--- /dev/null
+/*
+ * Copyright (c) 2006-2007 Apple Inc. All Rights Reserved.
+ *
+ * @APPLE_LICENSE_HEADER_START@
+ *
+ * This file contains Original Code and/or Modifications of Original Code
+ * as defined in and that are subject to the Apple Public Source License
+ * Version 2.0 (the 'License'). You may not use this file except in
+ * compliance with the License. Please obtain a copy of the License at
+ * http://www.opensource.apple.com/apsl/ and read it before using this
+ * file.
+ *
+ * The Original Code and all software distributed under the License are
+ * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
+ * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
+ * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
+ * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
+ * Please see the License for the specific language governing rights and
+ * limitations under the License.
+ *
+ * @APPLE_LICENSE_HEADER_END@
+ */
+
+
+//
+// csproxy - Code Signing Hosting Proxy
+//
+#ifndef _H_CSPROXY
+#define _H_CSPROXY
+
+#include <security_utilities/cfutilities.h>
+#include <security_cdsa_utilities/handleobject.h>
+#include <security_utilities/mach++.h>
+#include <security_utilities/machserver.h>
+#include <security_cdsa_utilities/cssmdata.h>
+#include <Security/SecCodeHost.h>
+#include <string>
+#include <map>
+
+using MachPlusPlus::Port;
+using MachPlusPlus::MachServer;
+
+
+//
+// CodeSigningHost is a mix-in for an object representing a primary
+// Code Signing host object. It performs two notionally separate functions:
+// (1) Register a hosting port.
+// (2) Optionally, maintain a guest registry to offload the host's work.
+//
+class CodeSigningHost : private MachServer::Handler {
+public:
+ CodeSigningHost();
+ ~CodeSigningHost();
+ void reset();
+
+ enum HostingState {
+ noHosting, // is not a host (yet), could go either way
+ dynamicHosting, // gave us its own hosting port to keep
+ proxyHosting // we act as a proxy for it
+ };
+
+ enum GuestCheck {
+ strict, // direct guest relationship required
+ loose // indirect or identity is okay (prefix check)
+ };
+
+ struct Guest : public RefCount, public HandleObject {
+ public:
+ ~Guest();
+ std::vector<SecGuestRef> guestPath; // guest chain to this guest
+ uint32_t status; // dynamic status
+ std::string path; // canonical code path
+ CFRef<CFDictionaryRef> attributes; // matching attributes set
+ bool dedicated; // host is dedicated (and this is the only guest)
+
+ operator bool() const { return attributes; } // exists
+ SecGuestRef guestRef() const { return handle(); }
+ void setAttributes(const CssmData &attrData);
+
+ bool isGuestOf(Guest *host, GuestCheck check) const;
+ bool matches(CFIndex count, CFTypeRef keys[], CFTypeRef values[]) const;
+
+ IFDUMP(void dump() const);
+ };
+
+ void registerCodeSigning(mach_port_t hostingPort, SecCSFlags flags);
+ Port hostingPort() const { return mHostingPort; }
+
+ SecGuestRef createGuest(SecGuestRef guest,
+ uint32_t status, const char *path, const CssmData &attributes, SecCSFlags flags);
+ void setGuestStatus(SecGuestRef guest, uint32_t status, const CssmData &attributes);
+ void removeGuest(SecGuestRef host, SecGuestRef guest);
+
+ Guest *findHost(SecGuestRef hostRef); // find most dedicated guest of this host
+ Guest *findGuest(Guest *host, const CssmData &attrData); // by host and attributes
+ Guest *findGuest(SecGuestRef guestRef, bool hostOk = false); // by guest reference
+ Guest *findGuest(Guest *host); // any guest of this host
+
+ IFDUMP(void dump() const);
+
+private:
+ boolean_t handle(mach_msg_header_t *in, mach_msg_header_t *out);
+ void eraseGuest(Guest *guest);
+
+private:
+ // host port registry
+ HostingState mHostingState; // status of hosting support
+ Port mHostingPort; // his or ours or NULL
+
+ // guest map (only used if mHostingState == proxyHosting)
+ typedef std::map<SecGuestRef, RefPointer<Guest> > GuestMap;
+ GuestMap mGuests;
+};
+
+
+#endif //_H_CSPROXY
projects / apple / securityd.git / blobdiff