Security-57740.31.2.tar.gz

[apple/security.git] / libsecurity_smime / lib / SecCmsSignerInfo.h

diff --git a/libsecurity_smime/lib/SecCmsSignerInfo.h b/libsecurity_smime/lib/SecCmsSignerInfo.h
index 98b76f1398192e8bc64ddaf858d0289e309da6b3..19cb5737e65b1fb8cf77da8e608bd86b9cb35f59 100644 (file)
--- a/libsecurity_smime/lib/SecCmsSignerInfo.h
+++ b/libsecurity_smime/lib/SecCmsSignerInfo.h
@@ -90,6 +90,16 @@ SecCmsSignerInfoGetCertList(SecCmsSignerInfoRef signerinfo);
 extern OSStatus
 SecCmsSignerInfoGetSigningTime(SecCmsSignerInfoRef sinfo, CFAbsoluteTime *stime);
 
+/*!
+     @function
+     @abstract Return the data in the signed Codesigning Hash Agility attribute.
+     @param sinfo SignerInfo data for this signer, pointer to a CFDataRef for attribute value
+     @discussion Returns a CFDataRef containing the value of the attribute
+     @result A return value of SECFailure is an error.
+ */
+extern OSStatus
+SecCmsSignerInfoGetAppleCodesigningHashAgility(SecCmsSignerInfoRef sinfo, CFDataRef *sdata);
+
 /*!
     @function
     @abstract Return the signing cert of a CMS signerInfo.
@@ -165,6 +175,14 @@ extern OSStatus
 SecCmsSignerInfoAddCounterSignature(SecCmsSignerInfoRef signerinfo,
                                    SECOidTag digestalg, SecIdentityRef identity);
 
+/*!
+     @function
+     @abstract Add the Apple Codesigning Hash Agility attribute to the authenticated (i.e. signed) attributes of "signerinfo".
+     @discussion This is expected to be included in outgoing signed Apple code signatures.
+*/
+OSStatus
+SecCmsSignerInfoAddAppleCodesigningHashAgility(SecCmsSignerInfoRef signerinfo, CFDataRef attrValue);
+
 /*!
     @function
     @abstract The following needs to be done in the S/MIME layer code after signature of a signerinfo has been verified.