2 * Copyright (c) 2002-2004,2011-2012,2014 Apple Inc. All Rights Reserved.
4 * @APPLE_LICENSE_HEADER_START@
6 * This file contains Original Code and/or Modifications of Original Code
7 * as defined in and that are subject to the Apple Public Source License
8 * Version 2.0 (the 'License'). You may not use this file except in
9 * compliance with the License. Please obtain a copy of the License at
10 * http://www.opensource.apple.com/apsl/ and read it before using this
13 * The Original Code and all software distributed under the License are
14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
18 * Please see the License for the specific language governing rights and
19 * limitations under the License.
21 * @APPLE_LICENSE_HEADER_END@
28 #include <Security/SecBase.h>
29 #include "SecBridge.h"
33 using namespace KeychainCore
;
34 using namespace CssmClient
;
36 PasswordImpl::PasswordImpl(SecItemClass itemClass
, SecKeychainAttributeList
*searchAttrList
, SecKeychainAttributeList
*itemAttrList
) :
37 mItem(itemClass
, itemAttrList
, 0, NULL
), mUseKeychain(false), mFoundInKeychain(false), mRememberInKeychain(false), mMutex(Mutex::recursive
)
39 if (searchAttrList
&& itemAttrList
)
42 mKeychain
= Keychain::optional(NULL
);
43 mRememberInKeychain
= true;
45 // initialize mFoundInKeychain to true if mItem is found
47 StorageManager::KeychainList keychains
;
48 globals().storageManager
.optionalSearchList(NULL
, keychains
);
49 KCCursor
cursor(keychains
, itemClass
, searchAttrList
);
51 if (cursor
->next(mItem
))
52 mFoundInKeychain
= true;
56 PasswordImpl::PasswordImpl(PasswordImpl
& existing
)
58 mKeychain
= existing
.mKeychain
;
59 mItem
= existing
.mItem
;
60 mUseKeychain
= existing
.mUseKeychain
;
61 mFoundInKeychain
= existing
.mFoundInKeychain
;
62 mRememberInKeychain
= existing
.mRememberInKeychain
;
67 PasswordImpl::~PasswordImpl() _NOEXCEPT
72 PasswordImpl::setAccess(Access
*access
)
74 // changing an existing ACL is more work than this SPI wants to do
75 if (!mFoundInKeychain
)
76 mItem
->setAccess(access
);
80 PasswordImpl::setData(UInt32 length
, const void *data
)
84 // do different things based on mFoundInKeychain?
85 mItem
->setData(length
,data
);
89 PasswordImpl::getData(UInt32
*length
, const void **data
)
91 if (mItem
->isPersistent())
94 CssmDataContainer outData
;
97 mItem
->getData(outData
);
100 *length
=(uint32
)outData
.length();
102 *data
=outData
.data();
109 // cancel unlock: CSP_USER_CANCELED
110 // deny rogue app CSP_OPERATION_AUTH_DENIED
121 assert(mUseKeychain
);
123 if (mFoundInKeychain
)
129 mKeychain
->add(mItem
);
131 // reinitialize mItem now it's on mKeychain
132 mFoundInKeychain
= true; // should be set by member that resets mItem
136 Password::Password(SecItemClass itemClass
, SecKeychainAttributeList
*searchAttrList
, SecKeychainAttributeList
*itemAttrList
) :
137 SecPointer
<PasswordImpl
>(new PasswordImpl(itemClass
, searchAttrList
, itemAttrList
))
141 Password::Password(PasswordImpl
*impl
) : SecPointer
<PasswordImpl
>(impl
)
145 Password::Password(PasswordImpl
&impl
) : SecPointer
<PasswordImpl
>(new PasswordImpl(impl
))