X-Git-Url: https://git.saurik.com/apple/security.git/blobdiff_plain/72a12576750f52947eb043106ba5c12c0d07decf..b1ab9ed8d0e0f1c3b66d7daa8fd5564444c56195:/libsecurity_cdsa_client/lib/aclclient.h

diff --git a/libsecurity_cdsa_client/lib/aclclient.h b/libsecurity_cdsa_client/lib/aclclient.h
new file mode 100644
index 00000000..b3db4856
--- /dev/null
+++ b/libsecurity_cdsa_client/lib/aclclient.h
@@ -0,0 +1,199 @@
+/*
+ * Copyright (c) 2000-2001,2007 Apple Inc. All Rights Reserved.
+ * 
+ * The contents of this file constitute Original Code as defined in and are
+ * subject to the Apple Public Source License Version 1.2 (the 'License').
+ * You may not use this file except in compliance with the License. Please obtain
+ * a copy of the License at http://www.apple.com/publicsource and read it before
+ * using this file.
+ * 
+ * This Original Code and all software distributed under the License are
+ * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS
+ * OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, INCLUDING WITHOUT
+ * LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
+ * PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. Please see the License for the
+ * specific language governing rights and limitations under the License.
+ */
+
+
+//
+// aclclient 
+//
+#ifndef _H_CDSA_CLIENT_ACLCLIENT
+#define _H_CDSA_CLIENT_ACLCLIENT  1
+
+#include <security_cdsa_utilities/cssmaclpod.h>
+#include <security_cdsa_utilities/cssmacl.h>
+#include <security_cdsa_utilities/cssmcred.h>
+#include <security_utilities/refcount.h>
+#include <security_utilities/globalizer.h>
+
+namespace Security {
+namespace CssmClient {
+
+class CSP;
+
+
+//
+// Any client-side object that has CSSM-layer ACLs shall be
+// derived from AclBearer and implement its methods accordingly.
+// Note the (shared/virtual) RefCount - you should handle AclBearer
+// references via RefPointers.
+// All the non-pure methods are implemented (in AclBearer) in terms of
+// the pure virtual methods; they just restate the problem in various ways.
+//
+class AclBearer : public virtual RefCount {
+public:
+	virtual ~AclBearer();
+
+	// Acl manipulation
+	virtual void getAcl(AutoAclEntryInfoList &aclInfos,
+		const char *selectionTag = NULL) const = 0;
+	virtual void changeAcl(const CSSM_ACL_EDIT &aclEdit,
+		const CSSM_ACCESS_CREDENTIALS *cred = NULL) = 0;
+	
+	void addAcl(const AclEntryInput &input, const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+	void changeAcl(CSSM_ACL_HANDLE handle, const AclEntryInput &input,
+		const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+	void deleteAcl(CSSM_ACL_HANDLE handle, const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+	void deleteAcl(const char *tag = NULL, const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+
+	// Acl owner manipulation
+	virtual void getOwner(AutoAclOwnerPrototype &owner) const = 0;
+	virtual void changeOwner(const CSSM_ACL_OWNER_PROTOTYPE &newOwner,
+		const CSSM_ACCESS_CREDENTIALS *cred = NULL) = 0;
+};
+
+
+//
+// An AclBearer applied to a raw CSSM key
+//
+class KeyAclBearer : public AclBearer {
+public:
+	KeyAclBearer(CSSM_CSP_HANDLE cspH, CSSM_KEY &theKey, Allocator &alloc)
+		: csp(cspH), key(theKey), allocator(alloc) { }
+	
+	const CSSM_CSP_HANDLE csp;
+	CSSM_KEY &key;
+	Allocator &allocator;
+	
+protected:
+	void getAcl(AutoAclEntryInfoList &aclInfos,
+		const char *selectionTag = NULL) const;
+	void changeAcl(const CSSM_ACL_EDIT &aclEdit,
+		const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+	void getOwner(AutoAclOwnerPrototype &owner) const;
+	void changeOwner(const CSSM_ACL_OWNER_PROTOTYPE &newOwner,
+		const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+};
+
+
+//
+// An AclFactory helps create and maintain CSSM-layer AccessCredentials
+// and matching samples. There is state in an AclFactory, though simple
+// uses may not care about it.
+//
+class AclFactory {
+public:
+	AclFactory();
+	virtual ~AclFactory();
+	
+	// these values are owned by the AclFactory and persist
+	// until it is destroyed. You don't own the memory.
+	const AccessCredentials *nullCred() const;			// conforming empty
+	const AccessCredentials *promptCred() const;		// enable interactive prompting
+	const AccessCredentials *unlockCred() const;
+	const AccessCredentials *cancelCred() const;
+	const AccessCredentials *promptedPINCred() const;
+	const AccessCredentials *promptedPINItemCred() const;
+
+	const AclOwnerPrototype &anyOwner() const;			// wide-open owner
+	const AclEntryInfo &anyAcl() const;					// wide-open ACL entry (authorizes anything)
+
+protected:
+	class KeychainCredentials {
+	public:
+		KeychainCredentials(Allocator &alloc)
+			: allocator(alloc), mCredentials(new AutoCredentials(alloc)) { }
+		virtual ~KeychainCredentials();
+
+		Allocator &allocator;
+
+        operator const AccessCredentials* () const { return mCredentials; }
+	
+    protected:
+		AutoCredentials *mCredentials;
+	};
+    
+public:
+    // create a self-managed AccessCredentials to explicitly provide a keychain passphrase
+    class PassphraseUnlockCredentials : public KeychainCredentials {
+    public:
+        PassphraseUnlockCredentials (const CssmData& password, Allocator& allocator);
+    };
+        
+	// create a self-managed AccessCredentials to change a keychain passphrase
+    class PasswordChangeCredentials : public KeychainCredentials {
+    public:
+        PasswordChangeCredentials (const CssmData& password, Allocator& allocator);
+    };
+
+public:
+	class AnyResourceContext : public ResourceControlContext {
+	public:
+		AnyResourceContext(const CSSM_ACCESS_CREDENTIALS *cred = NULL);
+		
+	private:
+		ListElement mAny;
+		CSSM_ACL_AUTHORIZATION_TAG mTag;
+	};
+
+public:
+	//
+	// Subject makers. Contents are chunk-allocated with the Allocator given
+	//
+	struct Subject : public TypedList {
+		Subject(Allocator &alloc, CSSM_ACL_SUBJECT_TYPE type);
+	};
+	
+	// an ANY subject, allocated dynamically for you
+	struct AnySubject : public Subject {
+		AnySubject(Allocator &alloc) : Subject(alloc, CSSM_ACL_SUBJECT_TYPE_ANY) { }
+	};
+	
+	// a "nobody" subject (something guaranteed never to match)
+	struct NobodySubject : public Subject {
+		NobodySubject(Allocator &alloc) : Subject(alloc, CSSM_ACL_SUBJECT_TYPE_COMMENT) { }
+	};
+
+	// password subjects
+	struct PWSubject : public Subject {
+		PWSubject(Allocator &alloc);							// no secret
+		PWSubject(Allocator &alloc, const CssmData &secret);	// this secret
+	};
+
+	struct PromptPWSubject : public Subject {
+		PromptPWSubject(Allocator &alloc, const CssmData &prompt);
+		PromptPWSubject(Allocator &alloc, const CssmData &prompt, const CssmData &secret);
+	};
+
+	struct ProtectedPWSubject : public Subject {
+		ProtectedPWSubject(Allocator &alloc);
+	};
+	
+	// PIN (pre-auth) reference, origin side
+	struct PinSubject : public Subject {
+		PinSubject(Allocator &alloc, uint32 slot);
+	};
+	
+	// PIN (pre-auth) source site
+	struct PinSourceSubject : public Subject {
+		PinSourceSubject(Allocator &alloc, const TypedList &form);
+	};
+};
+
+
+} // end namespace CssmClient
+} // end namespace Security
+
+#endif // _H_CDSA_CLIENT_ACLCLIENT