Security-58286.240.4.tar.gz

[apple/security.git] / OSX / libsecurity_codesigning / lib / SecAssessment.h

diff --git a/OSX/libsecurity_codesigning/lib/SecAssessment.h b/OSX/libsecurity_codesigning/lib/SecAssessment.h
index efc6dd4a0f072ff3d017ead13058fb3c4c86ec19..620c585781f20d75ee29c52d2ddbbf4ac02a6012 100644 (file)
--- a/OSX/libsecurity_codesigning/lib/SecAssessment.h
+++ b/OSX/libsecurity_codesigning/lib/SecAssessment.h
@@ -24,6 +24,7 @@
 #define _H_SECASSESSMENT
 
 #include <CoreFoundation/CoreFoundation.h>
+#include <Security/CSCommon.h>
 
 #ifdef __cplusplus
 extern "C" {
@@ -156,6 +157,7 @@ extern CFStringRef kSecAssessmentAssessmentAuthorityRow; // (internal)
 extern CFStringRef kSecAssessmentAssessmentAuthorityOverride; // (internal)
 extern CFStringRef kSecAssessmentAssessmentAuthorityOriginalVerdict; // (internal)
 extern CFStringRef kSecAssessmentAssessmentAuthorityFlags; // (internal)
+extern CFStringRef kSecAssessmentAssessmentNotarizationDate; // (internal)
 
 extern CFStringRef kDisabledOverride;                                  // AuthorityOverride value for "Gatekeeper is disabled"
 
@@ -312,6 +314,16 @@ Boolean SecAssessmentUpdate(CFTypeRef target,
  */
 Boolean SecAssessmentControl(CFStringRef control, void *arguments, CFErrorRef *errors);
 
+/*
+ * SecAssessmentTicket SPI
+ */
+typedef uint64_t SecAssessmentTicketFlags;
+enum {
+       kSecAssessmentTicketFlagDefault = 0,                            // default behavior, offline check
+       kSecAssessmentTicketFlagForceOnlineCheck = 1 << 0,      // force an online check
+};
+Boolean SecAssessmentTicketRegister(CFDataRef ticketData, CFErrorRef *errors);
+Boolean SecAssessmentTicketLookup(CFDataRef hash, SecCSDigestAlgorithm hashType, SecAssessmentTicketFlags flags, double *date, CFErrorRef *errors);
 
 #ifdef __cplusplus
 }