return architecture.size(); }
	
	// methods needed for an actual implementation
	virtual void allocate() = 0;			// interpass allocations
	virtual void reset(Arch &arch) = 0;		// pass 2 prep
	virtual void write(Arch &arch, EmbeddedSignatureBlob *blob) = 0; // takes ownership of blob
	virtual void commit() = 0;				// write/flush result
	
protected:
	ArchMap architecture;
};


//
// An ArchEditor that collects all architectures into a single SuperBlob,
// usually for writing a detached multi-architecture signature.
//
class BlobEditor : public ArchEditor {
public:
	BlobEditor(Universal &fat, SecCodeSigner::Signer &s);
	
	SecCodeSigner::Signer &signer;
	
	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
	void allocate() { }
	void reset(Arch &arch) { }
	void write(Arch &arch, EmbeddedSignatureBlob *blob);
	void commit();
	
private:
	DetachedSignatureBlob::Maker mMaker;
	EmbeddedSignatureBlob::Maker mGlobal;
};


//
// An ArchEditor that writes its signatures into a (fat) binary file.
// We do this by forking a helper tool (codesign_allocate) and asking
// it to make a copy with suitable space "opened up" in the right spots.
//
class MachOEditor : public ArchEditor, private UnixPlusPlus::Child {
public:
	MachOEditor(DiskRep::Writer *w, Universal &code, CodeDirectory::HashAlgorithm hashType, std::string srcPath);
	~MachOEditor();

	const RefPointer<DiskRep::Writer> writer;
	const std::string sourcePath;
	const std::string tempPath;
	
	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
	void allocate();
	void reset(Arch &arch);
	void write(Arch &arch, EmbeddedSignatureBlob *blob);
	void commit();
	
private:
	// fork operation
	void childAction();
	void parentAction();
	
	// controlling the temporary file copy
	Universal *mNewCode;
	UnixPlusPlus::AutoFileDesc mFd;
	bool mTempMayExist;
	
	// finding and managing the helper tool
	const char *mHelperPath;
	bool mHelperOverridden;
};


//
// A Requirement::Context populated from a signing request.
// We use this to help generate the explicit Designated Requirement
// during signing ops, and thus this must be constructed BEFORE we
// actually have a signed object.
//
class PreSigningContext : public Requirement::Context {
public:
	PreSigningContext(const SecCodeSigner::Signer &signer);

private:
	CFRef<CFArrayRef> mCerts;		// hold cert chain
};


} // end namespace CodeSigning
} // end namespace Security

#endif // !_H_SIGNERUTILS
Commit	Line	Data
7d31e928	1	/*
f60086fc	2	* Copyright (c) 2006-2010 Apple Inc. All Rights Reserved.
7d31e928 A	3	*
	4	* @APPLE_LICENSE_HEADER_START@
	5	*
	6	* This file contains Original Code and/or Modifications of Original Code
	7	* as defined in and that are subject to the Apple Public Source License
	8	* Version 2.0 (the 'License'). You may not use this file except in
	9	* compliance with the License. Please obtain a copy of the License at
	10	* http://www.opensource.apple.com/apsl/ and read it before using this
	11	* file.
	12	*
	13	* The Original Code and all software distributed under the License are
	14	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
	15	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
	16	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
	17	* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
	18	* Please see the License for the specific language governing rights and
	19	* limitations under the License.
	20	*
	21	* @APPLE_LICENSE_HEADER_END@
	22	*/
	23
	24	//
	25	// signerutils - utilities for signature generation
	26	//
	27	#ifndef _H_SIGNERUTILS
	28	#define _H_SIGNERUTILS
	29
	30	#include "CodeSigner.h"
	31	#include "sigblob.h"
	32	#include "cdbuilder.h"
	33	#include <security_utilities/utilities.h>
	34	#include <security_utilities/blob.h>
	35	#include <security_utilities/unix++.h>
	36	#include <security_utilities/unixchild.h>
	37
7d31e928 A	38	namespace Security {
	39	namespace CodeSigning {
	40
	41
62e4ed3d A	42	//
	43	// A helper to deal with the magic merger logic of internal requirements
	44	//
	45	class InternalRequirements : public Requirements::Maker {
	46	public:
	47	InternalRequirements() : mReqs(NULL) { }
	48	~InternalRequirements() { ::free((void *)mReqs); }
	49	void operator () (const Requirements given, const Requirements defaulted, const Requirement::Context &context);
	50	operator const Requirements * () const { return mReqs; }
	51
	52	private:
	53	const Requirements *mReqs;
	54	};
	55
	56
7d31e928 A	57	//
	58	// A DiskRep::Writer that assembles data in a SuperBlob (in memory)
	59	//
	60	class BlobWriter : public DiskRep::Writer, public EmbeddedSignatureBlob::Maker {
	61	public:
	62	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
	63	};
	64
	65
	66	class DetachedBlobWriter : public BlobWriter {
	67	public:
	68	DetachedBlobWriter(SecCodeSigner::Signer &s) : signer(s) { }
	69
	70	SecCodeSigner::Signer &signer;
	71
	72	void flush();
	73	};
	74
	75
	76	//
	77	// A multi-architecture editing assistant.
	78	// ArchEditor collects (Mach-O) architectures in use, and maintains per-archtitecture
	79	// data structures. It must be subclassed to express a particular way to handle the signing
	80	// data.
	81	//
	82	class ArchEditor : public DiskRep::Writer {
	83	public:
f60086fc	84	ArchEditor(Universal &fat, CodeDirectory::HashAlgorithm hashType, uint32_t attrs);
7d31e928 A	85	virtual ~ArchEditor();
	86
	87	public:
	88	//
	89	// One architecture's signing construction element.
	90	// This also implements DispRep::Writer so generic writing code
	91	// can work with both Mach-O and other files.
	92	//
	93	struct Arch : public BlobWriter {
	94	Architecture architecture; // our architecture
	95	auto_ptr<MachO> source; // Mach-O object to be signed
	96	CodeDirectory::Builder cdbuilder; // builder for CodeDirectory
	97	InternalRequirements ireqs; // consolidated internal requirements
	98	size_t blobSize; // calculated SuperBlob size
	99
f60086fc A	100	Arch(const Architecture &arch, CodeDirectory::HashAlgorithm hashType)
f60086fc A	101	: architecture(arch), cdbuilder(hashType) { }
7d31e928 A	102	};
	103
	104	//
	105	// Our callers access the architectural universe through a map
	106	// from Architectures to Arch objects.
	107	//
	108	typedef std::map<Architecture, Arch *> ArchMap;
	109	typedef ArchMap::iterator Iterator;
	110	ArchMap::iterator begin() { return architecture.begin(); }
	111	ArchMap::iterator end() { return architecture.end(); }
	112	unsigned count() const { return architecture.size(); }
	113
	114	// methods needed for an actual implementation
	115	virtual void allocate() = 0; // interpass allocations
	116	virtual void reset(Arch &arch) = 0; // pass 2 prep
	117	virtual void write(Arch &arch, EmbeddedSignatureBlob *blob) = 0; // takes ownership of blob
	118	virtual void commit() = 0; // write/flush result
	119
	120	protected:
	121	ArchMap architecture;
	122	};
	123
	124
	125	//
	126	// An ArchEditor that collects all architectures into a single SuperBlob,
	127	// usually for writing a detached multi-architecture signature.
	128	//
	129	class BlobEditor : public ArchEditor {
	130	public:
f60086fc	131	BlobEditor(Universal &fat, SecCodeSigner::Signer &s);
7d31e928 A	132
	133	SecCodeSigner::Signer &signer;
	134
	135	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
	136	void allocate() { }
	137	void reset(Arch &arch) { }
	138	void write(Arch &arch, EmbeddedSignatureBlob *blob);
	139	void commit();
	140
	141	private:
	142	DetachedSignatureBlob::Maker mMaker;
	143	EmbeddedSignatureBlob::Maker mGlobal;
	144	};
	145
	146
	147	//
	148	// An ArchEditor that writes its signatures into a (fat) binary file.
f60086fc A	149	// We do this by forking a helper tool (codesign_allocate) and asking
f60086fc A	150	// it to make a copy with suitable space "opened up" in the right spots.
7d31e928 A	151	//
	152	class MachOEditor : public ArchEditor, private UnixPlusPlus::Child {
	153	public:
f60086fc	154	MachOEditor(DiskRep::Writer *w, Universal &code, CodeDirectory::HashAlgorithm hashType, std::string srcPath);
7d31e928 A	155	~MachOEditor();
	156
	157	const RefPointer<DiskRep::Writer> writer;
	158	const std::string sourcePath;
	159	const std::string tempPath;
	160
	161	void component(CodeDirectory::SpecialSlot slot, CFDataRef data);
	162	void allocate();
	163	void reset(Arch &arch);
	164	void write(Arch &arch, EmbeddedSignatureBlob *blob);
	165	void commit();
	166
	167	private:
f60086fc	168	// fork operation
7d31e928	169	void childAction();
f6842776 A	170	void parentAction();
f6842776 A	171
f60086fc	172	// controlling the temporary file copy
7d31e928 A	173	Universal *mNewCode;
	174	UnixPlusPlus::AutoFileDesc mFd;
	175	bool mTempMayExist;
f6842776	176
f60086fc	177	// finding and managing the helper tool
f6842776 A	178	const char *mHelperPath;
f6842776 A	179	bool mHelperOverridden;
7d31e928 A	180	};
	181
	182
62e4ed3d A	183	//
	184	// A Requirement::Context populated from a signing request.
	185	// We use this to help generate the explicit Designated Requirement
	186	// during signing ops, and thus this must be constructed BEFORE we
	187	// actually have a signed object.
	188	//
	189	class PreSigningContext : public Requirement::Context {
	190	public:
	191	PreSigningContext(const SecCodeSigner::Signer &signer);
	192
	193	private:
	194	CFRef<CFArrayRef> mCerts; // hold cert chain
	195	};
	196
	197
7d31e928 A	198	} // end namespace CodeSigning
	199	} // end namespace Security
	200
	201	#endif // !_H_SIGNERUTILS