Lines Matching refs:policy
620 // impose policy: if the signature itself draws to Apple, then so must the timestamp signature
636 // Return the TP policy used for signature verification.
642 CFRef<SecPolicyRef> policy;
643 MacOSError::check(SecPolicyCopy(CSSM_CERT_X_509v3, &CSSMOID_APPLE_TP_REVOCATION_CRL, &policy.aref()));
649 MacOSError::check(SecPolicySetValue(policy, &optData));
650 return policy.yield();
655 CFRef<SecPolicyRef> policy;
656 MacOSError::check(SecPolicyCopy(CSSM_CERT_X_509v3, &CSSMOID_APPLE_TP_REVOCATION_OCSP, &policy.aref()));
662 MacOSError::check(SecPolicySetValue(policy, &optData));
663 return policy.yield();