2 * Copyright (c) 2007-2017 Apple Inc. All Rights Reserved.
4 * @APPLE_LICENSE_HEADER_START@
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
21 * @APPLE_LICENSE_HEADER_END@
26 #undef SECUREOBJECTSYNC
27 #undef SHAREDWEBCREDENTIALS
30 #include <os/transaction_private.h>
31 #include <os/variant_private.h>
33 #include "keychain/SecureObjectSync/SOSPeerInfoDER.h"
34 #include <Security/SecureObjectSync/SOSCloudCircle.h>
35 #include <Security/SecureObjectSync/SOSCloudCircleInternal.h>
36 #include "keychain/SecureObjectSync/SOSInternal.h"
37 #include "keychain/SecureObjectSync/SOSPeerInfoCollections.h"
38 #include "keychain/SecureObjectSync/SOSControlServer.h"
39 #include <Security/SecBase.h>
40 #include <Security/SecBasePriv.h>
41 #include <Security/SecCertificatePriv.h>
42 #include <Security/SecEntitlements.h>
43 #include <Security/SecInternal.h>
44 #include <Security/SecItem.h>
45 #include <Security/SecItemPriv.h>
46 #include <Security/SecPolicy.h>
47 #include <Security/SecPolicyInternal.h>
48 #include <Security/SecTask.h>
49 #include <Security/SecTrustInternal.h>
50 #include <Security/SecuritydXPC.h>
51 #include "trust/trustd/OTATrustUtilities.h"
52 #include "keychain/securityd/SOSCloudCircleServer.h"
53 #include "keychain/securityd/SecItemBackupServer.h"
54 #include "keychain/securityd/SecItemServer.h"
55 #include "keychain/securityd/SecLogSettingsServer.h"
56 #include "keychain/securityd/SecOTRRemote.h"
57 #include "trust/trustd/SecTrustServer.h"
58 #include "trust/trustd/SecTrustStoreServer.h"
59 #include "keychain/securityd/iCloudTrace.h"
60 #include "keychain/securityd/spi.h"
61 #include <utilities/SecCFError.h>
62 #include <utilities/SecCFWrappers.h>
63 #include <utilities/SecDb.h>
64 #include <utilities/SecIOFormat.h>
65 #include <utilities/SecXPCError.h>
66 #include <utilities/debugging.h>
67 #include <utilities/SecInternalReleasePriv.h>
68 #include <utilities/der_plist_internal.h>
69 #include <utilities/der_plist.h>
70 #include "trust/trustd/personalization.h"
71 #include "trust/trustd/SecPinningDb.h"
72 #include "keychain/securityd/SFKeychainControlManager.h"
74 #include <keychain/ckks/CKKS.h>
75 #include <keychain/ckks/CKKSControlServer.h>
76 #include "keychain/ot/OctagonControlServer.h"
78 #include "keychain/securityd/SFKeychainServer.h"
80 #include "keychain/securityd/PolicyReporter.h"
83 #include <AssertMacros.h>
84 #include <CoreFoundation/CFXPCBridge.h>
85 #include <CoreFoundation/CoreFoundation.h>
86 // <rdar://problem/22425706> 13B104+Roots:Device never moved past spinner after using approval to ENABLE icdp
89 #include <Security/SecTaskPriv.h>
90 #include <login/SessionAgentStatusCom.h>
93 #include <bsm/libbsm.h>
94 #include <ipc/securityd_client.h>
95 #include <libkern/OSAtomic.h>
96 #include <mach/mach.h>
97 #include <mach/message.h>
100 #include <sys/queue.h>
101 #include <sys/sysctl.h>
103 #include <xpc/private.h>
106 #include <ipc/server_security_helpers.h>
107 #include <ipc/server_entitlement_helpers.h>
109 #include "keychain/ot/OT.h"
110 #include "keychain/escrowrequest/EscrowRequestXPCServer.h"
111 #include "keychain/escrowrequest/EscrowRequestServerHelpers.h"
125 _xpc_dictionary_copy_CFString(xpc_object_t xdict
, const char *key
)
127 CFStringRef result
= NULL
;
128 const char *str
= xpc_dictionary_get_string(xdict
, key
);
130 result
= CFStringCreateWithCString(kCFAllocatorDefault
, str
, kCFStringEncodingUTF8
);
137 _xpc_dictionary_copy_CFDataNoCopy(xpc_object_t xdict
, const char *key
)
139 CFDataRef result
= NULL
;
141 const void *ptr
= xpc_dictionary_get_data(xdict
, key
, &len
);
143 result
= CFDataCreateWithBytesNoCopy(kCFAllocatorDefault
, ptr
, len
, kCFAllocatorNull
);
148 static void with_label_and_password(xpc_object_t message
, void (^action
)(CFStringRef label
, CFDataRef password
)) {
149 CFStringRef user_label
= _xpc_dictionary_copy_CFString(message
, kSecXPCKeyUserLabel
);
150 CFDataRef user_password
= _xpc_dictionary_copy_CFDataNoCopy(message
, kSecXPCKeyUserPassword
);
152 if (user_label
!= NULL
&& user_password
!= NULL
) {
153 action(user_label
, user_password
);
156 CFReleaseNull(user_label
);
157 CFReleaseNull(user_password
);
160 static void with_label_and_password_and_dsid(xpc_object_t message
, void (^action
)(CFStringRef label
, CFDataRef password
, CFStringRef dsid
)) {
161 CFStringRef user_label
= _xpc_dictionary_copy_CFString(message
, kSecXPCKeyUserLabel
);
162 CFDataRef user_password
= _xpc_dictionary_copy_CFDataNoCopy(message
, kSecXPCKeyUserPassword
);
163 CFStringRef dsid
= _xpc_dictionary_copy_CFString(message
, kSecXPCKeyDSID
);
165 /* dsid is optional */
166 if (user_label
!= NULL
&& user_password
!= NULL
) {
167 action(user_label
, user_password
, dsid
);
170 CFReleaseNull(user_label
);
171 CFReleaseNull(user_password
);
175 static void with_view_and_action(xpc_object_t message
, void (^action
)(CFStringRef view_name
, uint64_t view_action_code
)) {
176 CFStringRef view
= _xpc_dictionary_copy_CFString(message
, kSecXPCKeyViewName
);
177 const int64_t number
= xpc_dictionary_get_int64(message
, kSecXPCKeyViewActionCode
);
180 action(view
, number
);
186 static CFArrayRef
SecXPCDictionaryCopyPeerInfoArray(xpc_object_t dictionary
, const char *key
, CFErrorRef
*error
) {
187 return CreateArrayOfPeerInfoWithXPCObject(xpc_dictionary_get_value(dictionary
, key
), error
);
190 static CFDataRef
SecXPCDictionaryCopyCFDataRef(xpc_object_t message
, const char *key
, CFErrorRef
*error
) {
191 CFDataRef retval
= NULL
;
192 const uint8_t *bytes
= NULL
;
195 bytes
= xpc_dictionary_get_data(message
, key
, &len
);
196 require_action_quiet(bytes
, errOut
, SOSCreateError(kSOSErrorBadKey
, CFSTR("missing CFDataRef info"), NULL
, error
));
197 retval
= CFDataCreate(NULL
, bytes
, len
);
198 require_action_quiet(retval
, errOut
, SOSCreateError(kSOSErrorBadKey
, CFSTR("could not allocate CFDataRef info"), NULL
, error
));
203 static CFSetRef
CreateCFSetRefFromXPCObject(xpc_object_t xpcSetDER
, CFErrorRef
* error
) {
204 CFSetRef retval
= NULL
;
205 require_action_quiet(xpcSetDER
, errOut
, SecCFCreateErrorWithFormat(kSecXPCErrorUnexpectedNull
, sSecXPCErrorDomain
, NULL
, error
, NULL
, CFSTR("Unexpected Null Set to decode")));
207 require_action_quiet(xpc_get_type(xpcSetDER
) == XPC_TYPE_DATA
, errOut
, SecCFCreateErrorWithFormat(kSecXPCErrorUnexpectedType
, sSecXPCErrorDomain
, NULL
, error
, NULL
, CFSTR("xpcSetDER not data, got %@"), xpcSetDER
));
209 const uint8_t* der
= xpc_data_get_bytes_ptr(xpcSetDER
);
210 const uint8_t* der_end
= der
+ xpc_data_get_length(xpcSetDER
);
211 der
= der_decode_set(kCFAllocatorDefault
, kCFPropertyListMutableContainersAndLeaves
, &retval
, error
, der
, der_end
);
212 if (der
!= der_end
) {
213 SecError(errSecDecode
, error
, CFSTR("trailing garbage at end of SecAccessControl data"));
218 CFReleaseNull(retval
);
222 static SOSPeerInfoRef
SecXPCDictionaryCopyPeerInfo(xpc_object_t message
, const char *key
, CFErrorRef
*error
) {
224 const uint8_t *der
= xpc_dictionary_get_data(message
, key
, &length
);
226 return SecRequirementError(der
!= NULL
, error
, CFSTR("No data for key %s"), key
) ? SOSPeerInfoCreateFromDER(kCFAllocatorDefault
, error
, &der
, der
+ length
) : NULL
;
229 static CFSetRef
SecXPCSetCreateFromXPCDictionaryElement(xpc_object_t event
, const char *key
) {
230 CFErrorRef error
= NULL
;
231 xpc_object_t object
= xpc_dictionary_get_value(event
, key
);
232 CFSetRef retval
= NULL
;
233 if(object
) retval
= CreateCFSetRefFromXPCObject(object
, &error
);
234 CFReleaseNull(error
);
239 void xpc_dictionary_set_and_consume_CFArray(xpc_object_t xdict
, const char *key
, CF_CONSUMED CFArrayRef cf_array
) {
241 xpc_object_t xpc_array
= _CFXPCCreateXPCObjectFromCFObject(cf_array
);
242 xpc_dictionary_set_value(xdict
, key
, xpc_array
);
243 xpc_release(xpc_array
);
245 CFReleaseNull(cf_array
);
249 bool xpc_dictionary_set_and_consume_PeerInfoArray(xpc_object_t xdict
, const char *key
, CF_CONSUMED CFArrayRef cf_array
, CFErrorRef
*error
) {
252 xpc_object_t xpc_array
= CreateXPCObjectWithArrayOfPeerInfo(cf_array
, error
);
254 xpc_dictionary_set_value(xdict
, key
, xpc_array
);
255 xpc_release(xpc_array
);
260 CFReleaseNull(cf_array
);
264 #endif /* SECUREOBJECTSYNC */
267 SecDataCopyMmapFileDescriptor(int fd
, void **mem
, size_t *size
, CFErrorRef
*error
)
270 if (fstat(fd
, &sb
) < 0) {
274 *size
= (size_t)sb
.st_size
;
275 if ((off_t
)*size
!= sb
.st_size
) {
279 *mem
= mmap(NULL
, *size
, PROT_READ
, MAP_SHARED
, fd
, 0);
280 if (*mem
== MAP_FAILED
) {
284 return CFDataCreateWithBytesNoCopy(NULL
, *mem
, *size
, kCFAllocatorNull
);
288 SecDataWriteFileDescriptor(int fd
, CFDataRef data
)
290 CFIndex count
= CFDataGetLength(data
);
291 const uint8_t *ptr
= CFDataGetBytePtr(data
);
292 bool writeResult
= false;
295 ssize_t ret
= write(fd
, ptr
, count
);
307 // Returns error if entitlement isn't present.
309 EntitlementPresentAndTrue(uint64_t op
, SecTaskRef clientTask
, CFStringRef entitlement
, CFErrorRef
*error
)
311 if (!SecTaskGetBooleanValueForEntitlement(clientTask
, entitlement
)) {
312 SecError(errSecMissingEntitlement
, error
, CFSTR("%@: %@ lacks entitlement %@"), SOSCCGetOperationDescription((enum SecXPCOperation
)op
), clientTask
, entitlement
);
319 EntitlementAbsentOrFalse(uint64_t op
, SecTaskRef clientTask
, CFStringRef entitlement
, CFErrorRef
*error
)
321 if (SecTaskGetBooleanValueForEntitlement(clientTask
, entitlement
)) {
322 SecError(errSecNotAvailable
, error
, CFSTR("%@: %@ has entitlement %@"), SOSCCGetOperationDescription((enum SecXPCOperation
) op
), clientTask
, entitlement
);
328 static void securityd_xpc_dictionary_handler(const xpc_connection_t connection
, xpc_object_t event
) {
329 xpc_type_t type
= xpc_get_type(event
);
330 __block CFErrorRef error
= NULL
;
331 xpc_object_t xpcError
= NULL
;
332 xpc_object_t replyMessage
= NULL
;
333 CFDataRef clientAuditToken
= NULL
;
334 CFArrayRef domains
= NULL
;
335 SecurityClient client
= {
337 .accessGroups
= NULL
,
339 .uid
= xpc_connection_get_euid(connection
),
340 .allowSystemKeychain
= false,
341 .allowSyncBubbleKeychain
= false,
342 .isNetworkExtension
= false,
343 .canAccessNetworkExtensionAccessGroups
= false,
346 secdebug("serverxpc", "entering");
347 if (type
== XPC_TYPE_DICTIONARY
) {
348 // TODO: Find out what we're dispatching.
349 replyMessage
= xpc_dictionary_create_reply(event
);
351 uint64_t operation
= xpc_dictionary_get_uint64(event
, kSecXPCKeyOperation
);
353 audit_token_t auditToken
= {};
354 xpc_connection_get_audit_token(connection
, &auditToken
);
355 clientAuditToken
= CFDataCreate(kCFAllocatorDefault
, (const UInt8
*)&auditToken
, sizeof(auditToken
));
357 if (!fill_security_client(&client
, xpc_connection_get_euid(connection
), auditToken
)) {
358 CFReleaseNull(clientAuditToken
);
359 xpc_connection_send_message(connection
, replyMessage
);
360 xpc_release(replyMessage
);
365 if (operation
== sec_add_shared_web_credential_id
|| operation
== sec_copy_shared_web_credential_id
) {
366 domains
= SecTaskCopySharedWebCredentialDomains(client
.task
);
369 secinfo("serverxpc", "XPC [%@] operation: %@ (%" PRIu64
")", client
.task
, SOSCCGetOperationDescription((enum SecXPCOperation
)operation
), operation
);
373 case sec_item_add_id
:
375 if (EntitlementAbsentOrFalse(sec_item_add_id
, client
.task
, kSecEntitlementKeychainDeny
, &error
)) {
376 CFDictionaryRef query
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
378 // Check for any entitlement-required attributes
379 bool entitlementsCorrect
= true;
380 if(CFDictionaryGetValue(query
, kSecAttrDeriveSyncIDFromItemAttributes
) ||
381 CFDictionaryGetValue(query
, kSecAttrPCSPlaintextServiceIdentifier
) ||
382 CFDictionaryGetValue(query
, kSecAttrPCSPlaintextPublicKey
) ||
383 CFDictionaryGetValue(query
, kSecAttrPCSPlaintextPublicIdentity
)) {
384 entitlementsCorrect
= EntitlementPresentAndTrue(sec_item_add_id
, client
.task
, kSecEntitlementPrivateCKKSPlaintextFields
, &error
);
386 if (entitlementsCorrect
&& CFDictionaryGetValue(query
, kSecAttrSysBound
)) {
387 entitlementsCorrect
= EntitlementPresentAndTrue(sec_item_add_id
, client
.task
, kSecEntitlementPrivateSysBound
, &error
);
390 CFTypeRef result
= NULL
;
391 if(entitlementsCorrect
) {
392 if (_SecItemAdd(query
, &client
, &result
, &error
) && result
) {
393 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, result
, &error
);
394 CFReleaseNull(result
);
397 CFReleaseNull(query
);
402 case sec_item_copy_matching_id
:
404 if (EntitlementAbsentOrFalse(sec_item_add_id
, client
.task
, kSecEntitlementKeychainDeny
, &error
)) {
405 CFDictionaryRef query
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
407 CFTypeRef result
= NULL
;
408 if (_SecItemCopyMatching(query
, &client
, &result
, &error
) && result
) {
409 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, result
, &error
);
410 CFReleaseNull(result
);
412 CFReleaseNull(query
);
417 case sec_item_update_id
:
419 if (EntitlementAbsentOrFalse(sec_item_update_id
, client
.task
, kSecEntitlementKeychainDeny
, &error
)) {
420 CFDictionaryRef query
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
422 CFDictionaryRef attributesToUpdate
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyAttributesToUpdate
, &error
);
423 if (attributesToUpdate
) {
424 // Check for any entitlement-required attributes
425 bool entitlementsCorrect
= true;
426 if(CFDictionaryGetValue(query
, kSecAttrDeriveSyncIDFromItemAttributes
) ||
427 CFDictionaryGetValue(attributesToUpdate
, kSecAttrPCSPlaintextServiceIdentifier
) ||
428 CFDictionaryGetValue(attributesToUpdate
, kSecAttrPCSPlaintextPublicKey
) ||
429 CFDictionaryGetValue(attributesToUpdate
, kSecAttrPCSPlaintextPublicIdentity
)) {
430 entitlementsCorrect
= EntitlementPresentAndTrue(sec_item_update_id
, client
.task
, kSecEntitlementPrivateCKKSPlaintextFields
, &error
);
432 if (entitlementsCorrect
&& CFDictionaryGetValue(query
, kSecAttrSysBound
)) {
433 entitlementsCorrect
= EntitlementPresentAndTrue(sec_item_update_id
, client
.task
, kSecEntitlementPrivateSysBound
, &error
);
436 if(entitlementsCorrect
) {
437 bool result
= _SecItemUpdate(query
, attributesToUpdate
, &client
, &error
);
438 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
440 CFReleaseNull(attributesToUpdate
);
442 CFReleaseNull(query
);
447 case sec_item_delete_id
:
449 if (EntitlementAbsentOrFalse(sec_item_add_id
, client
.task
, kSecEntitlementKeychainDeny
, &error
)) {
450 CFDictionaryRef query
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
452 bool result
= _SecItemDelete(query
, &client
, &error
);
453 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
454 CFReleaseNull(query
);
459 case sec_item_update_token_items_id
:
461 if (EntitlementAbsentOrFalse(sec_item_add_id
, client
.task
, kSecEntitlementKeychainDeny
, &error
)) {
462 CFStringRef tokenID
= SecXPCDictionaryCopyString(event
, kSecXPCKeyString
, &error
);
463 CFArrayRef attributes
= SecXPCDictionaryCopyArray(event
, kSecXPCKeyQuery
, &error
);
465 bool result
= _SecItemUpdateTokenItems(tokenID
, attributes
, &client
, &error
);
466 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
468 CFReleaseNull(tokenID
);
469 CFReleaseNull(attributes
);
473 case sec_delete_all_id
:
477 /* buddy is temporary allowed to do this */
478 CFStringRef applicationIdentifier
= SecTaskCopyApplicationIdentifier(client
.task
);
479 bool isBuddy
= applicationIdentifier
&&
480 CFEqual(applicationIdentifier
, CFSTR("com.apple.purplebuddy"));
481 CFReleaseNull(applicationIdentifier
);
483 if (isBuddy
|| EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateDeleteAll
, &error
))
485 retval
= _SecItemDeleteAll(&error
);
488 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, retval
);
491 case sec_keychain_backup_id
:
493 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
494 CFDataRef keybag
= NULL
, passcode
= NULL
;
495 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeyKeybag
, &keybag
, &error
)) {
496 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeyUserPassword
, &passcode
, &error
)) {
497 bool emcs
= SecXPCDictionaryGetBool(event
, kSecXPCKeyEMCSBackup
, NULL
);
498 CFDataRef backup
= _SecServerKeychainCreateBackup(&client
, keybag
, passcode
, emcs
, &error
);
500 int fd
= SecXPCDictionaryDupFileDescriptor(event
, kSecXPCKeyFileDescriptor
, NULL
);
502 SecXPCDictionarySetData(replyMessage
, kSecXPCKeyResult
, backup
, &error
);
504 bool writeResult
= SecDataWriteFileDescriptor(fd
, backup
);
508 SecError(errSecIO
, &error
, CFSTR("Failed to write backup file: %d"), errno
);
509 SecXPCDictionarySetBool(replyMessage
, kSecXPCKeyResult
, writeResult
, NULL
);
513 CFReleaseSafe(passcode
);
515 CFReleaseSafe(keybag
);
520 case sec_keychain_restore_id
:
522 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
523 CFDataRef backup
= NULL
;
527 int fd
= SecXPCDictionaryDupFileDescriptor(event
, kSecXPCKeyFileDescriptor
, NULL
);
529 backup
= SecDataCopyMmapFileDescriptor(fd
, &mem
, &size
, &error
);
531 backup
= SecXPCDictionaryCopyData(event
, kSecXPCKeyBackup
, &error
);
534 CFDataRef keybag
= SecXPCDictionaryCopyData(event
, kSecXPCKeyKeybag
, &error
);
536 CFDataRef passcode
= NULL
;
537 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeyUserPassword
, &passcode
, &error
)) {
538 bool result
= _SecServerKeychainRestore(backup
, &client
, keybag
, passcode
, &error
);
539 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
540 CFReleaseSafe(passcode
);
543 CFReleaseNull(keybag
);
545 CFReleaseNull(backup
);
554 case sec_keychain_backup_keybag_uuid_id
:
556 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
557 CFDataRef backup
= NULL
;
558 CFStringRef uuid
= NULL
;
562 int fd
= SecXPCDictionaryDupFileDescriptor(event
, kSecXPCKeyFileDescriptor
, NULL
);
564 backup
= SecDataCopyMmapFileDescriptor(fd
, &mem
, &size
, &error
);
566 uuid
= _SecServerBackupCopyUUID(backup
, &error
);
569 SecXPCDictionarySetString(replyMessage
, kSecXPCKeyResult
, uuid
, &error
);
571 CFReleaseNull(backup
);
582 case sec_keychain_sync_update_message_id
:
584 CFDictionaryRef updates
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
586 CFArrayRef result
= _SecServerKeychainSyncUpdateMessage(updates
, &error
);
587 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, result
, &error
);
588 CFReleaseNull(result
);
590 CFReleaseNull(updates
);
593 case sec_keychain_backup_syncable_id
:
595 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
596 CFDictionaryRef oldbackup
= NULL
;
597 if (SecXPCDictionaryCopyDictionaryOptional(event
, kSecXPCKeyBackup
, &oldbackup
, &error
)) {
598 CFDataRef keybag
= SecXPCDictionaryCopyData(event
, kSecXPCKeyKeybag
, &error
);
600 CFDataRef passcode
= NULL
;
601 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeyUserPassword
, &passcode
, &error
)) {
602 CFDictionaryRef newbackup
= _SecServerBackupSyncable(oldbackup
, keybag
, passcode
, &error
);
604 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, newbackup
, &error
);
605 CFRelease(newbackup
);
607 CFReleaseSafe(passcode
);
609 CFReleaseNull(keybag
);
611 CFReleaseSafe(oldbackup
);
616 case sec_keychain_restore_syncable_id
:
618 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
619 CFDictionaryRef backup
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyBackup
, &error
);
621 CFDataRef keybag
= SecXPCDictionaryCopyData(event
, kSecXPCKeyKeybag
, &error
);
623 CFDataRef passcode
= NULL
;
624 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeyUserPassword
, &passcode
, &error
)) {
625 bool result
= _SecServerRestoreSyncable(backup
, keybag
, passcode
, &error
);
626 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
627 CFReleaseSafe(passcode
);
629 CFReleaseNull(keybag
);
631 CFReleaseNull(backup
);
636 case sec_item_backup_copy_names_id
:
638 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
639 CFArrayRef names
= SecServerItemBackupCopyNames(&error
);
640 SecXPCDictionarySetPListOptional(replyMessage
, kSecXPCKeyResult
, names
, &error
);
641 CFReleaseSafe(names
);
645 case sec_item_backup_handoff_fd_id
:
647 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
648 CFStringRef backupName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyBackup
, &error
);
651 fd
= SecServerItemBackupHandoffFD(backupName
, &error
);
652 CFRelease(backupName
);
654 SecXPCDictionarySetFileDescriptor(replyMessage
, kSecXPCKeyResult
, fd
, &error
);
660 case sec_item_backup_set_confirmed_manifest_id
:
662 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
663 CFDataRef keybagDigest
= NULL
;
664 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeyKeybag
, &keybagDigest
, &error
)) {
665 CFDataRef manifest
= NULL
;
666 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCData
, &manifest
, &error
)) {
667 CFStringRef backupName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyBackup
, &error
);
669 bool result
= SecServerItemBackupSetConfirmedManifest(backupName
, keybagDigest
, manifest
, &error
);
670 CFRelease(backupName
);
671 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
673 CFReleaseSafe(manifest
);
676 CFReleaseNull(keybagDigest
);
680 case sec_item_backup_restore_id
:
682 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
684 CFStringRef backupName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyBackup
, &error
);
686 CFStringRef peerID
= NULL
;
687 if (SecXPCDictionaryCopyStringOptional(event
, kSecXPCKeyDigest
, &peerID
, &error
)) {
688 CFDataRef keybag
= SecXPCDictionaryCopyData(event
, kSecXPCKeyKeybag
, &error
);
690 CFDataRef secret
= SecXPCDictionaryCopyData(event
, kSecXPCKeyUserPassword
, &error
);
692 CFDataRef backup
= SecXPCDictionaryCopyData(event
, kSecXPCData
, &error
);
694 result
= SecServerItemBackupRestore(backupName
, peerID
, keybag
, secret
, backup
, &error
);
701 CFReleaseSafe(peerID
);
703 CFRelease(backupName
);
705 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
709 case sec_add_shared_web_credential_id
:
711 #if SHAREDWEBCREDENTIALS
712 CFDictionaryRef query
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
714 CFTypeRef result
= NULL
;
716 CFStringRef appID
= (client
.task
) ? SecTaskCopyApplicationIdentifier(client
.task
) : NULL
;
717 if (_SecAddSharedWebCredential(query
, &client
, &auditToken
, appID
, domains
, &result
, &error
) && result
) {
718 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, result
, &error
);
719 CFReleaseNull(result
);
721 CFReleaseSafe(appID
);
722 CFReleaseNull(query
);
725 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, kCFBooleanFalse
, &error
);
729 case sec_copy_shared_web_credential_id
:
731 #if SHAREDWEBCREDENTIALS
732 CFDictionaryRef query
= SecXPCDictionaryCopyDictionary(event
, kSecXPCKeyQuery
, &error
);
734 CFTypeRef result
= NULL
;
735 CFStringRef appID
= (client
.task
) ? SecTaskCopyApplicationIdentifier(client
.task
) : NULL
;
736 if (_SecCopySharedWebCredential(query
, &client
, &auditToken
, appID
, domains
, &result
, &error
) && result
) {
737 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, result
, &error
);
738 CFReleaseNull(result
);
740 CFReleaseSafe(appID
);
741 CFReleaseNull(query
);
744 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, kCFBooleanFalse
, &error
);
748 case sec_get_log_settings_id
:
750 CFPropertyListRef currentList
= SecCopyLogSettings_Server(&error
);
752 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, currentList
, &error
);
754 CFReleaseSafe(currentList
);
757 case sec_set_xpc_log_settings_id
:
759 CFPropertyListRef newSettings
= SecXPCDictionaryCopyPList(event
, kSecXPCKeyQuery
, &error
);
761 SecSetXPCLogSettings_Server(newSettings
, &error
);
763 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, true);
764 CFReleaseNull(newSettings
);
767 case sec_set_circle_log_settings_id
:
769 CFPropertyListRef newSettings
= SecXPCDictionaryCopyPList(event
, kSecXPCKeyQuery
, &error
);
771 SecSetCircleLogSettings_Server(newSettings
, &error
);
773 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, true);
774 CFReleaseNull(newSettings
);
777 case sec_otr_session_create_remote_id
:
779 CFDataRef publicPeerId
= NULL
;
780 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCPublicPeerId
, &publicPeerId
, &error
)) {
781 CFDataRef otrSession
= _SecOTRSessionCreateRemote(publicPeerId
, &error
);
783 SecXPCDictionarySetData(replyMessage
, kSecXPCKeyResult
, otrSession
, &error
);
784 CFReleaseNull(otrSession
);
786 CFReleaseSafe(publicPeerId
);
790 case sec_otr_session_process_packet_remote_id
:
792 CFDataRef sessionData
= NULL
, inputPacket
= NULL
, outputSessionData
= NULL
, outputPacket
= NULL
;
793 bool readyForMessages
= false;
794 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCOTRSession
, &sessionData
, &error
)) {
795 if (SecXPCDictionaryCopyDataOptional(event
, kSecXPCData
, &inputPacket
, &error
)) {
796 bool result
= _SecOTRSessionProcessPacketRemote(sessionData
, inputPacket
, &outputSessionData
, &outputPacket
, &readyForMessages
, &error
);
798 SecXPCDictionarySetData(replyMessage
, kSecXPCOTRSession
, outputSessionData
, &error
);
799 SecXPCDictionarySetData(replyMessage
, kSecXPCData
, outputPacket
, &error
);
800 xpc_dictionary_set_bool(replyMessage
, kSecXPCOTRReady
, readyForMessages
);
801 CFReleaseNull(outputSessionData
);
802 CFReleaseNull(outputPacket
);
804 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
806 CFReleaseSafe(inputPacket
);
808 CFReleaseSafe(sessionData
);
812 case kSecXPCOpTryUserCredentials
:
813 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
814 with_label_and_password_and_dsid(event
, ^(CFStringRef label
, CFDataRef password
, CFStringRef dsid
) {
815 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
816 SOSCCTryUserCredentials_Server(label
, password
, dsid
, &error
));
820 case kSecXPCOpSetUserCredentials
:
821 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
822 with_label_and_password(event
, ^(CFStringRef label
, CFDataRef password
) {
823 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
824 SOSCCSetUserCredentials_Server(label
, password
, &error
));
828 case kSecXPCOpSetUserCredentialsAndDSID
:
829 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
830 with_label_and_password_and_dsid(event
, ^(CFStringRef label
, CFDataRef password
, CFStringRef dsid
) {
831 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
832 SOSCCSetUserCredentialsAndDSID_Server(label
, password
, dsid
, &error
));
836 case kSecXPCOpSetUserCredentialsAndDSIDWithAnalytics
:
837 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
838 with_label_and_password_and_dsid(event
, ^(CFStringRef label
, CFDataRef password
, CFStringRef dsid
) {
839 CFDataRef parentEvent
= NULL
;
840 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
841 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCSetUserCredentialsAndDSIDWithAnalytics_Server(label
, password
, dsid
, parentEvent
, &error
));
843 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCSetUserCredentialsAndDSID_Server(label
, password
, dsid
, &error
));
845 CFReleaseNull(parentEvent
);
850 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
851 with_view_and_action(event
, ^(CFStringRef view
, uint64_t actionCode
) {
852 xpc_dictionary_set_int64(replyMessage
, kSecXPCKeyResult
,
853 SOSCCView_Server(view
, (SOSViewActionCode
)actionCode
, &error
));
857 case kSecXPCOpViewSet
: // FALLTHROUGH
858 case kSecXPCOpViewSetWithAnalytics
:
859 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
860 CFSetRef enabledViews
= SecXPCSetCreateFromXPCDictionaryElement(event
, kSecXPCKeyEnabledViewsKey
);
861 CFSetRef disabledViews
= SecXPCSetCreateFromXPCDictionaryElement(event
, kSecXPCKeyDisabledViewsKey
);
862 CFDataRef parentEvent
= NULL
;
863 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
)){
864 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCViewSetWithAnalytics_Server(enabledViews
, disabledViews
, parentEvent
));
866 CFReleaseNull(enabledViews
);
867 CFReleaseNull(disabledViews
);
868 CFReleaseNull(parentEvent
);
871 case kSecXPCOpCanAuthenticate
:
872 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
873 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
874 SOSCCCanAuthenticate_Server(&error
));
877 case kSecXPCOpPurgeUserCredentials
:
878 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
879 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
880 SOSCCPurgeUserCredentials_Server(&error
));
883 case kSecXPCOpDeviceInCircle
:
884 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
885 xpc_dictionary_set_int64(replyMessage
, kSecXPCKeyResult
,
886 SOSCCThisDeviceIsInCircle_Server(&error
));
889 case kSecXPCOpRequestToJoin
:
890 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
891 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
892 SOSCCRequestToJoinCircle_Server(&error
));
895 case kSecXPCOpRequestToJoinWithAnalytics
:
896 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
897 CFDataRef parentEvent
= NULL
;
898 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
899 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRequestToJoinCircleWithAnalytics_Server(parentEvent
, &error
));
901 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRequestToJoinCircle_Server(&error
));
903 CFReleaseNull(parentEvent
);
906 case kSecXPCOpAccountHasPublicKey
:
907 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
908 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
909 SOSCCAccountHasPublicKey_Server(&error
));
912 case kSecXPCOpAccountIsNew
:
913 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
914 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
915 SOSCCAccountIsNew_Server(&error
));
918 case kSecXPCOpRequestToJoinAfterRestore
:
919 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
920 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
921 SOSCCRequestToJoinCircleAfterRestore_Server(&error
));
924 case kSecXPCOpRequestToJoinAfterRestoreWithAnalytics
:
925 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
926 CFDataRef parentEvent
= NULL
;
927 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
928 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRequestToJoinCircleAfterRestoreWithAnalytics_Server(parentEvent
, &error
));
930 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRequestToJoinCircleAfterRestore_Server(&error
));
932 CFReleaseNull(parentEvent
);
935 case kSecXPCOpRequestEnsureFreshParameters
:
936 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
937 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
938 SOSCCRequestEnsureFreshParameters_Server(&error
));
941 case kSecXPCOpGetAllTheRings
:
942 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
943 CFStringRef ringDescriptions
= SOSCCGetAllTheRings_Server(&error
);
944 xpc_object_t xpc_dictionary
= _CFXPCCreateXPCObjectFromCFObject(ringDescriptions
);
945 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_dictionary
);
946 xpc_release(xpc_dictionary
);
947 CFReleaseNull(ringDescriptions
);
950 case kSecXPCOpApplyToARing
:
951 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
952 CFStringRef ringName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyString
, &error
);
953 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCApplyToARing_Server(ringName
, &error
));
954 CFReleaseNull(ringName
);
957 case kSecXPCOpWithdrawlFromARing
:
958 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
959 CFStringRef ringName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyString
, &error
);
960 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCWithdrawlFromARing_Server(ringName
, &error
));
961 CFReleaseNull(ringName
);
964 case kSecXPCOpRingStatus
:
965 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
966 CFStringRef ringName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyString
, &error
);
967 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRingStatus_Server(ringName
, &error
));
968 CFReleaseNull(ringName
);
971 case kSecXPCOpEnableRing
:
972 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
973 CFStringRef ringName
= SecXPCDictionaryCopyString(event
, kSecXPCKeyString
, &error
);
974 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCEnableRing_Server(ringName
, &error
));
975 CFReleaseNull(ringName
);
978 case kSecXPCOpRequestDeviceID
:
979 case kSecXPCOpSetDeviceID
:
980 case kSecXPCOpHandleIDSMessage
:
981 case kSecXPCOpSyncWithIDSPeer
:
982 case kSecXPCOpSendIDSMessage
:
983 case kSecXPCOpPingTest
:
984 case kSecXPCOpIDSDeviceID
:
985 case kSecXPCOpSyncWithKVSPeerIDOnly
:{
986 xpc_dictionary_set_int64(replyMessage
, kSecXPCKeyError
, errSecUnimplemented
);
989 case kSecXPCOpAccountSetToNew
:
990 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
991 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCAccountSetToNew_Server(&error
));
994 case kSecXPCOpResetToOffering
:
995 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
996 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
997 SOSCCResetToOffering_Server(&error
));
1000 case kSecXPCOpResetToEmpty
:
1001 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1002 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1003 SOSCCResetToEmpty_Server(&error
));
1006 case kSecXPCOpResetToEmptyWithAnalytics
:
1007 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1008 CFDataRef parentEvent
= NULL
;
1009 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
1010 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCResetToEmptyWithAnalytics_Server(parentEvent
, &error
));
1012 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCResetToEmpty_Server(&error
));
1016 case kSecXPCOpRemoveThisDeviceFromCircle
:
1017 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1018 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1019 SOSCCRemoveThisDeviceFromCircle_Server(&error
));
1022 case kSecXPCOpRemoveThisDeviceFromCircleWithAnalytics
:
1023 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1024 CFDataRef parentEvent
= NULL
;
1025 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
1026 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRemoveThisDeviceFromCircleWithAnalytics_Server(parentEvent
, &error
));
1028 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRemoveThisDeviceFromCircle_Server(&error
));
1030 CFReleaseNull(parentEvent
);
1033 case kSecXPCOpRemovePeersFromCircle
:
1034 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1035 CFArrayRef applicants
= SecXPCDictionaryCopyPeerInfoArray(event
, kSecXPCKeyPeerInfoArray
, &error
);
1036 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1037 SOSCCRemovePeersFromCircle_Server(applicants
, &error
));
1038 CFReleaseNull(applicants
);
1041 case kSecXPCOpRemovePeersFromCircleWithAnalytics
:
1042 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1043 CFArrayRef applicants
= SecXPCDictionaryCopyPeerInfoArray(event
, kSecXPCKeyPeerInfoArray
, &error
);
1044 CFDataRef parentEvent
= NULL
;
1045 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
1046 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRemovePeersFromCircleWithAnalytics_Server(applicants
, parentEvent
, &error
));
1048 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRemovePeersFromCircle_Server(applicants
, &error
));
1050 CFReleaseNull(parentEvent
);
1051 CFReleaseNull(applicants
);
1054 case kSecXPCOpLoggedOutOfAccount
:
1055 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1056 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1057 SOSCCLoggedOutOfAccount_Server(&error
));
1060 case kSecXPCOpBailFromCircle
:
1061 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1062 // 0 is valid; ok for this parameter to be unset or incorrect type. Note: kSecXPCLimitInMinutes is actually seconds, not minutes
1063 uint64_t limit_in_seconds
= xpc_dictionary_get_uint64(event
, kSecXPCLimitInMinutes
);
1064 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1065 SOSCCBailFromCircle_Server(limit_in_seconds
, &error
));
1068 case kSecXPCOpAcceptApplicants
:
1069 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1070 xpc_object_t xapplicants
= xpc_dictionary_get_value(event
, kSecXPCKeyPeerInfoArray
);
1071 // CreateArrayOfPeerInfoWithXPCObject enforces that xapplicants is a non-NULL xpc data object
1072 CFArrayRef applicants
= CreateArrayOfPeerInfoWithXPCObject(xapplicants
, &error
); //(CFArrayRef)(_CFXPCCreateCFObjectFromXPCObject(xapplicants));
1073 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1074 (applicants
&& SOSCCAcceptApplicants_Server(applicants
, &error
)));
1075 CFReleaseSafe(applicants
);
1078 case kSecXPCOpRejectApplicants
:
1079 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1080 xpc_object_t xapplicants
= xpc_dictionary_get_value(event
, kSecXPCKeyPeerInfoArray
);
1081 // CreateArrayOfPeerInfoWithXPCObject enforces that xapplicants is a non-NULL xpc data object
1082 CFArrayRef applicants
= CreateArrayOfPeerInfoWithXPCObject(xapplicants
, &error
); //(CFArrayRef)(_CFXPCCreateCFObjectFromXPCObject(xapplicants));
1083 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1084 (applicants
&& SOSCCRejectApplicants_Server(applicants
, &error
)));
1085 CFReleaseSafe(applicants
);
1088 case kSecXPCOpSetNewPublicBackupKey
:
1090 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
1091 CFDataRef publicBackupKey
= SecXPCDictionaryCopyData(event
, kSecXPCKeyNewPublicBackupKey
, &error
);
1092 if (publicBackupKey
!= NULL
) {
1093 SOSPeerInfoRef peerInfo
= SOSCCSetNewPublicBackupKey_Server(publicBackupKey
, &error
);
1094 CFDataRef peerInfoData
= peerInfo
? SOSPeerInfoCopyEncodedData(peerInfo
, kCFAllocatorDefault
, &error
) : NULL
;
1095 CFReleaseNull(peerInfo
);
1097 xpc_object_t xpc_object
= _CFXPCCreateXPCObjectFromCFObject(peerInfoData
);
1098 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_object
);
1099 xpc_release(xpc_object
);
1101 CFReleaseNull(peerInfoData
);
1102 CFReleaseSafe(publicBackupKey
);
1107 case kSecXPCOpRegisterRecoveryPublicKey
:
1109 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
1110 CFDataRef recovery_key
= SecXPCDictionaryCopyData(event
, kSecXPCKeyRecoveryPublicKey
, &error
);
1111 if (recovery_key
!= NULL
) {
1113 CFDataRef nullData
= CFDataCreate(kCFAllocatorDefault
, &zero
, 1); // token we send if we really wanted to send NULL
1114 if(CFEqual(recovery_key
, nullData
)) {
1115 CFReleaseNull(recovery_key
);
1117 CFReleaseNull(nullData
);
1118 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCRegisterRecoveryPublicKey_Server(recovery_key
, &error
));
1119 CFReleaseNull(recovery_key
);
1124 case kSecXPCOpGetRecoveryPublicKey
:
1126 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
1127 xpc_object_t xpc_recovery_object
= NULL
;
1128 CFDataRef recovery
= SOSCCCopyRecoveryPublicKey(&error
);
1130 xpc_recovery_object
= _CFXPCCreateXPCObjectFromCFObject(recovery
);
1132 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_recovery_object
);
1133 CFReleaseNull(recovery
);
1137 case kSecXPCOpSetBagForAllSlices
:
1139 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementRestoreKeychain
, &error
)) {
1140 CFDataRef backupSlice
= SecXPCDictionaryCopyData(event
, kSecXPCKeyKeybag
, &error
); // NULL checked below
1141 bool includeV0
= xpc_dictionary_get_bool(event
, kSecXPCKeyIncludeV0
); // false is ok, so it's safe for this paramter to be unset or incorrect type
1142 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, backupSlice
&& SOSCCRegisterSingleRecoverySecret_Server(backupSlice
, includeV0
, &error
));
1143 CFReleaseSafe(backupSlice
);
1147 case kSecXPCOpCopyApplicantPeerInfo
:
1148 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1149 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1150 SOSCCCopyApplicantPeerInfo_Server(&error
),
1154 case kSecXPCOpCopyValidPeerPeerInfo
:
1155 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1156 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1157 SOSCCCopyValidPeerPeerInfo_Server(&error
),
1161 case kSecXPCOpValidateUserPublic
:
1162 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1163 bool trusted
= SOSCCValidateUserPublic_Server(&error
);
1164 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, trusted
);
1167 case kSecXPCOpCopyNotValidPeerPeerInfo
:
1168 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1169 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1170 SOSCCCopyNotValidPeerPeerInfo_Server(&error
),
1174 case kSecXPCOpCopyGenerationPeerInfo
:
1175 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1176 xpc_dictionary_set_and_consume_CFArray(replyMessage
, kSecXPCKeyResult
,
1177 SOSCCCopyGenerationPeerInfo_Server(&error
));
1180 case kSecXPCOpCopyRetirementPeerInfo
:
1181 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1182 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1183 SOSCCCopyRetirementPeerInfo_Server(&error
),
1187 case kSecXPCOpCopyViewUnawarePeerInfo
:
1188 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1189 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1190 SOSCCCopyViewUnawarePeerInfo_Server(&error
),
1194 case kSecXPCOpCopyAccountData
:
1196 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1197 xpc_object_t xpc_account_object
= NULL
;
1198 CFDataRef accountData
= SOSCCCopyAccountState_Server(&error
);
1200 xpc_account_object
= _CFXPCCreateXPCObjectFromCFObject(accountData
);
1202 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_account_object
);
1203 CFReleaseNull(accountData
);
1207 case kSecXPCOpDeleteAccountData
:
1209 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1210 bool status
= SOSCCDeleteAccountState_Server(&error
);
1211 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, status
);
1215 case kSecXPCOpCopyEngineData
:
1217 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1219 xpc_object_t xpc_engine_object
= NULL
;
1220 CFDataRef engineData
= SOSCCCopyEngineData_Server(&error
);
1222 xpc_engine_object
= _CFXPCCreateXPCObjectFromCFObject(engineData
);
1224 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_engine_object
);
1225 CFReleaseNull(engineData
);
1230 case kSecXPCOpDeleteEngineData
:
1232 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1233 bool status
= SOSCCDeleteEngineState_Server(&error
);
1234 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, status
);
1238 case kSecXPCOpCopyEngineState
:
1240 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1241 CFArrayRef array
= SOSCCCopyEngineState_Server(&error
);
1242 CFDataRef derData
= NULL
;
1244 require_quiet(array
, done
);
1245 derData
= CFPropertyListCreateDERData(kCFAllocatorDefault
, array
, &error
);
1247 require_quiet(derData
, done
);
1248 xpc_dictionary_set_data(replyMessage
, kSecXPCKeyResult
, CFDataGetBytePtr(derData
), CFDataGetLength(derData
));
1250 CFReleaseNull(derData
);
1251 CFReleaseNull(array
);
1255 case kSecXPCOpCopyPeerPeerInfo
:
1256 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1257 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1258 SOSCCCopyPeerPeerInfo_Server(&error
),
1262 case kSecXPCOpCopyConcurringPeerPeerInfo
:
1263 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1264 xpc_dictionary_set_and_consume_PeerInfoArray(replyMessage
, kSecXPCKeyResult
,
1265 SOSCCCopyConcurringPeerPeerInfo_Server(&error
),
1269 case kSecXPCOpCopyMyPeerInfo
:
1270 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1271 SOSPeerInfoRef peerInfo
= SOSCCCopyMyPeerInfo_Server(&error
);
1272 CFDataRef peerInfoData
= peerInfo
? SOSPeerInfoCopyEncodedData(peerInfo
, kCFAllocatorDefault
, &error
) : NULL
;
1273 CFReleaseNull(peerInfo
);
1275 xpc_object_t xpc_object
= _CFXPCCreateXPCObjectFromCFObject(peerInfoData
);
1276 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_object
);
1277 xpc_release(xpc_object
);
1279 CFReleaseNull(peerInfoData
);
1282 case kSecXPCOpGetLastDepartureReason
:
1283 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1284 xpc_dictionary_set_int64(replyMessage
, kSecXPCKeyResult
,
1285 SOSCCGetLastDepartureReason_Server(&error
));
1288 case kSecXPCOpSetLastDepartureReason
:
1289 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1290 // 0 is a legitimate reason (kSOSDepartureReasonError), so it's safe for this parameter to be unset or incorrect type
1291 int32_t reason
= (int32_t) xpc_dictionary_get_int64(event
, kSecXPCKeyReason
);
1292 xpc_dictionary_set_int64(replyMessage
, kSecXPCKeyResult
,
1293 SOSCCSetLastDepartureReason_Server(reason
, &error
));
1296 case kSecXPCOpProcessSyncWithPeers
:
1297 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainSyncUpdates
, &error
)) {
1298 CFSetRef peers
= SecXPCDictionaryCopySet(event
, kSecXPCKeySet
, &error
);
1299 CFSetRef backupPeers
= SecXPCDictionaryCopySet(event
, kSecXPCKeySet2
, &error
);
1300 if (peers
&& backupPeers
) {
1301 CFSetRef result
= SOSCCProcessSyncWithPeers_Server(peers
, backupPeers
, &error
);
1303 SecXPCDictionarySetPList(replyMessage
, kSecXPCKeyResult
, result
, &error
);
1305 CFReleaseNull(result
);
1307 CFReleaseNull(peers
);
1308 CFReleaseNull(backupPeers
);
1311 case kSecXPCOpProcessSyncWithAllPeers
:
1312 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainSyncUpdates
, &error
)) {
1313 xpc_dictionary_set_int64(replyMessage
, kSecXPCKeyResult
,
1314 SOSCCProcessSyncWithAllPeers_Server(&error
));
1317 case soscc_EnsurePeerRegistration_id
:
1318 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainSyncUpdates
, &error
)) {
1319 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1320 SOSCCProcessEnsurePeerRegistration_Server(&error
));
1323 case kSecXPCOpCopyIncompatibilityInfo
:
1324 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1325 CFStringRef iis
= SOSCCCopyIncompatibilityInfo_Server(&error
);
1326 SecXPCDictionarySetString(replyMessage
, kSecXPCKeyResult
, iis
, &error
);
1330 case kSecXPCOpRollKeys
:
1332 // false is valid, so it's safe for this parameter to be unset or incorrect type
1333 bool force
= xpc_dictionary_get_bool(event
, "force");
1334 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1335 _SecServerRollKeys(force
, &client
, &error
));
1338 case kSecXPCOpWaitForInitialSync
:
1339 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1340 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1341 SOSCCWaitForInitialSync_Server(&error
));
1345 case kSecXPCOpWaitForInitialSyncWithAnalytics
:
1346 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1347 CFDataRef parentEvent
= NULL
;
1348 if(SecXPCDictionaryCopyDataOptional(event
, kSecXPCKeySignInAnalytics
, &parentEvent
, &error
) && parentEvent
!= NULL
){
1349 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCWaitForInitialSyncWithAnalytics_Server(parentEvent
, &error
));
1351 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCWaitForInitialSync_Server(&error
));
1353 CFReleaseNull(parentEvent
);
1356 case kSecXPCOpCopyYetToSyncViews
:
1357 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1358 CFArrayRef array
= SOSCCCopyYetToSyncViewsList_Server(&error
);
1360 xpc_object_t xpc_array
= _CFXPCCreateXPCObjectFromCFObject(array
);
1361 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_array
);
1362 xpc_release(xpc_array
);
1364 CFReleaseNull(array
);
1367 case kSecXPCOpSetEscrowRecord
:
1368 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1369 CFStringRef escrow_label
= SecXPCDictionaryCopyString(event
, kSecXPCKeyEscrowLabel
, &error
); // NULL checked below
1370 uint64_t tries
= xpc_dictionary_get_int64(event
, kSecXPCKeyTriesLabel
); // 0 is acceptable; safe for this parameter to be unset or incorrect type
1372 if (escrow_label
!= NULL
) {
1373 bool result
= SOSCCSetEscrowRecord_Server(escrow_label
, tries
, &error
);
1375 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
1377 CFReleaseNull(escrow_label
);
1381 case kSecXPCOpGetEscrowRecord
:
1382 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1383 CFDictionaryRef record
= SOSCCCopyEscrowRecord_Server(&error
);
1385 xpc_object_t xpc_dictionary
= _CFXPCCreateXPCObjectFromCFObject(record
);
1386 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_dictionary
);
1387 xpc_release(xpc_dictionary
);
1389 CFReleaseNull(record
);
1392 case kSecXPCOpCopyBackupInformation
:
1393 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1394 CFDictionaryRef record
= SOSCCCopyBackupInformation_Server(&error
);
1396 xpc_object_t xpc_dictionary
= _CFXPCCreateXPCObjectFromCFObject(record
);
1397 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_dictionary
);
1398 xpc_release(xpc_dictionary
);
1400 CFReleaseNull(record
);
1404 case kSecXPCOpIsThisDeviceLastBackup
:
1405 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1406 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, SOSCCkSecXPCOpIsThisDeviceLastBackup_Server(&error
));
1409 case kSecXPCOpPeersHaveViewsEnabled
:
1411 CFArrayRef viewSet
= SecXPCDictionaryCopyArray(event
, kSecXPCKeyArray
, &error
);
1413 CFBooleanRef result
= SOSCCPeersHaveViewsEnabled_Server(viewSet
, &error
);
1414 if (result
!= NULL
) {
1415 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
!= kCFBooleanFalse
);
1418 CFReleaseNull(viewSet
);
1422 case kSecXPCOpWhoAmI
:
1425 xpc_dictionary_set_data(replyMessage
, "musr", CFDataGetBytePtr(client
.musr
), CFDataGetLength(client
.musr
));
1426 xpc_dictionary_set_bool(replyMessage
, "system-keychain", client
.allowSystemKeychain
);
1427 xpc_dictionary_set_bool(replyMessage
, "syncbubble-keychain", client
.allowSyncBubbleKeychain
);
1428 xpc_dictionary_set_bool(replyMessage
, "network-extension", client
.isNetworkExtension
);
1429 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, true);
1432 case kSecXPCOpTransmogrifyToSyncBubble
:
1434 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateKeychainSyncBubble
, &error
)) {
1436 uid_t uid
= (uid_t
)xpc_dictionary_get_int64(event
, "uid");
1437 CFArrayRef services
= SecXPCDictionaryCopyArray(event
, "services", &error
);
1439 if (uid
&& services
) {
1440 res
= _SecServerTransmogrifyToSyncBubble(services
, uid
, &client
, &error
);
1442 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, res
);
1443 CFReleaseNull(services
);
1445 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, false);
1450 case kSecXPCOpTransmogrifyToSystemKeychain
:
1452 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateKeychainMigrateSystemKeychain
, &error
)) {
1454 bool res
= _SecServerTransmogrifyToSystemKeychain(&client
, &error
);
1455 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, res
);
1457 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, false);
1463 case kSecXPCOpDeleteUserView
:
1465 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateKeychainMigrateSystemKeychain
, &error
)) {
1468 uid_t uid
= (uid_t
)xpc_dictionary_get_int64(event
, "uid");
1470 res
= _SecServerDeleteMUSERViews(&client
, uid
, &error
);
1473 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, res
);
1478 case kSecXPCOpWrapToBackupSliceKeyBagForView
:
1480 CFStringRef viewname
= SecXPCDictionaryCopyString(event
, kSecXPCKeyViewName
, &error
);
1482 CFDataRef plaintext
= SecXPCDictionaryCopyData(event
, kSecXPCData
, &error
);
1484 CFDataRef ciphertext
= NULL
;
1485 CFDataRef bskbEncoded
= NULL
;
1487 bool result
= SOSWrapToBackupSliceKeyBagForView_Server(viewname
, plaintext
, &ciphertext
, &bskbEncoded
, &error
);
1488 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
1490 if(!error
&& result
) {
1492 xpc_dictionary_set_data(replyMessage
, kSecXPCData
, CFDataGetBytePtr(ciphertext
), CFDataGetLength(ciphertext
));
1495 xpc_dictionary_set_data(replyMessage
, kSecXPCKeyKeybag
, CFDataGetBytePtr(bskbEncoded
), CFDataGetLength(bskbEncoded
));
1498 CFReleaseSafe(ciphertext
);
1499 CFReleaseSafe(bskbEncoded
);
1501 CFReleaseSafe(plaintext
);
1503 CFReleaseNull(viewname
);
1506 case kSecXPCOpCopyApplication
:
1507 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementCircleJoin
, &error
)) {
1508 SOSPeerInfoRef peerInfo
= SOSCCCopyApplication_Server(&error
);
1509 CFDataRef peerInfoData
= peerInfo
? SOSPeerInfoCopyEncodedData(peerInfo
, kCFAllocatorDefault
, &error
) : NULL
;
1510 CFReleaseNull(peerInfo
);
1512 xpc_object_t xpc_object
= _CFXPCCreateXPCObjectFromCFObject(peerInfoData
);
1513 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_object
);
1514 xpc_release(xpc_object
);
1516 CFReleaseNull(peerInfoData
);
1519 case kSecXPCOpCopyCircleJoiningBlob
:
1520 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementCircleJoin
, &error
)) {
1521 CFDataRef appBlob
= SecXPCDictionaryCopyCFDataRef(event
, kSecXPCData
, &error
);
1522 if (appBlob
!= NULL
) {
1523 SOSPeerInfoRef applicant
= SOSPeerInfoCreateFromData(kCFAllocatorDefault
, &error
, appBlob
);
1524 if (applicant
!= NULL
) {
1525 CFDataRef pbblob
= SOSCCCopyCircleJoiningBlob_Server(applicant
, &error
);
1527 xpc_object_t xpc_object
= _CFXPCCreateXPCObjectFromCFObject(pbblob
);
1528 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_object
);
1529 xpc_release(xpc_object
);
1531 CFReleaseNull(pbblob
);
1532 CFReleaseNull(applicant
);
1534 CFReleaseNull(appBlob
);
1538 case kSecXPCOpCopyInitialSyncBlob
:
1539 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementCircleJoin
, &error
)) {
1540 uint64_t flags
= xpc_dictionary_get_uint64(event
, kSecXPCKeyFlags
); // 0 is a valid flags, so no error checking
1541 CFDataRef initialblob
= SOSCCCopyInitialSyncData_Server((uint32_t)flags
, &error
);
1543 xpc_object_t xpc_object
= _CFXPCCreateXPCObjectFromCFObject(initialblob
);
1544 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyResult
, xpc_object
);
1545 xpc_release(xpc_object
);
1547 CFReleaseNull(initialblob
);
1550 case kSecXPCOpJoinWithCircleJoiningBlob
:
1551 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementCircleJoin
, &error
)) {
1552 CFDataRef joiningBlob
= SecXPCDictionaryCopyCFDataRef(event
, kSecXPCData
, &error
); // NULL checked below
1553 uint64_t version
= xpc_dictionary_get_uint64(event
, kSecXPCVersion
); // 0 is valid, so this parameter can be unset or incorrect type
1554 if (joiningBlob
!= NULL
) {
1555 bool retval
= SOSCCJoinWithCircleJoiningBlob_Server(joiningBlob
, (PiggyBackProtocolVersion
) version
, &error
);
1556 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, retval
);
1557 CFReleaseNull(joiningBlob
);
1562 case kSecXPCOpKVSKeyCleanup
:
1563 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1564 bool retval
= SOSCCCleanupKVSKeys_Server(&error
);
1565 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, retval
);
1568 case kSecXPCOpPopulateKVS
:
1569 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainCloudCircle
, &error
)) {
1570 bool retval
= SOSCCTestPopulateKVSWithBadKeys_Server(&error
);
1571 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, retval
);
1574 case kSecXPCOpMessageFromPeerIsPending
:
1576 SOSPeerInfoRef peer
= SecXPCDictionaryCopyPeerInfo(event
, kSecXPCKeyPeerInfo
, &error
);
1578 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1579 SOSCCMessageFromPeerIsPending_Server(peer
, &error
));
1581 CFReleaseNull(peer
);
1584 case kSecXPCOpSendToPeerIsPending
:
1586 SOSPeerInfoRef peer
= SecXPCDictionaryCopyPeerInfo(event
, kSecXPCKeyPeerInfo
, &error
);
1588 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
,
1589 SOSCCSendToPeerIsPending(peer
, &error
));
1591 CFReleaseNull(peer
);
1594 #endif /* !SECUREOBJECTSYNC */
1595 case sec_delete_items_with_access_groups_id
:
1597 bool retval
= false;
1598 #if TARGET_OS_IPHONE
1599 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateUninstallDeletion
, &error
)) {
1600 CFArrayRef accessGroups
= SecXPCDictionaryCopyArray(event
, kSecXPCKeyAccessGroups
, &error
);
1603 retval
= _SecItemServerDeleteAllWithAccessGroups(accessGroups
, &client
, &error
);
1605 CFReleaseNull(accessGroups
);
1608 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, retval
);
1611 case kSecXPCOpBackupKeybagAdd
: {
1612 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementBackupTableOperations
, &error
)) {
1613 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, false);
1617 case kSecXPCOpBackupKeybagDelete
: {
1618 if (EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementBackupTableOperations
, &error
)) {
1619 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, false);
1623 case kSecXPCOpKeychainControlEndpoint
: {
1624 if(EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementKeychainControl
, &error
)) {
1625 xpc_endpoint_t endpoint
= SecServerCreateKeychainControlEndpoint();
1627 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyEndpoint
, endpoint
);
1628 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, true);
1629 xpc_release(endpoint
);
1631 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, false);
1636 case sec_item_copy_parent_certificates_id
: {
1637 CFArrayRef results
= NULL
;
1638 if(EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateCertificateAllAccess
, &error
)) {
1639 CFDataRef issuer
= SecXPCDictionaryCopyData(event
, kSecXPCKeyNormalizedIssuer
, &error
);
1640 CFArrayRef accessGroups
= SecXPCDictionaryCopyArray(event
, kSecXPCKeyAccessGroups
, &error
);
1641 if (issuer
&& accessGroups
) {
1642 results
= _SecItemCopyParentCertificates(issuer
, accessGroups
, &error
);
1644 CFReleaseNull(issuer
);
1645 CFReleaseNull(accessGroups
);
1647 SecXPCDictionarySetPListOptional(replyMessage
, kSecXPCKeyResult
, results
, &error
);
1648 CFReleaseNull(results
);
1651 case sec_item_certificate_exists_id
: {
1652 bool result
= false;
1653 if(EntitlementPresentAndTrue(operation
, client
.task
, kSecEntitlementPrivateCertificateAllAccess
, &error
)) {
1654 CFDataRef issuer
= SecXPCDictionaryCopyData(event
, kSecXPCKeyNormalizedIssuer
, &error
);
1655 CFDataRef serialNum
= SecXPCDictionaryCopyData(event
, kSecXPCKeySerialNumber
, &error
);
1656 CFArrayRef accessGroups
= SecXPCDictionaryCopyArray(event
, kSecXPCKeyAccessGroups
, &error
);
1657 if (issuer
&& serialNum
&& accessGroups
) {
1658 result
= _SecItemCertificateExists(issuer
, serialNum
, accessGroups
, &error
);
1660 CFReleaseNull(issuer
);
1661 CFReleaseNull(serialNum
);
1662 CFReleaseNull(accessGroups
);
1664 xpc_dictionary_set_bool(replyMessage
, kSecXPCKeyResult
, result
);
1673 if(SecErrorGetOSStatus(error
) == errSecItemNotFound
|| isSOSErrorCoded(error
, kSOSErrorPublicKeyAbsent
))
1674 secdebug("ipc", "%@ %@ %@", client
.task
, SOSCCGetOperationDescription((enum SecXPCOperation
)operation
), error
);
1675 else if (SecErrorGetOSStatus(error
) == errSecAuthNeeded
)
1676 secwarning("Authentication is needed %@ %@ %@", client
.task
, SOSCCGetOperationDescription((enum SecXPCOperation
)operation
), error
);
1678 secerror("%@ %@ %@", client
.task
, SOSCCGetOperationDescription((enum SecXPCOperation
)operation
), error
);
1680 xpcError
= SecCreateXPCObjectWithCFError(error
);
1682 xpc_dictionary_set_value(replyMessage
, kSecXPCKeyError
, xpcError
);
1684 } else if (replyMessage
) {
1685 secdebug("ipc", "%@ %@ responding %@", client
.task
, SOSCCGetOperationDescription((enum SecXPCOperation
)operation
), replyMessage
);
1688 SecCFCreateErrorWithFormat(kSecXPCErrorUnexpectedType
, sSecXPCErrorDomain
, NULL
, &error
, 0, CFSTR("Messages expect to be xpc dictionary, got: %@"), event
);
1689 secerror("%@: returning error: %@", client
.task
, error
);
1690 xpcError
= SecCreateXPCObjectWithCFError(error
);
1691 replyMessage
= xpc_create_reply_with_format(event
, "{%string: %value}", kSecXPCKeyError
, xpcError
);
1695 xpc_connection_send_message(connection
, replyMessage
);
1696 xpc_release(replyMessage
);
1699 xpc_release(xpcError
);
1700 CFReleaseSafe(error
);
1701 CFReleaseSafe(client
.accessGroups
);
1702 CFReleaseSafe(client
.musr
);
1703 CFReleaseSafe(client
.task
);
1704 CFReleaseSafe(domains
);
1705 CFReleaseSafe(clientAuditToken
);
1708 static void securityd_xpc_init(const char *service_name
)
1710 secdebug("serverxpc", "start");
1711 xpc_connection_t listener
= xpc_connection_create_mach_service(service_name
, NULL
, XPC_CONNECTION_MACH_SERVICE_LISTENER
);
1713 seccritical("security failed to register xpc listener for %s, exiting", service_name
);
1717 xpc_connection_set_event_handler(listener
, ^(xpc_object_t connection
) {
1718 if (xpc_get_type(connection
) == XPC_TYPE_CONNECTION
) {
1719 xpc_connection_set_event_handler(connection
, ^(xpc_object_t event
) {
1720 if (xpc_get_type(event
) == XPC_TYPE_DICTIONARY
) {
1721 // Synchronous. The client has a connection pool so they can be somewhat re-entrant if they need.
1722 securityd_xpc_dictionary_handler(connection
, event
);
1725 xpc_connection_resume(connection
);
1728 xpc_connection_resume(listener
);
1731 xpc_activity_register("com.apple.securityd.daily", XPC_ACTIVITY_CHECK_IN
, ^(xpc_activity_t activity
) {
1732 xpc_activity_state_t activityState
= xpc_activity_get_state(activity
);
1733 if (activityState
== XPC_ACTIVITY_STATE_RUN
) {
1734 SecCKKS24hrNotification();
1735 SecOctagon24hrNotification();
1740 #if OCTAGON && !TARGET_OS_BRIDGE
1741 // Kick off reporting tasks.
1742 if (os_variant_has_internal_diagnostics("com.apple.security") && !os_variant_is_recovery("securityd")) {
1743 InitPolicyReporter();
1749 // <rdar://problem/22425706> 13B104+Roots:Device never moved past spinner after using approval to ENABLE icdp
1751 #if TARGET_OS_IPHONE && !TARGET_OS_SIMULATOR
1752 static void securityd_soscc_lock_hack() {
1753 dispatch_queue_t soscc_lock_queue
= dispatch_queue_create("soscc_lock_queue", DISPATCH_QUEUE_PRIORITY_DEFAULT
);
1756 // <rdar://problem/22500239> Prevent securityd from quitting while holding a keychain assertion
1757 // FIXME: securityd isn't currently registering for any other notifyd events. If/when it does,
1758 // this code will need to be generalized / migrated away from just this specific purpose.
1759 xpc_set_event_stream_handler("com.apple.notifyd.matching", dispatch_get_global_queue(DISPATCH_QUEUE_PRIORITY_HIGH
, 0), ^(xpc_object_t object
) {
1760 char *event_description
= xpc_copy_description(object
);
1761 secnotice("events", "%s", event_description
);
1762 free(event_description
);
1765 secnotice("lockassertion", "notify_register_dispatch(kSOSCCHoldLockForInitialSync)");
1766 notify_register_dispatch(kSOSCCHoldLockForInitialSync
, &soscc_tok
, soscc_lock_queue
, ^(int token __unused
) {
1767 secnotice("lockassertion", "kSOSCCHoldLockForInitialSync: grabbing the lock");
1768 CFErrorRef error
= NULL
;
1770 uint64_t one_minute
= 60ull;
1771 if(SecAKSUserKeybagHoldLockAssertion(one_minute
, &error
)){
1772 // <rdar://problem/22500239> Prevent securityd from quitting while holding a keychain assertion
1773 os_transaction_t transaction
= os_transaction_create("securityd-LockAssertedingHolder");
1775 dispatch_after(dispatch_time(DISPATCH_TIME_NOW
, one_minute
*NSEC_PER_SEC
), soscc_lock_queue
, ^{
1776 CFErrorRef localError
= NULL
;
1777 if(!SecAKSUserKeybagDropLockAssertion(&localError
))
1778 secerror("failed to unlock: %@", localError
);
1779 CFReleaseNull(localError
);
1780 os_release(transaction
);
1783 secerror("Failed to take device lock assertion: %@", error
);
1785 CFReleaseNull(error
);
1786 secnotice("lockassertion", "kSOSCCHoldLockForInitialSync => done");
1796 static char homeDir
[PATH_MAX
] = {};
1798 if (homeDir
[0] == '\0') {
1799 struct passwd
* pwd
= getpwuid(getuid());
1803 if (realpath(pwd
->pw_dir
, homeDir
) == NULL
) {
1804 strlcpy(homeDir
, pwd
->pw_dir
, sizeof(homeDir
));
1812 int main(int argc
, char *argv
[])
1814 DisableLocalization();
1816 char *wait4debugger
= getenv("WAIT4DEBUGGER");
1817 if (wait4debugger
&& !strcasecmp("YES", wait4debugger
)) {
1818 seccritical("SIGSTOPing self, awaiting debugger");
1819 kill(getpid(), SIGSTOP
);
1820 seccritical("Again, for good luck (or bad debuggers)");
1821 kill(getpid(), SIGSTOP
);
1824 /* <rdar://problem/15792007> Users with network home folders are unable to use/save password for Mail/Cal/Contacts/websites
1825 Secd doesn't realize DB connections get invalidated when network home directory users logout
1826 and their home gets unmounted. Exit secd, start fresh when user logs back in.
1829 int sessionstatechanged_tok
;
1830 notify_register_dispatch(kSA_SessionStateChangedNotification
, &sessionstatechanged_tok
, dispatch_get_global_queue(DISPATCH_QUEUE_PRIORITY_DEFAULT
, 0), ^(int token __unused
) {
1831 // we could be a process running as root.
1832 // However, since root never logs out this isn't an issue.
1833 if (SASSessionStateForUser(getuid()) == kSA_state_loggingout_pointofnoreturn
) {
1834 dispatch_after(dispatch_time(DISPATCH_TIME_NOW
, 3ull*NSEC_PER_SEC
), dispatch_get_global_queue(DISPATCH_QUEUE_PRIORITY_DEFAULT
, 0), ^{
1835 xpc_transaction_exit_clean();
1842 #define SECD_PROFILE_NAME "com.apple.secd"
1843 const char *homedir
= homedirPath();
1844 if (homedir
== NULL
)
1845 errx(1, "failed to get home directory for secd");
1847 char *errorbuf
= NULL
;
1848 const char *sandbox_params
[] = {
1854 rc
= sandbox_init_with_parameters(SECD_PROFILE_NAME
, SANDBOX_NAMED
, sandbox_params
, &errorbuf
);
1856 err(1, "Failed to process in a sandbox: %d %s", rc
, errorbuf
);
1857 #endif /* TARGET_OS_OSX */
1859 const char *serviceName
= kSecuritydXPCServiceName
;
1861 // Mark our interest in running some features (before we bring the DB layer up)
1863 EscrowRequestServerSetEnabled(true);
1864 OctagonSetShouldPerformInitialization(true);
1868 /* setup SQDLite before some other component have a chance to create a database connection */
1869 _SecDbServerSetup();
1871 securityd_init_server();
1872 securityd_xpc_init(serviceName
);
1874 SecCreateSecuritydXPCServer();
1875 #if SECUREOBJECTSYNC
1876 SOSControlServerInitialize();
1879 CKKSControlServerInitialize();
1880 OctagonControlServerInitialize();
1881 EscrowRequestXPCServerInitialize();
1884 // <rdar://problem/22425706> 13B104+Roots:Device never moved past spinner after using approval to ENABLE icdp
1885 #if TARGET_OS_IPHONE && !TARGET_OS_SIMULATOR
1886 securityd_soscc_lock_hack();
1892 /* vi:set ts=4 sw=4 et: */