Skip to main content

security_framework_sys/
certificate.rs

1use core_foundation_sys::array::CFArrayRef;
2use core_foundation_sys::base::{CFAllocatorRef, CFTypeID, OSStatus};
3use core_foundation_sys::data::CFDataRef;
4#[cfg(target_os = "macos")]
5use crate::base::SecKeychainRef;
6#[cfg(target_os = "macos")]
7use core_foundation_sys::dictionary::CFDictionaryRef;
8use core_foundation_sys::error::CFErrorRef;
9use core_foundation_sys::string::CFStringRef;
10
11use crate::base::{SecCertificateRef, SecKeyRef};
12
13extern "C" {
14    #[cfg(target_os = "macos")]
15    pub static kSecPropertyKeyType: CFStringRef;
16    #[cfg(target_os = "macos")]
17    pub static kSecPropertyKeyLabel: CFStringRef;
18    #[cfg(target_os = "macos")]
19    pub static kSecPropertyKeyLocalizedLabel: CFStringRef;
20    #[cfg(target_os = "macos")]
21    pub static kSecPropertyKeyValue: CFStringRef;
22
23    #[cfg(target_os = "macos")]
24    pub static kSecPropertyTypeWarning: CFStringRef;
25    #[cfg(target_os = "macos")]
26    pub static kSecPropertyTypeSuccess: CFStringRef;
27    #[cfg(target_os = "macos")]
28    pub static kSecPropertyTypeSection: CFStringRef;
29    #[cfg(target_os = "macos")]
30    pub static kSecPropertyTypeData: CFStringRef;
31    #[cfg(target_os = "macos")]
32    pub static kSecPropertyTypeString: CFStringRef;
33    #[cfg(target_os = "macos")]
34    pub static kSecPropertyTypeURL: CFStringRef;
35    #[cfg(target_os = "macos")]
36    pub static kSecPropertyTypeDate: CFStringRef;
37
38    // certificate policies
39    pub static kSecPolicyAppleX509Basic: CFStringRef;
40    pub static kSecPolicyAppleSSL: CFStringRef;
41    pub static kSecPolicyAppleSMIME: CFStringRef;
42    pub static kSecPolicyAppleEAP: CFStringRef;
43    pub static kSecPolicyAppleIPsec: CFStringRef;
44    #[cfg(target_os = "macos")]
45    pub static kSecPolicyApplePKINITClient: CFStringRef;
46    #[cfg(target_os = "macos")]
47    pub static kSecPolicyApplePKINITServer: CFStringRef;
48    pub static kSecPolicyAppleCodeSigning: CFStringRef;
49    pub static kSecPolicyMacAppStoreReceipt: CFStringRef;
50    pub static kSecPolicyAppleIDValidation: CFStringRef;
51    pub static kSecPolicyAppleTimeStamping: CFStringRef;
52    pub static kSecPolicyAppleRevocation: CFStringRef;
53    pub static kSecPolicyApplePassbookSigning: CFStringRef;
54    pub static kSecPolicyApplePayIssuerEncryption: CFStringRef;
55
56    pub fn SecCertificateGetTypeID() -> CFTypeID;
57    pub fn SecCertificateCreateWithData(
58        allocator: CFAllocatorRef,
59        data: CFDataRef,
60    ) -> SecCertificateRef;
61    #[cfg(target_os = "macos")]
62    pub fn SecCertificateAddToKeychain(
63        certificate: SecCertificateRef,
64        keychain: SecKeychainRef,
65    ) -> OSStatus;
66    pub fn SecCertificateCopyData(certificate: SecCertificateRef) -> CFDataRef;
67    pub fn SecCertificateCopySubjectSummary(certificate: SecCertificateRef) -> CFStringRef;
68    pub fn SecCertificateCopyCommonName(
69        certificate: SecCertificateRef,
70        common_name: *mut CFStringRef,
71    ) -> OSStatus;
72    pub fn SecCertificateCopyEmailAddresses(
73        certificate: SecCertificateRef,
74        email_addresses: *mut CFArrayRef,
75    ) -> OSStatus;
76
77    pub fn SecCertificateCopyNormalizedIssuerSequence(certificate: SecCertificateRef) -> CFDataRef;
78
79    pub fn SecCertificateCopyNormalizedSubjectSequence(certificate: SecCertificateRef)
80        -> CFDataRef;
81    #[cfg(target_os = "macos")]
82    #[cfg_attr(target_arch = "aarch64", link_name = "SecCertificateCopyPublicKey$LEGACYMAC")]
83    #[deprecated(note = "Deprecated by Apple. May not work any more. Use SecCertificateCopyKey")]
84    pub fn SecCertificateCopyPublicKey(
85        certificate: SecCertificateRef,
86        key: *mut SecKeyRef,
87    ) -> OSStatus;
88    pub fn SecCertificateCopyKey(certificate: SecCertificateRef) -> SecKeyRef;
89    pub fn SecCertificateCopySerialNumberData(
90        certificate: SecCertificateRef,
91        error: *mut CFErrorRef,
92    ) -> CFDataRef;
93    #[cfg(target_os = "macos")]
94    pub fn SecCertificateCopyValues(
95        certificate: SecCertificateRef,
96        keys: CFArrayRef,
97        error: *mut CFErrorRef,
98    ) -> CFDictionaryRef;
99}