[apple/security.git] / libsecurity_codesigning / lib / csutilities.h

/*
 * Copyright (c) 2006-2010 Apple Inc. All Rights Reserved.
 * 
 * @APPLE_LICENSE_HEADER_START@
 * 
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this
 * file.
 * 
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 * 
 * @APPLE_LICENSE_HEADER_END@
 */

//
// csutilities - miscellaneous utilities for the code signing implementation
//
// This is a collection of odds and ends that wouldn't fit anywhere else.
// The common theme is that the contents are otherwise naturally homeless.
//
#ifndef _H_CSUTILITIES
#define _H_CSUTILITIES

#include <Security/Security.h>
#include <security_utilities/hashing.h>
#include <security_utilities/unix++.h>
#include <security_cdsa_utilities/cssmdata.h>
#include <copyfile.h>
#include <asl.h>
#include <cstdarg>

namespace Security {
namespace CodeSigning {


//
// Test for the canonical Apple CA certificate
//
bool isAppleCA(SecCertificateRef cert);
bool isAppleCA(const Hashing::Byte *sha1);


//
// Calculate canonical hashes of certificate.
// This is simply defined as (always) the SHA1 hash of the DER.
//
void hashOfCertificate(const void *certData, size_t certLength, SHA1::Digest digest);
void hashOfCertificate(SecCertificateRef cert, SHA1::Digest digest);
bool verifyHash(SecCertificateRef cert, const Hashing::Byte *digest);


//
// Calculate hashes of (a section of) a file.
// Starts at the current file position.
// Extends to end of file, or (if limit > 0) at most limit bytes.
// Returns number of bytes digested.
//
template <class _Hash>
size_t hashFileData(UnixPlusPlus::FileDesc fd, _Hash *hasher, size_t limit = 0)
{
	unsigned char buffer[4096];
	size_t total = 0;
	for (;;) {
		size_t size = sizeof(buffer);
		if (limit && limit < size)
			size = limit;
		size_t got = fd.read(buffer, size);
		total += got;
		if (fd.atEnd())
			break;
		hasher->update(buffer, got);
		if (limit && (limit -= got) == 0)
			break;
	}
	return total;
}

template <class _Hash>
size_t hashFileData(const char *path, _Hash *hasher)
{
	UnixPlusPlus::AutoFileDesc fd(path);
	return hashFileData(fd, hasher);
}


//
// Check to see if a certificate contains a particular field, by OID. This works for extensions,
// even ones not recognized by the local CL. It does not return any value, only presence.
//
bool certificateHasField(SecCertificateRef cert, const CSSM_OID &oid);
bool certificateHasPolicy(SecCertificateRef cert, const CSSM_OID &policyOid);


//
// Encapsulation of the copyfile(3) API.
// This is slated to go into utilities once stable.
//
class Copyfile {
public:
	Copyfile();
	~Copyfile()	{ copyfile_state_free(mState); }
	
	operator copyfile_state_t () const { return mState; }
	
	void set(uint32_t flag, const void *value);
	void get(uint32_t flag, void *value);
	
	void operator () (const char *src, const char *dst, copyfile_flags_t flags);

private:
	void check(int rc);
	
private:
	copyfile_state_t mState;
};


//
// MessageTracer support
//
class MessageTrace {
public:
	MessageTrace(const char *domain, const char *signature);
	~MessageTrace() { ::asl_free(mAsl); }
	void add(const char *key, const char *format, ...);
	void send(const char *format, ...);

private:
	aslmsg mAsl;
};


//
// A reliable uid set/reset bracket
//
class UidGuard {
public:
	UidGuard() : mPrevious(-1) { }
	UidGuard(uid_t uid) : mPrevious(-1) { seteuid(uid); }
	~UidGuard()
	{
		if (active())
			UnixError::check(::seteuid(mPrevious));
	}
	
	bool seteuid(uid_t uid)
	{
		if (uid == geteuid())
			return true;	// no change, don't bother the kernel
		if (!active())
			mPrevious = ::geteuid();
		return ::seteuid(uid) == 0;
	}
	
	bool active() const { return mPrevious != uid_t(-1); }
	operator bool () const { return active(); }
	uid_t saved() const { assert(active()); return mPrevious; }

private:
	uid_t mPrevious;
};


} // end namespace CodeSigning
} // end namespace Security

#endif // !_H_CSUTILITIES
Commit	Line	Data
b1ab9ed8 A	1	/*
	2	* Copyright (c) 2006-2010 Apple Inc. All Rights Reserved.
	3	*
	4	* @APPLE_LICENSE_HEADER_START@
	5	*
	6	* This file contains Original Code and/or Modifications of Original Code
	7	* as defined in and that are subject to the Apple Public Source License
	8	* Version 2.0 (the 'License'). You may not use this file except in
	9	* compliance with the License. Please obtain a copy of the License at
	10	* http://www.opensource.apple.com/apsl/ and read it before using this
	11	* file.
	12	*
	13	* The Original Code and all software distributed under the License are
	14	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
	15	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
	16	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
	17	* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
	18	* Please see the License for the specific language governing rights and
	19	* limitations under the License.
	20	*
	21	* @APPLE_LICENSE_HEADER_END@
	22	*/
	23
	24	//
	25	// csutilities - miscellaneous utilities for the code signing implementation
	26	//
	27	// This is a collection of odds and ends that wouldn't fit anywhere else.
	28	// The common theme is that the contents are otherwise naturally homeless.
	29	//
	30	#ifndef _H_CSUTILITIES
	31	#define _H_CSUTILITIES
	32
	33	#include <Security/Security.h>
	34	#include <security_utilities/hashing.h>
	35	#include <security_utilities/unix++.h>
	36	#include <security_cdsa_utilities/cssmdata.h>
	37	#include <copyfile.h>
	38	#include <asl.h>
	39	#include <cstdarg>
	40
	41	namespace Security {
	42	namespace CodeSigning {
	43
	44
313fa17b A	45	//
	46	// Test for the canonical Apple CA certificate
	47	//
	48	bool isAppleCA(SecCertificateRef cert);
	49	bool isAppleCA(const Hashing::Byte *sha1);
	50
	51
b1ab9ed8 A	52	//
	53	// Calculate canonical hashes of certificate.
	54	// This is simply defined as (always) the SHA1 hash of the DER.
	55	//
	56	void hashOfCertificate(const void *certData, size_t certLength, SHA1::Digest digest);
	57	void hashOfCertificate(SecCertificateRef cert, SHA1::Digest digest);
313fa17b	58	bool verifyHash(SecCertificateRef cert, const Hashing::Byte *digest);
b1ab9ed8 A	59
	60
	61	//
	62	// Calculate hashes of (a section of) a file.
	63	// Starts at the current file position.
	64	// Extends to end of file, or (if limit > 0) at most limit bytes.
	65	// Returns number of bytes digested.
	66	//
b1ab9ed8 A	67	template <class _Hash>
	68	size_t hashFileData(UnixPlusPlus::FileDesc fd, _Hash *hasher, size_t limit = 0)
	69	{
	70	unsigned char buffer[4096];
	71	size_t total = 0;
	72	for (;;) {
	73	size_t size = sizeof(buffer);
	74	if (limit && limit < size)
	75	size = limit;
	76	size_t got = fd.read(buffer, size);
	77	total += got;
	78	if (fd.atEnd())
	79	break;
	80	hasher->update(buffer, got);
	81	if (limit && (limit -= got) == 0)
	82	break;
	83	}
	84	return total;
	85	}
	86
313fa17b A	87	template <class _Hash>
	88	size_t hashFileData(const char path, _Hash hasher)
	89	{
	90	UnixPlusPlus::AutoFileDesc fd(path);
	91	return hashFileData(fd, hasher);
	92	}
	93
b1ab9ed8 A	94
	95	//
	96	// Check to see if a certificate contains a particular field, by OID. This works for extensions,
	97	// even ones not recognized by the local CL. It does not return any value, only presence.
	98	//
	99	bool certificateHasField(SecCertificateRef cert, const CSSM_OID &oid);
	100	bool certificateHasPolicy(SecCertificateRef cert, const CSSM_OID &policyOid);
	101
	102
	103	//
	104	// Encapsulation of the copyfile(3) API.
	105	// This is slated to go into utilities once stable.
	106	//
	107	class Copyfile {
	108	public:
	109	Copyfile();
	110	~Copyfile() { copyfile_state_free(mState); }
	111
	112	operator copyfile_state_t () const { return mState; }
	113
	114	void set(uint32_t flag, const void *value);
	115	void get(uint32_t flag, void *value);
	116
	117	void operator () (const char src, const char dst, copyfile_flags_t flags);
	118
	119	private:
	120	void check(int rc);
	121
	122	private:
	123	copyfile_state_t mState;
	124	};
	125
	126
	127	//
	128	// MessageTracer support
	129	//
	130	class MessageTrace {
	131	public:
	132	MessageTrace(const char domain, const char signature);
427c49bc	133	~MessageTrace() { ::asl_free(mAsl); }
b1ab9ed8 A	134	void add(const char key, const char format, ...);
	135	void send(const char *format, ...);
	136
	137	private:
	138	aslmsg mAsl;
	139	};
	140
	141
	142	//
	143	// A reliable uid set/reset bracket
	144	//
	145	class UidGuard {
	146	public:
	147	UidGuard() : mPrevious(-1) { }
	148	UidGuard(uid_t uid) : mPrevious(-1) { seteuid(uid); }
	149	~UidGuard()
	150	{
	151	if (active())
	152	UnixError::check(::seteuid(mPrevious));
	153	}
	154
	155	bool seteuid(uid_t uid)
	156	{
	157	if (uid == geteuid())
	158	return true; // no change, don't bother the kernel
	159	if (!active())
	160	mPrevious = ::geteuid();
	161	return ::seteuid(uid) == 0;
	162	}
	163
	164	bool active() const { return mPrevious != uid_t(-1); }
	165	operator bool () const { return active(); }
	166	uid_t saved() const { assert(active()); return mPrevious; }
	167
	168	private:
	169	uid_t mPrevious;
	170	};
	171
	172
	173	} // end namespace CodeSigning
	174	} // end namespace Security
	175
	176	#endif // !_H_CSUTILITIES