]> git.saurik.com Git - apple/libsecurity_codesigning.git/blob - lib/Code.h
libsecurity_codesigning-55032.tar.gz
[apple/libsecurity_codesigning.git] / lib / Code.h
1 /*
2 * Copyright (c) 2006 Apple Computer, Inc. All Rights Reserved.
3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
11 * file.
12 *
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
20 *
21 * @APPLE_LICENSE_HEADER_END@
22 */
23
24 //
25 // Code - SecCode API objects
26 //
27 #ifndef _H_CODE
28 #define _H_CODE
29
30 #include "cs.h"
31 #include "Requirements.h"
32 #include <security_utilities/utilities.h>
33
34 namespace Security {
35 namespace CodeSigning {
36
37
38 class SecStaticCode;
39
40
41 //
42 // A SecCode object represents running code in the system. It must be subclassed
43 // to implement a particular notion of code.
44 //
45 class SecCode : public SecCFObject {
46 NOCOPY(SecCode)
47 friend class KernelCode; // overrides identify() to set mStaticCode/mCDHash
48 public:
49 SECCFFUNCTIONS(SecCode, SecCodeRef, errSecCSInvalidObjectRef, gCFObjects().Code)
50
51 SecCode(SecCode *host);
52 virtual ~SecCode() throw();
53
54 bool equal(SecCFObject &other);
55 CFHashCode hash();
56
57 SecCode *host() const;
58 bool isRoot() const { return host() == NULL; }
59 SecStaticCode *staticCode(); // cached. Result lives as long as this SecCode
60 CFDataRef cdHash();
61
62 SecCodeStatus status(); // dynamic status
63 void status(SecCodeStatusOperation operation, CFDictionaryRef arguments);
64
65 // primary virtual drivers. Caller owns the result
66 virtual void identify();
67 virtual SecCode *locateGuest(CFDictionaryRef attributes);
68 virtual SecStaticCode *identifyGuest(SecCode *guest, CFDataRef *cdhash);
69
70 void checkValidity(SecCSFlags flags);
71 virtual SecCodeStatus getGuestStatus(SecCode *guest);
72 virtual void changeGuestStatus(SecCode *guest, SecCodeStatusOperation operation, CFDictionaryRef arguments);
73
74 public:
75 // perform "autolocation" (root-based heuristic). Caller owns the result
76 static SecCode *autoLocateGuest(CFDictionaryRef attributes, SecCSFlags flags);
77
78 private:
79 SecPointer<SecCode> mHost;
80 bool mIdentified; // called identify(), mStaticCode & mCDHash are valid
81 SecPointer<SecStaticCode> mStaticCode; // (static) code origin
82 CFRef<CFDataRef> mCDHash; // (dynamic) CodeDirectory hash as per host
83 };
84
85
86 } // end namespace CodeSigning
87 } // end namespace Security
88
89 #endif // !_H_CODE