SecTrustOSXEntryPoints.cpp
1 /* 2 * Copyright (c) 2016 Apple Inc. All Rights Reserved. 3 * 4 * @APPLE_LICENSE_HEADER_START@ 5 * 6 * This file contains Original Code and/or Modifications of Original Code 7 * as defined in and that are subject to the Apple Public Source License 8 * Version 2.0 (the 'License'). You may not use this file except in 9 * compliance with the License. Please obtain a copy of the License at 10 * http://www.opensource.apple.com/apsl/ and read it before using this 11 * file. 12 * 13 * The Original Code and all software distributed under the License are 14 * distributed on an 'AS IS' basis, WITHOUT WARRANTY OF ANY KIND, EITHER 15 * EXPRESS OR IMPLIED, AND APPLE HEREBY DISCLAIMS ALL SUCH WARRANTIES, 16 * INCLUDING WITHOUT LIMITATION, ANY WARRANTIES OF MERCHANTABILITY, 17 * FITNESS FOR A PARTICULAR PURPOSE, QUIET ENJOYMENT OR NON-INFRINGEMENT. 18 * Please see the License for the specific language governing rights and 19 * limitations under the License. 20 * 21 * @APPLE_LICENSE_HEADER_END@ 22 */ 23 24 /* 25 * SecTrustOSXEntryPoints - Interface for unified SecTrust into OS X Security 26 * Framework. 27 */ 28 29 #include "trust/trustd/macOS/SecTrustOSXEntryPoints.h" 30 31 #include <CoreFoundation/CoreFoundation.h> 32 #include <dispatch/dispatch.h> 33 #include <notify.h> 34 35 #include <Security/Security.h> 36 #include <Security/SecItemPriv.h> 37 #include <Security/SecTrustSettingsPriv.h> 38 #include <Security/SecItemInternal.h> 39 40 void SecTrustLegacySourcesListenForKeychainEvents(void) { 41 /* Register for CertificateTrustNotification */ 42 int out_token = 0; 43 notify_register_dispatch(kSecServerCertificateTrustNotification, &out_token, 44 dispatch_get_main_queue(), 45 ^(int token __unused) { 46 // Purge keychain parent cache 47 SecItemParentCachePurge(); 48 // Purge tust settings cert cache 49 SecTrustSettingsPurgeUserAdminCertsCache(); 50 // Purge the trust settings cache 51 SecTrustSettingsPurgeCache(); 52 }); 53 }