{
NOCOPY(Trust)
public:
+ SECCFFUNCTIONS(Trust, SecTrustRef, errSecInvalidItemRef)
+
Trust(CFTypeRef certificates, CFTypeRef policies);
- virtual ~Trust();
+ virtual ~Trust() throw();
- // set more input parameters
+ // set (or reset) more input parameters
+ void policies(CFTypeRef policies) { mPolicies.take(cfArrayize(policies)); }
void action(CSSM_TP_ACTION action) { mAction = action; }
void actionData(CFDataRef data) { mActionData = data; }
void time(CFDateRef verifyTime) { mVerifyTime = verifyTime; }
- void anchors(CFArrayRef anchorList) { mAnchors = cfArrayize(anchorList); }
+ void anchors(CFArrayRef anchorList) { mAnchors.take(cfArrayize(anchorList)); }
StorageManager::KeychainList &searchLibs() { return mSearchLibs; }
// perform evaluation
CSSM_TP_VERIFY_CONTEXT_RESULT_PTR cssmResult();
SecTrustResultType result() const { return mResult; }
+ OSStatus cssmResultCode() const { return mTpReturn; }
TP getTPHandle() const { return mTP; }
// an independent release function for TP evidence results
private:
SecTrustResultType diagnoseOutcome();
void evaluateUserTrust(const CertGroup &certs,
- const CSSM_TP_APPLE_EVIDENCE_INFO *info);
+ const CSSM_TP_APPLE_EVIDENCE_INFO *info,
+ CFCopyRef<CFArrayRef> anchors);
void clearResults();
+
+ Keychain keychainByDLDb(const CSSM_DL_DB_HANDLE &handle) const;
private:
TP mTP; // our TP
OSStatus mTpReturn; // return code from TP Verify
TPVerifyResult mTpResult; // result of latest TP verify
- vector< RefPointer<Certificate> > mCertChain; // distilled certificate chain
+ vector< SecPointer<Certificate> > mCertChain; // distilled certificate chain
// information returned to caller but owned by us
CFRef<CFArrayRef> mEvidenceReturned; // evidence chain returned
projects / apple / security.git / blobdiff