mirror of
https://github.com/darlinghq/darling-security.git
synced 2024-11-23 12:09:41 +00:00
79 lines
2.8 KiB
C
79 lines
2.8 KiB
C
/*
|
|
* Copyright (c) 2013-2014 Apple Inc. All Rights Reserved.
|
|
*
|
|
* @APPLE_LICENSE_HEADER_START@
|
|
*
|
|
* This file contains Original Code and/or Modifications of Original Code
|
|
* as defined in and that are subject to the Apple Public Source License
|
|
* Version 2.0 (the 'License'). You may not use this file except in
|
|
* compliance with the License. Please obtain a copy of the License at
|
|
* http://www.opensource.apple.com/apsl/ and read it before using this
|
|
* file.
|
|
*
|
|
* The Original Code and all software distributed under the License are
|
|
* distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
|
|
* EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
|
|
* INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
|
|
* FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
|
|
* Please see the License for the specific language governing rights and
|
|
* limitations under the License.
|
|
*
|
|
* @APPLE_LICENSE_HEADER_END@
|
|
*/
|
|
|
|
#ifndef _SECURITY_SECTASKPRIV_H_
|
|
#define _SECURITY_SECTASKPRIV_H_
|
|
|
|
#include <CoreFoundation/CoreFoundation.h>
|
|
#include <Security/SecTask.h>
|
|
#include <xpc/xpc.h>
|
|
|
|
__BEGIN_DECLS
|
|
|
|
#if SEC_OS_OSX
|
|
/*!
|
|
@function SecTaskValidateForRequirement
|
|
@abstract Validate a SecTask instance for a specified requirement.
|
|
@param task The SecTask instance to validate.
|
|
@param requirement A requirement string to be validated.
|
|
@result An error code of type OSStatus. Returns errSecSuccess if the
|
|
task satisfies the requirement.
|
|
*/
|
|
|
|
OSStatus SecTaskValidateForRequirement(SecTaskRef _Nonnull task, CFStringRef _Nonnull requirement);
|
|
|
|
#endif /* SEC_OS_OSX */
|
|
|
|
/*!
|
|
@function SecTaskCreateWithXPCMessage
|
|
@abstract Get SecTask instance from the remote peer of the xpc connection
|
|
@param message message from peer in the xpc connection event handler, you can't use
|
|
connection since it cached and uses the most recent sender to this connection.
|
|
*/
|
|
|
|
_Nullable SecTaskRef
|
|
SecTaskCreateWithXPCMessage(xpc_object_t _Nonnull message);
|
|
|
|
/*!
|
|
@function SecTaskEntitlementsValidated
|
|
@abstract Check whether entitlements can be trusted or not. If this returns
|
|
false the tasks entitlements must not be used for anything security sensetive.
|
|
@param task A previously created SecTask object
|
|
*/
|
|
Boolean SecTaskEntitlementsValidated(SecTaskRef _Nonnull task);
|
|
|
|
/*!
|
|
@function SecTaskCopyTeamIdentifier
|
|
@abstract Return the value of the team identifier.
|
|
@param task A previously created SecTask object
|
|
@param error On a NULL return, this will contain a CFError describing
|
|
the problem. This argument may be NULL if the caller is not interested in
|
|
detailed errors. The caller must CFRelease the returned value
|
|
*/
|
|
__nullable
|
|
CFStringRef SecTaskCopyTeamIdentifier(SecTaskRef _Nonnull task, CFErrorRef _Nullable * _Nullable error);
|
|
|
|
__END_DECLS
|
|
|
|
#endif /* !_SECURITY_SECTASKPRIV_H_ */
|