OSX/libsecurity_codesigning/lib/csprocess.h

   1 /*
   2  * Copyright (c) 2006,2011,2013-2014 Apple Inc. All Rights Reserved.
   3  *
   4  * @APPLE_LICENSE_HEADER_START@
   5  *
   6  * This file contains Original Code and/or Modifications of Original Code
   7  * as defined in and that are subject to the Apple Public Source License
   8  * Version 2.0 (the 'License'). You may not use this file except in
   9  * compliance with the License. Please obtain a copy of the License at
  10  * http://www.opensource.apple.com/apsl/ and read it before using this
  11  * file.
  12  *
  13  * The Original Code and all software distributed under the License are
  14  * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  15  * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  16  * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  17  * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  18  * Please see the License for the specific language governing rights and
  19  * limitations under the License.
  20  *
  21  * @APPLE_LICENSE_HEADER_END@
  22  */
  23
  24 //
  25 // csprocess - UNIX process implementation of the Code Signing Host Interface
  26 //
  27 #ifndef _H_CSPROCESS
  28 #define _H_CSPROCESS
  29
  30 #include "csgeneric.h"
  31 #include "StaticCode.h"
  32 #include "PidDiskRep.h"
  33 #include <security_utilities/utilities.h>
  34
  35 namespace Security {
  36 namespace CodeSigning {
  37
  38
  39 //
  40 // A SecCode that represents a running UNIX process.
  41 // Processes are identified by pid.
  42 //
  43 // ProcessCode inherits GenericCode's access to the cshosting Mach protocol to
  44 // deal with guests.
  45 //
  46 class ProcessCode : public GenericCode {
  47 public:
  48         ProcessCode(pid_t pid, const audit_token_t* token, PidDiskRep *pidDiskRep = NULL);
  49         ~ProcessCode() throw () { delete mAudit; }
  50
  51         pid_t pid() const { return mPid; }
  52         const audit_token_t* audit() const { return mAudit; }
  53
  54         PidDiskRep *pidBased() const { return mPidBased; }
  55
  56         int csops(unsigned int ops, void *addr, size_t size);
  57
  58         mach_port_t getHostingPort();
  59
  60 private:
  61         pid_t mPid;
  62         audit_token_t* mAudit;
  63         RefPointer<PidDiskRep> mPidBased;
  64 };
  65
  66
  67 //
  68 // We don't need a GenericCode variant of ProcessCode
  69 //
  70 typedef SecStaticCode ProcessStaticCode;
  71
  72 class ProcessDynamicCode : public SecStaticCode {
  73 public:
  74         ProcessDynamicCode(ProcessCode *diskRep);
  75
  76         CFDataRef component(CodeDirectory::SpecialSlot slot, OSStatus fail = errSecCSSignatureFailed);
  77
  78         CFDictionaryRef infoDictionary();
  79
  80         void validateComponent(CodeDirectory::SpecialSlot slot, OSStatus fail = errSecCSSignatureFailed);
  81 private:
  82         ProcessCode *mGuest;
  83
  84 };
  85
  86 } // end namespace CodeSigning
  87 } // end namespace Security
  88
  89 #endif // !_H_CSPROCESS