]> git.saurik.com Git - apple/security.git/blame - OSX/libsecurityd/lib/ssblob.cpp
projects / apple / security.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Security-57337.60.2.tar.gz
[apple/security.git] / OSX / libsecurityd / lib / ssblob.cpp
CommitLineData
b1ab9ed8 1/*
d8f41ccd 2 * Copyright (c) 2000-2004,2006,2011,2014 Apple Inc. All Rights Reserved.
b1ab9ed8
A		 3 *
4 * @APPLE_LICENSE_HEADER_START@
5 *
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
11 * file.
12 *
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
20 *
21 * @APPLE_LICENSE_HEADER_END@
22 */
23
24
25//
26// ssclient - SecurityServer client interface library
27//
28#include "ssblob.h"
29
30
31namespace Security {
32namespace SecurityServer {
33
e3d460c9
A		 34uint32 CommonBlob::getCurrentVersion() {
35 uint32 ret = version_MacOS_10_0;
36 // If the integrity protections are turned on, use version_partition.
37 // else, use version_MacOS_10_0.
38 CFTypeRef integrity = (CFNumberRef)CFPreferencesCopyValue(CFSTR("KeychainIntegrity"), CFSTR("com.apple.security"), kCFPreferencesAnyUser, kCFPreferencesCurrentHost);
39 if (integrity && CFGetTypeID(integrity) == CFBooleanGetTypeID()) {
40 bool integrityProtections = CFBooleanGetValue((CFBooleanRef)integrity);
41
42 if(integrityProtections) {
43 secdebugfunc("integrity", "creating a partition keychain; global is on");
44 ret = version_partition;
45 } else {
46 secdebugfunc("integrity", "creating a old-style keychain; global is off");
47 ret = version_MacOS_10_0;
48 }
49 CFRelease(integrity);
50 }
51
52 return ret;
53}
54
55
56void CommonBlob::initialize()
57{
58 magic = magicNumber;
59
60 this->blobVersion = getCurrentVersion();
61}
b1ab9ed8
A		 62
63//
64// Initialize the blob header for a given version
65//
66void CommonBlob::initialize(uint32 version)
67{
68 magic = magicNumber;
e3d460c9
A		 69
70 secdebugfunc("integrity", "creating a partition keychain with version %d", version);
b1ab9ed8
A		 71 this->blobVersion = version;
72}
73
74
75//
76// Verify the blob header for basic sane-ness.
77//
78bool CommonBlob::isValid() const
79{
80 return magic == magicNumber;
81}
82
83void CommonBlob::validate(CSSM_RETURN failureCode) const
84{
85 if (!isValid())
86 CssmError::throwMe(failureCode);
87}
88
89/*
90 * This string is placed in KeyBlob.blobSignature to indicate a cleartext
91 * public key.
92 */
93static const char clearPubKeySig[] = "Cleartext public key";
94
95bool KeyBlob::isClearText()
96{
97 return (memcmp(blobSignature, clearPubKeySig,
98 sizeof(blobSignature)) == 0);
99}
100
101void KeyBlob::setClearTextSignature()
102{
103 memmove(blobSignature, clearPubKeySig, sizeof(blobSignature));
104}
105
106
107
108} // end namespace SecurityServer
109
110} // end namespace Security
mirror of Security