Security/libsecurity_codesigning/lib/Code.h

   1 /*
   2  * Copyright (c) 2006,2011,2014 Apple Inc. All Rights Reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. Please obtain a copy of the License at
  10  * http://www.opensource.apple.com/apsl/ and read it before using this
  11  * file.
  12  *
  13  * The Original Code and all software distributed under the License are
  14  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  15  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  16  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  17  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  18  * Please see the License for the specific language governing rights and
  19  * limitations under the License.
  20  *
  21  * @APPLE_LICENSE_HEADER_END@
  22  */
  23
  24 //
  25 // Code - SecCode API objects
  26 //
  27 #ifndef _H_CODE
  28 #define _H_CODE
  29
  30 #include "cs.h"
  31 #include "Requirements.h"
  32 #include <security_utilities/utilities.h>
  33
  34 namespace Security {
  35 namespace CodeSigning {
  36
  37
  38 class SecStaticCode;
  39
  40
  41 //
  42 // A SecCode object represents running code in the system. It must be subclassed
  43 // to implement a particular notion of code.
  44 //
  45 class SecCode : public SecCFObject {
  46         NOCOPY(SecCode)
  47         friend class KernelCode;        // overrides identify() to set mStaticCode/mCDHash
  48 public:
  49         SECCFFUNCTIONS(SecCode, SecCodeRef, errSecCSInvalidObjectRef, gCFObjects().Code)
  50
  51         SecCode(SecCode *host);
  52     virtual ~SecCode() throw();
  53
  54     bool equal(SecCFObject &other);
  55     CFHashCode hash();
  56
  57         SecCode *host() const;
  58         bool isRoot() const { return host() == NULL; }
  59         SecStaticCode *staticCode();    // cached. Result lives as long as this SecCode
  60         CFDataRef cdHash();
  61
  62         SecCodeStatus status();                         // dynamic status
  63         void status(SecCodeStatusOperation operation, CFDictionaryRef arguments);
  64
  65         // primary virtual drivers. Caller owns the result
  66         virtual void identify();
  67         virtual SecCode *locateGuest(CFDictionaryRef attributes);
  68         virtual SecStaticCode *identifyGuest(SecCode *guest, CFDataRef *cdhash);
  69
  70         void checkValidity(SecCSFlags flags);
  71         virtual SecCodeStatus getGuestStatus(SecCode *guest);
  72         virtual void changeGuestStatus(SecCode *guest, SecCodeStatusOperation operation, CFDictionaryRef arguments);
  73
  74 public:
  75         // perform "autolocation" (root-based heuristic). Caller owns the result
  76         static SecCode *autoLocateGuest(CFDictionaryRef attributes, SecCSFlags flags);
  77
  78 private:
  79         SecPointer<SecCode> mHost;
  80         bool mIdentified;                                                       // called identify(), mStaticCode & mCDHash are valid
  81         SecPointer<SecStaticCode> mStaticCode;          // (static) code origin
  82         CFRef<CFDataRef> mCDHash;                                       // (dynamic) CodeDirectory hash as per host
  83 };
  84
  85
  86 } // end namespace CodeSigning
  87 } // end namespace Security
  88
  89 #endif // !_H_CODE