Security/libsecurityd/mig/cshosting.defs

   1 //
   2 // Copyright (c) 2006,2011,2014 Apple Inc. All Rights Reserved.
   3 //
   4 // @APPLE_LICENSE_HEADER_START@
   5 //
   6 // This file contains Original Code and/or Modifications of Original Code
   7 // as defined in and that are subject to the Apple Public Source License
   8 // Version 2.0 (the 'License'). You may not use this file except in
   9 // compliance with the License. Please obtain a copy of the License at
  10 // http://www.opensource.apple.com/apsl/ and read it before using this
  11 // file.
  12 //
  13 // The Original Code and all software distributed under the License are
  14 // distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
  15 // EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
  16 // INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
  17 // FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
  18 // Please see the License for the specific language governing rights and
  19 // limitations under the License.
  20 //
  21 // @APPLE_LICENSE_HEADER_END@
  22 //
  23 // cshosting - Mach IPC interface for Code Signing Hosts
  24 //
  25 #include <mach/std_types.defs>
  26 #include <mach/mach_types.defs>
  27 #include "ss_types.defs"
  28
  29 subsystem cshosting 20000;
  30 serverprefix cshosting_server_;
  31 userprefix cshosting_client_;
  32
  33 import <securityd_client/ucsp_types.h>;
  34
  35
  36 #define CSH_PORTS       requestport sport: mach_port_t; \
  37                                         replyport rport: mach_port_make_send_once_t; \
  38                                         out rcode: OSStatus
  39
  40
  41 //
  42 // Code Signing Hosting protocol.
  43 // These routines are straightforward implementations of the hosting
  44 // protocol, translated into MIG terms. Hosts are represented by
  45 // Hosting Ports, whose receive rights are held by the host (whatever
  46 // it might be).
  47 // The hosting protocol carries no privileges and can be called by
  48 // anyone without authentication. It's supposed to be easy to obtain a host's
  49 // hosting port, so don't hand out any secrets in your implementation.
  50 //
  51 routine findGuest(CSH_PORTS; in host: SecGuestRef; in attributes: XMLBlob;
  52         out guest: GuestChain; out subhost: mach_port_make_send_t);
  53 routine guestStatus(CSH_PORTS; in guest: SecGuestRef; out status: uint32);
  54 skip;
  55 routine identifyGuest(CSH_PORTS; in guest: SecGuestRef; out path: FilePathOut;
  56         out cdhash: HashDataOut; out hashLength: uint32; out attributes: XMLBlobOut);