Struct tugger_apple_codesign::SigningSettings[][src]

pub struct SigningSettings<'key> { /* fields omitted */ }

Represents code signing settings.

This type holds settings related to a single logical signing operation. Some settings (such as the signing key-pair are global). Other settings (such as the entitlements or designated requirement) can be applied on a more granular, scoped basis. The scoping of these lower-level settings is controlled via SettingsScope. If a setting is specified with a scope, it only applies to that scope. See that type’s documentation for more.

An instance of this type is bound to a signing operation. When the signing operation traverses into nested primitives (e.g. when traversing into the individual Mach-O binaries in a fat/universal binary or when traversing into nested bundles or non-main binaries within a bundle), a new instance of this type is transparently constructed by merging global settings with settings for the target scope. This allows granular control over which signing settings apply to which entity and enables a signing operation over a complex primitive to be configured/performed via a single SigningSettings and signing operation.

Implementations

impl<'key> SigningSettings<'key>[src]

pub fn digest_type(&self) -> &DigestType[src]

Obtain the digest type to use.

pub fn set_digest_type(&mut self, digest_type: DigestType)[src]

Set the content digest to use.

The default is SHA-256. Changing this to SHA-1 can weaken security of digital signatures and may prevent the binary from running in environments that enforce more modern signatures.

pub fn signing_key(&self) -> Option<&(&'key SigningKey, Certificate)>[src]

Obtain the signing key to use.

pub fn set_signing_key(
    &mut self,
    private: &'key SigningKey,
    public: Certificate
)[src]

Set the signing key-pair for producing a cryptographic signature over code.

If this is not called, signing will lack a cryptographic signature and will only contain digests of content. This is known as “ad-hoc” mode. Binaries lacking a cryptographic signature or signed without a key-pair issued/signed by Apple may not run in all environments.

pub fn certificate_chain(&self) -> &[Certificate]

Notable traits for &'_ mut [u8]

impl<'_> Write for &'_ mut [u8]impl<'_> Read for &'_ [u8]
[src]

Obtain the certificate chain.

pub fn chain_certificate_der(
    &mut self,
    data: impl AsRef<[u8]>
) -> Result<(), AppleCodesignError>[src]

Add a DER encoded X.509 public certificate to the signing certificate chain.

When producing a cryptographic signature (see SigningSettings::set_signing_key), information about the signing key-pair is included in the signature. The signing key’s public certificate is always included. This function can be used to define additional X.509 public certificates to include. Typically, the signing chain of the signing key-pair up until the root Certificate Authority (CA) is added so clients have access to the full certificate chain for validation purposes.

This setting has no effect if SigningSettings::set_signing_key is not called.

pub fn chain_certificate_pem(
    &mut self,
    data: impl AsRef<[u8]>
) -> Result<(), AppleCodesignError>[src]

Add a PEM encoded X.509 public certificate to the signing certificate chain.

This is like SigningSettings::chain_certificate_der except the certificate is specified as PEM encoded data. This is a human readable string like -----BEGIN CERTIFICATE----- and is a common method for encoding certificate data. (PEM is effectively base64 encoded DER data.)

Only a single certificate is read from the PEM data.

pub fn time_stamp_url(&self) -> Option<&Url>[src]

Obtain the Time-Stamp Protocol server URL.

pub fn set_time_stamp_url(
    &mut self,
    url: impl IntoUrl
) -> Result<(), AppleCodesignError>[src]

Set the Time-Stamp Protocol server URL to use to generate a Time-Stamp Token.

When set and a signing key-pair is defined, the server will be contacted during signing and a Time-Stamp Token will be embedded in the cryptographic signature. This Time-Stamp Token is a cryptographic proof that someone in possession of the signing key-pair produced the cryptographic signature at a given time. It facilitates validation of the signing time via an independent (presumably trusted) entity.

pub fn team_name(&self) -> Option<&str>[src]

Obtain the team name/identifier for signed binaries.

pub fn set_team_name(&mut self, value: impl ToString)[src]

Set the team name/identifier for signed binaries.

pub fn binary_identifier(
    &self,
    scope: impl AsRef<SettingsScope>
) -> Option<&str>[src]

Obtain the binary identifier string for a given scope.

pub fn set_binary_identifier(
    &mut self,
    scope: SettingsScope,
    value: impl ToString
)[src]

Set the binary identifier string for a binary at a path.

This only has an effect when signing an individual Mach-O file (use the None path) or the non-main executable in a bundle: when signing the main executable in a bundle, the binary’s identifier is retrieved from the mandatory CFBundleIdentifier value in the bundle’s Info.plist file.

The binary identifier should be a DNS-like name and should uniquely identify the binary. e.g. com.example.my_program

pub fn entitlements_xml(&self, scope: impl AsRef<SettingsScope>) -> Option<&str>[src]

Obtain the entitlements XML string for a given scope.

pub fn set_entitlements_xml(
    &mut self,
    scope: SettingsScope,
    value: impl ToString
)[src]

Set the entitlements to sign via an XML string.

The value should be an XML plist. The value is not validated.

pub fn designated_requirement(
    &self,
    scope: impl AsRef<SettingsScope>
) -> Option<&Vec<Vec<u8>>>[src]

Obtain the designated requirements binary expressions for a given scope.

pub fn set_designated_requirement_expression(
    &mut self,
    scope: SettingsScope,
    expr: &CodeRequirementExpression<'_>
) -> Result<(), AppleCodesignError>[src]

Set the designated requirement for a Mach-O binary given a CodeRequirementExpression.

The designated requirement (also known as “code requirements”) specifies run-time requirements for the binary. e.g. you can stipulate that the binary must be signed by a certificate issued/signed/chained to Apple. The designated requirement is embedded in Mach-O binaries and signed.

pub fn set_designated_requirement_bytes(
    &mut self,
    scope: SettingsScope,
    data: impl AsRef<[u8]>
) -> Result<(), AppleCodesignError>[src]

Set the designated requirement expression for a Mach-O binary given serialized bytes.

This is like [SigningSettings::designated_requirement_expression] except the designated requirement expression is given as serialized bytes. The bytes passed are the value that would be produced by compiling a code requirement expression via csreq -b.

pub fn code_signature_flags(
    &self,
    scope: impl AsRef<SettingsScope>
) -> Option<CodeSignatureFlags>[src]

Obtain the code signature flags for a given scope.

pub fn set_code_signature_flags(
    &mut self,
    scope: SettingsScope,
    flags: CodeSignatureFlags
)[src]

Set code signature flags for signed Mach-O binaries.

The incoming flags will replace any already-defined flags.

pub fn add_code_signature_flags(
    &mut self,
    scope: SettingsScope,
    flags: CodeSignatureFlags
) -> CodeSignatureFlags[src]

Add code signature flags for signed Mach-O binaries.

The incoming flags will be ORd with any existing flags for the path specified. The new flags will be returned.

pub fn remove_code_signature_flags(
    &mut self,
    scope: SettingsScope,
    flags: CodeSignatureFlags
) -> CodeSignatureFlags[src]

Remove code signature flags for signed Mach-O binaries.

The incoming flags will be removed from any existing flags for the path specified. The new flags will be returned.

pub fn executable_segment_flags(
    &self,
    scope: impl AsRef<SettingsScope>
) -> Option<ExecutableSegmentFlags>[src]

Obtain the executable segment flags for a given scope.

pub fn set_executable_segment_flags(
    &mut self,
    scope: SettingsScope,
    flags: ExecutableSegmentFlags
)[src]

Set executable segment flags for Mach-O binaries.

The incoming flags will replace any already defined flags for the path.

pub fn info_plist_data(&self, scope: impl AsRef<SettingsScope>) -> Option<&[u8]>[src]

Obtain the Info.plist data registered to a given scope.

pub fn set_info_plist_data(&mut self, scope: SettingsScope, data: Vec<u8>)[src]

Define the Info.plist content.

Signatures can reference the digest of an external Info.plist file in the bundle the binary is located in.

This function registers the raw content of that file is so that the content can be digested and the digest can be included in the code directory.

The value passed here should be the raw content of the Info.plist XML file.

When signing bundles, this function is called automatically with the Info.plist from the bundle. This function exists for cases where you are signing individual Mach-O binaries and the Info.plist cannot be automatically discovered.

pub fn code_resources_data(
    &self,
    scope: impl AsRef<SettingsScope>
) -> Option<&[u8]>[src]

Obtain the CodeResources XML file data registered to a given scope.

pub fn set_code_resources_data(&mut self, scope: SettingsScope, data: Vec<u8>)[src]

Define the CodeResources XML file content for a given scope.

Bundles may contain a CodeResources XML file which defines additional resource files and binaries outside the bundle’s main executable. The code directory of the main executable contains a digest of this file to establish a chain of trust of the content of this XML file.

This function defines the content of this external file so that the content can be digested and that digest included in the code directory of the binary being signed.

When signing bundles, this function is called automatically with the content of the CodeResources XML file, if present. This function exists for cases where you are signing individual Mach-O binaries and the CodeResources XML file cannot be automatically discovered.

pub fn as_nested_bundle_settings(&self, bundle_path: &str) -> Self[src]

Convert this instance to settings appropriate for a nested bundle.

pub fn as_bundle_macho_settings(&self, path: &str) -> Self[src]

Convert this instance to settings appropriate for a Mach-O binary in a bundle.

pub fn as_nested_macho_settings(&self, index: usize, cpu_type: CpuType) -> Self[src]

Convert this instance to settings appropriate for a nested Mach-O binary.

It is assumed the main scope of these settings is already targeted for a Mach-O binary. Any scoped settings for the Mach-O binary index and CPU type will be applied. CPU type settings take precedence over index scoped settings.

Trait Implementations

impl<'key> Clone for SigningSettings<'key>[src]

impl<'key> Debug for SigningSettings<'key>[src]

impl<'key> Default for SigningSettings<'key>[src]

Auto Trait Implementations

impl<'key> RefUnwindSafe for SigningSettings<'key>

impl<'key> Send for SigningSettings<'key>

impl<'key> Sync for SigningSettings<'key>

impl<'key> Unpin for SigningSettings<'key>

impl<'key> UnwindSafe for SigningSettings<'key>

Blanket Implementations

impl<T> Any for T where
    T: 'static + ?Sized[src]

impl<T> Borrow<T> for T where
    T: ?Sized[src]

impl<T> BorrowMut<T> for T where
    T: ?Sized[src]

impl<T> From<T> for T[src]

impl<T> Instrument for T[src]

impl<T, U> Into<U> for T where
    U: From<T>, [src]

impl<T> SendSyncUnwindSafe for T where
    T: Send + Sync + UnwindSafe + ?Sized[src]

impl<T> ToOwned for T where
    T: Clone[src]

type Owned = T

The resulting type after obtaining ownership.

impl<T, U> TryFrom<U> for T where
    U: Into<T>, [src]

type Error = Infallible

The type returned in the event of a conversion error.

impl<T, U> TryInto<U> for T where
    U: TryFrom<T>, [src]

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.