Copyright 2020 The Go Authors. All rights reserved. Use of this source code is governed by a BSD-style license that can be found in the LICENSE file.
+build darwin,!ios

package macOS

import (
	
	
	
)
Security.framework linker flags for the external linker. See Issue 42459.go:cgo_ldflag "-framework"go:cgo_ldflag "Security"
Based on https://opensource.apple.com/source/Security/Security-59306.41.2/base/Security.h

type SecTrustSettingsResult int32

const (
	SecTrustSettingsResultInvalid SecTrustSettingsResult = iota
	SecTrustSettingsResultTrustRoot
	SecTrustSettingsResultTrustAsRoot
	SecTrustSettingsResultDeny
	SecTrustSettingsResultUnspecified
)

type SecTrustSettingsDomain int32

const (
	SecTrustSettingsDomainUser SecTrustSettingsDomain = iota
	SecTrustSettingsDomainAdmin
	SecTrustSettingsDomainSystem
)

type OSStatus struct {
	call   string
	status int32
}

func ( OSStatus) () string {
	return .call + " error: " + strconv.Itoa(int(.status))
}
Dictionary keys are defined as build-time strings with CFSTR, but the Go linker's internal linking mode can't handle CFSTR relocations. Create our own dynamic strings instead and just never release them. Note that this might be the only thing that can break over time if these values change, as the ABI arguably requires using the strings pointed to by the symbols, not values that happen to be equal to them.

var SecTrustSettingsResultKey = StringToCFString("kSecTrustSettingsResult")
var SecTrustSettingsPolicy = StringToCFString("kSecTrustSettingsPolicy")
var SecTrustSettingsPolicyString = StringToCFString("kSecTrustSettingsPolicyString")
var SecPolicyOid = StringToCFString("SecPolicyOid")
var SecPolicyAppleSSL = StringToCFString("1.2.840.113635.100.1.3") // defined by POLICYMACRO

var ErrNoTrustSettings = errors.New("no trust settings found")

const errSecNoTrustSettings = -25263
go:linkname x509_SecTrustSettingsCopyCertificates x509_SecTrustSettingsCopyCertificatesgo:cgo_import_dynamic x509_SecTrustSettingsCopyCertificates SecTrustSettingsCopyCertificates "/System/Library/Frameworks/Security.framework/Versions/A/Security"

func ( SecTrustSettingsDomain) ( CFRef,  error) {
	 := syscall(funcPC(x509_SecTrustSettingsCopyCertificates_trampoline), uintptr(),
		uintptr(unsafe.Pointer(&)), 0, 0, 0, 0)
	if int32() == errSecNoTrustSettings {
		return 0, ErrNoTrustSettings
	} else if  != 0 {
		return 0, OSStatus{"SecTrustSettingsCopyCertificates", int32()}
	}
	return , nil
}
func ()

const kSecFormatX509Cert int32 = 9
go:linkname x509_SecItemExport x509_SecItemExportgo:cgo_import_dynamic x509_SecItemExport SecItemExport "/System/Library/Frameworks/Security.framework/Versions/A/Security"

func ( CFRef) ( CFRef,  error) {
	 := syscall(funcPC(x509_SecItemExport_trampoline), uintptr(), uintptr(kSecFormatX509Cert),
		0 /* flags */, 0 /* keyParams */, uintptr(unsafe.Pointer(&)), 0)
	if  != 0 {
		return 0, OSStatus{"SecItemExport", int32()}
	}
	return , nil
}
func ()

const errSecItemNotFound = -25300
go:linkname x509_SecTrustSettingsCopyTrustSettings x509_SecTrustSettingsCopyTrustSettingsgo:cgo_import_dynamic x509_SecTrustSettingsCopyTrustSettings SecTrustSettingsCopyTrustSettings "/System/Library/Frameworks/Security.framework/Versions/A/Security"

func ( CFRef,  SecTrustSettingsDomain) ( CFRef,  error) {
	 := syscall(funcPC(x509_SecTrustSettingsCopyTrustSettings_trampoline), uintptr(), uintptr(),
		uintptr(unsafe.Pointer(&)), 0, 0, 0)
	if int32() == errSecItemNotFound {
		return 0, ErrNoTrustSettings
	} else if  != 0 {
		return 0, OSStatus{"SecTrustSettingsCopyTrustSettings", int32()}
	}
	return , nil
}
func ()
go:linkname x509_SecPolicyCopyProperties x509_SecPolicyCopyPropertiesgo:cgo_import_dynamic x509_SecPolicyCopyProperties SecPolicyCopyProperties "/System/Library/Frameworks/Security.framework/Versions/A/Security"

func ( CFRef) CFRef {
	 := syscall(funcPC(x509_SecPolicyCopyProperties_trampoline), uintptr(), 0, 0, 0, 0, 0)
	return CFRef()
}