SecIdentity.c   [plain text]

/*
 * Copyright (c) 2002-2004,2007-2008,2010 Apple Inc. All Rights Reserved.
 * 
 * @APPLE_LICENSE_HEADER_START@
 * 
 * This file contains Original Code and/or Modifications of Original Code
 * as defined in and that are subject to the Apple Public Source License
 * Version 2.0 (the 'License'). You may not use this file except in
 * compliance with the License. Please obtain a copy of the License at
 * http://www.opensource.apple.com/apsl/ and read it before using this
 * file.
 * 
 * The Original Code and all software distributed under the License are
 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER
 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES,
 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY,
 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT.
 * Please see the License for the specific language governing rights and
 * limitations under the License.
 * 
 * @APPLE_LICENSE_HEADER_END@
 */

/*
 *  SecIdentity.c - CoreFoundation based object containing a
 *  private key, certificate tuple.
 */


#include <Security/SecIdentity.h>

#include <CoreFoundation/CFRuntime.h>
#include <CoreFoundation/CFString.h>
#include <Security/SecCertificate.h>
#include <Security/SecKey.h>
#include <pthread.h>
#include "SecIdentityPriv.h"
#include <Security/SecInternal.h>

struct __SecIdentity {
    CFRuntimeBase		_base;

	SecCertificateRef	_certificate;
	SecKeyRef			_privateKey;
};


/* CFRuntime regsitration data. */
static pthread_once_t kSecIdentityRegisterClass = PTHREAD_ONCE_INIT;
static CFTypeID kSecIdentityTypeID = _kCFRuntimeNotATypeID;

/* Forward declartions of static functions. */
static CFStringRef SecIdentityDescribe(CFTypeRef cf);
static void SecIdentityDestroy(CFTypeRef cf);

/* Static functions. */
static CFStringRef SecIdentityDescribe(CFTypeRef cf) {
    SecIdentityRef identity = (SecIdentityRef)cf;
    return CFStringCreateWithFormat(kCFAllocatorDefault, NULL,
        CFSTR("<SecIdentityRef: %p>"), identity);
}

static void SecIdentityDestroy(CFTypeRef cf) {
    SecIdentityRef identity = (SecIdentityRef)cf;
	CFReleaseSafe(identity->_certificate);
	CFReleaseSafe(identity->_privateKey);
}

static Boolean SecIdentityEqual(CFTypeRef cf1, CFTypeRef cf2) {
    SecIdentityRef identity1 = (SecIdentityRef)cf1;
    SecIdentityRef identity2 = (SecIdentityRef)cf2;
    if (identity1 == identity2)
        return true;
    if (!identity2)
        return false;
    return CFEqual(identity1->_certificate, identity2->_certificate) &&
		CFEqual(identity1->_privateKey, identity2->_privateKey);
}

/* Hash of identity is hash of certificate plus hash of key. */
static CFHashCode SecIdentityHash(CFTypeRef cf) {
    SecIdentityRef identity = (SecIdentityRef)cf;
	return CFHash(identity->_certificate) + CFHash(identity->_privateKey);
}

static void SecIdentityRegisterClass(void) {
	static const CFRuntimeClass kSecIdentityClass = {
		0,												/* version */
        "SecIdentity",									/* class name */
		NULL,											/* init */
		NULL,											/* copy */
		SecIdentityDestroy,								/* dealloc */
		SecIdentityEqual,								/* equal */
		SecIdentityHash,								/* hash */
		NULL,											/* copyFormattingDesc */
		SecIdentityDescribe								/* copyDebugDesc */
	};

    kSecIdentityTypeID = _CFRuntimeRegisterClass(&kSecIdentityClass);
}


/* Public API functions. */
CFTypeID SecIdentityGetTypeID(void) {
    pthread_once(&kSecIdentityRegisterClass, SecIdentityRegisterClass);
    return kSecIdentityTypeID;
}

OSStatus SecIdentityCopyCertificate(SecIdentityRef identity,
	SecCertificateRef *certificateRef) {
	*certificateRef = identity->_certificate;
	CFRetain(*certificateRef);
	return 0;
}

OSStatus SecIdentityCopyPrivateKey(SecIdentityRef identity, 
	SecKeyRef *privateKeyRef) {
	*privateKeyRef = identity->_privateKey;
	CFRetain(*privateKeyRef);
	return 0;
}

SecIdentityRef SecIdentityCreate(CFAllocatorRef allocator,
	SecCertificateRef certificate, SecKeyRef privateKey) {
    CFIndex size = sizeof(struct __SecIdentity);
    SecIdentityRef result = (SecIdentityRef)_CFRuntimeCreateInstance(
		allocator, SecIdentityGetTypeID(), size - sizeof(CFRuntimeBase), 0);
	if (result) {
		CFRetain(certificate);
		CFRetain(privateKey);
		result->_certificate = certificate;
		result->_privateKey = privateKey;
    }
    return result;
}