[apple/security.git] / libsecurity_keychain / lib / Item.h

/*
 * Copyright (c) 2000-2004,2012-2013 Apple Inc. All Rights Reserved.
 *
 * @APPLE_LICENSE_HEADER_START@
 *
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this
 * file.
 *
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 *
 * @APPLE_LICENSE_HEADER_END@
 */


//
// Item.h
//
#ifndef _SECURITY_ITEM_H_
#define _SECURITY_ITEM_H_

#include <security_keychain/Keychains.h>
#include <security_keychain/PrimaryKey.h>
#include <security_cdsa_client/securestorage.h>
#include <security_keychain/Access.h>

namespace Security
{

using namespace CssmClient;

namespace KeychainCore
{
class Keychain;

class ItemImpl : public SecCFObject
{
public:
	SECCFFUNCTIONS(ItemImpl, SecKeychainItemRef, errSecInvalidItemRef, gTypes().ItemImpl)

    friend class Item;
	friend class KeychainImpl;
protected:

	// new item constructors
    ItemImpl(SecItemClass itemClass, OSType itemCreator, UInt32 length, const void* data, bool inhibitCheck = false);

	ItemImpl(SecItemClass itemClass, SecKeychainAttributeList *attrList, UInt32 length, const void* data);

	// db item constructor
    ItemImpl(const Keychain &keychain, const PrimaryKey &primaryKey, const CssmClient::DbUniqueRecord &uniqueId);

	// PrimaryKey item constructor
    ItemImpl(const Keychain &keychain, const PrimaryKey &primaryKey);

public:

	static ItemImpl* make(const Keychain &keychain, const PrimaryKey &primaryKey, const CssmClient::DbUniqueRecord &uniqueId);
	static ItemImpl* make(const Keychain &keychain, const PrimaryKey &primaryKey);

	ItemImpl(ItemImpl &item);

	// Return true if we got the attribute, false if we only got the actualLength.
	void getAttributeFrom(CssmDbAttributeData *data, SecKeychainAttribute &attr,  UInt32 *actualLength);
	void getClass(SecKeychainAttribute &attr,  UInt32 *actualLength);

	// For iOS keys
	void setPersistentRef(CFDataRef ref);
	// returns NULL for securityd keys, or the (non-NULL) persistent ref for iOS keys
	CFDataRef getPersistentRef();
	
	PrimaryKey addWithCopyInfo(Keychain &keychain, bool isCopy);
	Mutex* getMutexForObject();

protected:
	// Methods called by KeychainImpl;

	// Add the receiver to keychain
	virtual PrimaryKey add(Keychain &keychain);

	// Get the default value for an attribute
	static const CSSM_DATA &defaultAttributeValue(const CSSM_DB_ATTRIBUTE_INFO &info);

public:
    virtual ~ItemImpl();
    bool isPersistent();
    bool isModified();

	virtual void update();

	void aboutToDestruct();

	// put a copy of the item into a given keychain
	virtual Item copyTo(const Keychain &keychain, Access *newAccess = NULL);

    CSSM_DB_RECORDTYPE recordType();

	// Used for writing the record to the database.
    CssmClient::DbUniqueRecord dbUniqueRecord();
	const CssmClient::DbAttributes *modifiedAttributes();
	const CssmData *modifiedData();
	virtual void didModify(); // Forget any attributes and data we just wrote to the db

	Keychain keychain();
	PrimaryKey primaryKey();
	bool operator < (const ItemImpl &other);

	void getAttribute(SecKeychainAttribute& attr,  UInt32 *actualLength);
	void getData(CssmDataContainer& outData);

	void modifyContent(const SecKeychainAttributeList *attrList, UInt32 dataLength, const void *inData);
	void getContent(SecItemClass *itemClass, SecKeychainAttributeList *attrList, UInt32 *length, void **outData);
	static void freeContent(SecKeychainAttributeList *attrList, void *data);
	static void freeAttributesAndData(SecKeychainAttributeList *attrList, void *data);

	void getAttributesAndData(SecKeychainAttributeInfo *info, SecItemClass *itemClass,
							  SecKeychainAttributeList **attrList, UInt32 *length, void **outData);
	void modifyAttributesAndData(const SecKeychainAttributeList *attrList, UInt32 dataLength, const void *inData);

	void setAttribute(SecKeychainAttribute& attr);
	void setAttribute(const CssmDbAttributeInfo &info, const CssmPolyData &data);
	void setData(UInt32 length,const void *data);
	void setAccess(Access *newAccess);
	void copyRecordIdentifier(CSSM_DATA &data);
	SSGroup group();

    void getContent(DbAttributes *dbAttributes, CssmDataContainer *itemData);
    void getLocalContent(SecKeychainAttributeList *attributeList, UInt32 *outLength, void **outData);

    bool useSecureStorage(const CssmClient::Db &db);
	virtual void willRead();

    // create a persistent reference to this item
    void copyPersistentReference(CFDataRef &outDataRef, bool isSecIdentityRef=false);
	static Item makeFromPersistentReference(const CFDataRef persistentRef, bool *isIdentityRef=NULL);

	// for keychain syncing
	void doNotEncrypt () {mDoNotEncrypt = true;}

	// for posting events on this item
	void postItemEvent (SecKeychainEvent theEvent);

	// Only call these functions while holding globals().apiLock.
	bool inCache() const throw() { return mInCache; }
	void inCache(bool inCache) throw() { mInCache = inCache; }

	/* For binding to extended attributes. */
	virtual const CssmData &itemID();

	/* Overrides for SecCFObject methods */
	bool equal(SecCFObject &other);
    virtual CFHashCode hash();
	
    bool mayDelete();
    
protected:
	// new item members
	RefPointer<CssmDataContainer> mData;
	auto_ptr<CssmClient::DbAttributes> mDbAttributes;
	SecPointer<Access> mAccess;

	// db item members
	CssmClient::DbUniqueRecord mUniqueId;
	Keychain mKeychain;
	PrimaryKey mPrimaryKey;

	// non-NULL only for secd items (managed by secd, not securityd)
	CFDataRef secd_PersistentRef;

private:
	// keychain syncing flags
	bool mDoNotEncrypt;

	// mInCache is protected by globals().apiLock
	// True iff we are in the cache of items in mKeychain
	bool mInCache;

protected:
	Mutex mMutex;
};


class Item : public SecPointer<ItemImpl>
{
public:
    Item();
    Item(ItemImpl *impl);
    Item(SecItemClass itemClass, OSType itemCreator, UInt32 length, const void* data, bool inhibitCheck);
	Item(SecItemClass itemClass, SecKeychainAttributeList *attrList, UInt32 length, const void* data);
    Item(const Keychain &keychain, const PrimaryKey &primaryKey, const CssmClient::DbUniqueRecord &uniqueId);
    Item(const Keychain &keychain, const PrimaryKey &primaryKey);
	Item(ItemImpl &item);
};


CFIndex GetItemRetainCount(Item& item);

} // end namespace KeychainCore

} // end namespace Security


#endif // !_SECURITY_ITEM_H_
Commit	Line	Data
b1ab9ed8	1	/*
427c49bc A	2	* Copyright (c) 2000-2004,2012-2013 Apple Inc. All Rights Reserved.
427c49bc A	3	*
b1ab9ed8	4	* @APPLE_LICENSE_HEADER_START@
427c49bc	5	*
b1ab9ed8 A	6	* This file contains Original Code and/or Modifications of Original Code
	7	* as defined in and that are subject to the Apple Public Source License
	8	* Version 2.0 (the 'License'). You may not use this file except in
	9	* compliance with the License. Please obtain a copy of the License at
	10	* http://www.opensource.apple.com/apsl/ and read it before using this
	11	* file.
427c49bc	12	*
b1ab9ed8 A	13	* The Original Code and all software distributed under the License are
	14	* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
	15	* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
	16	* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
	17	* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
	18	* Please see the License for the specific language governing rights and
	19	* limitations under the License.
427c49bc	20	*
b1ab9ed8 A	21	* @APPLE_LICENSE_HEADER_END@
	22	*/
	23
	24
	25	//
	26	// Item.h
	27	//
	28	#ifndef _SECURITY_ITEM_H_
	29	#define _SECURITY_ITEM_H_
	30
	31	#include <security_keychain/Keychains.h>
	32	#include <security_keychain/PrimaryKey.h>
	33	#include <security_cdsa_client/securestorage.h>
	34	#include <security_keychain/Access.h>
	35
	36	namespace Security
	37	{
	38
	39	using namespace CssmClient;
	40
	41	namespace KeychainCore
	42	{
	43	class Keychain;
	44
	45	class ItemImpl : public SecCFObject
	46	{
	47	public:
	48	SECCFFUNCTIONS(ItemImpl, SecKeychainItemRef, errSecInvalidItemRef, gTypes().ItemImpl)
	49
	50	friend class Item;
	51	friend class KeychainImpl;
	52	protected:
	53
	54	// new item constructors
	55	ItemImpl(SecItemClass itemClass, OSType itemCreator, UInt32 length, const void* data, bool inhibitCheck = false);
427c49bc	56
b1ab9ed8 A	57	ItemImpl(SecItemClass itemClass, SecKeychainAttributeList attrList, UInt32 length, const void data);
b1ab9ed8 A	58
427c49bc	59	// db item constructor
b1ab9ed8 A	60	ItemImpl(const Keychain &keychain, const PrimaryKey &primaryKey, const CssmClient::DbUniqueRecord &uniqueId);
b1ab9ed8 A	61
427c49bc	62	// PrimaryKey item constructor
b1ab9ed8 A	63	ItemImpl(const Keychain &keychain, const PrimaryKey &primaryKey);
	64
	65	public:
	66
	67	static ItemImpl* make(const Keychain &keychain, const PrimaryKey &primaryKey, const CssmClient::DbUniqueRecord &uniqueId);
	68	static ItemImpl* make(const Keychain &keychain, const PrimaryKey &primaryKey);
427c49bc	69
b1ab9ed8 A	70	ItemImpl(ItemImpl &item);
	71
	72	// Return true if we got the attribute, false if we only got the actualLength.
	73	void getAttributeFrom(CssmDbAttributeData data, SecKeychainAttribute &attr, UInt32 actualLength);
	74	void getClass(SecKeychainAttribute &attr, UInt32 *actualLength);
427c49bc A	75
	76	// For iOS keys
	77	void setPersistentRef(CFDataRef ref);
	78	// returns NULL for securityd keys, or the (non-NULL) persistent ref for iOS keys
	79	CFDataRef getPersistentRef();
b1ab9ed8 A	80
	81	PrimaryKey addWithCopyInfo(Keychain &keychain, bool isCopy);
	82	Mutex* getMutexForObject();
	83
	84	protected:
	85	// Methods called by KeychainImpl;
	86
	87	// Add the receiver to keychain
	88	virtual PrimaryKey add(Keychain &keychain);
	89
	90	// Get the default value for an attribute
	91	static const CSSM_DATA &defaultAttributeValue(const CSSM_DB_ATTRIBUTE_INFO &info);
	92
	93	public:
	94	virtual ~ItemImpl();
	95	bool isPersistent();
	96	bool isModified();
	97
	98	virtual void update();
	99
	100	void aboutToDestruct();
427c49bc	101
b1ab9ed8 A	102	// put a copy of the item into a given keychain
	103	virtual Item copyTo(const Keychain &keychain, Access *newAccess = NULL);
	104
	105	CSSM_DB_RECORDTYPE recordType();
	106
	107	// Used for writing the record to the database.
	108	CssmClient::DbUniqueRecord dbUniqueRecord();
	109	const CssmClient::DbAttributes *modifiedAttributes();
	110	const CssmData *modifiedData();
	111	virtual void didModify(); // Forget any attributes and data we just wrote to the db
	112
	113	Keychain keychain();
	114	PrimaryKey primaryKey();
	115	bool operator < (const ItemImpl &other);
	116
	117	void getAttribute(SecKeychainAttribute& attr, UInt32 *actualLength);
	118	void getData(CssmDataContainer& outData);
427c49bc	119
b1ab9ed8 A	120	void modifyContent(const SecKeychainAttributeList attrList, UInt32 dataLength, const void inData);
	121	void getContent(SecItemClass itemClass, SecKeychainAttributeList attrList, UInt32 length, void *outData);
	122	static void freeContent(SecKeychainAttributeList attrList, void data);
	123	static void freeAttributesAndData(SecKeychainAttributeList attrList, void data);
	124
	125	void getAttributesAndData(SecKeychainAttributeInfo info, SecItemClass itemClass,
	126	SecKeychainAttributeList *attrList, UInt32 length, void **outData);
	127	void modifyAttributesAndData(const SecKeychainAttributeList attrList, UInt32 dataLength, const void inData);
	128
	129	void setAttribute(SecKeychainAttribute& attr);
	130	void setAttribute(const CssmDbAttributeInfo &info, const CssmPolyData &data);
	131	void setData(UInt32 length,const void *data);
	132	void setAccess(Access *newAccess);
	133	void copyRecordIdentifier(CSSM_DATA &data);
	134	SSGroup group();
	135
	136	void getContent(DbAttributes dbAttributes, CssmDataContainer itemData);
	137	void getLocalContent(SecKeychainAttributeList attributeList, UInt32 outLength, void **outData);
	138
	139	bool useSecureStorage(const CssmClient::Db &db);
	140	virtual void willRead();
	141
	142	// create a persistent reference to this item
427c49bc A	143	void copyPersistentReference(CFDataRef &outDataRef, bool isSecIdentityRef=false);
427c49bc A	144	static Item makeFromPersistentReference(const CFDataRef persistentRef, bool *isIdentityRef=NULL);
b1ab9ed8 A	145
	146	// for keychain syncing
	147	void doNotEncrypt () {mDoNotEncrypt = true;}
	148
	149	// for posting events on this item
	150	void postItemEvent (SecKeychainEvent theEvent);
	151
	152	// Only call these functions while holding globals().apiLock.
	153	bool inCache() const throw() { return mInCache; }
	154	void inCache(bool inCache) throw() { mInCache = inCache; }
	155
	156	/* For binding to extended attributes. */
	157	virtual const CssmData &itemID();
427c49bc A	158
	159	/* Overrides for SecCFObject methods */
	160	bool equal(SecCFObject &other);
	161	virtual CFHashCode hash();
b1ab9ed8	162
427c49bc A	163	bool mayDelete();
427c49bc A	164
b1ab9ed8 A	165	protected:
b1ab9ed8 A	166	// new item members
427c49bc A	167	RefPointer<CssmDataContainer> mData;
427c49bc A	168	auto_ptr<CssmClient::DbAttributes> mDbAttributes;
b1ab9ed8 A	169	SecPointer<Access> mAccess;
	170
	171	// db item members
427c49bc	172	CssmClient::DbUniqueRecord mUniqueId;
b1ab9ed8	173	Keychain mKeychain;
427c49bc A	174	PrimaryKey mPrimaryKey;
	175
	176	// non-NULL only for secd items (managed by secd, not securityd)
	177	CFDataRef secd_PersistentRef;
	178
b1ab9ed8 A	179	private:
	180	// keychain syncing flags
	181	bool mDoNotEncrypt;
	182
	183	// mInCache is protected by globals().apiLock
	184	// True iff we are in the cache of items in mKeychain
	185	bool mInCache;
	186
	187	protected:
	188	Mutex mMutex;
	189	};
	190
	191
	192	class Item : public SecPointer<ItemImpl>
	193	{
	194	public:
	195	Item();
	196	Item(ItemImpl *impl);
	197	Item(SecItemClass itemClass, OSType itemCreator, UInt32 length, const void* data, bool inhibitCheck);
	198	Item(SecItemClass itemClass, SecKeychainAttributeList attrList, UInt32 length, const void data);
	199	Item(const Keychain &keychain, const PrimaryKey &primaryKey, const CssmClient::DbUniqueRecord &uniqueId);
	200	Item(const Keychain &keychain, const PrimaryKey &primaryKey);
	201	Item(ItemImpl &item);
	202	};
	203
427c49bc	204
b1ab9ed8 A	205	CFIndex GetItemRetainCount(Item& item);
	206
	207	} // end namespace KeychainCore
	208
	209	} // end namespace Security
	210
427c49bc A	211
427c49bc A	212
b1ab9ed8	213	#endif // !_SECURITY_ITEM_H_