1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/MYKey.m Sat Apr 04 20:42:03 2009 -0700
1.3 @@ -0,0 +1,174 @@
1.4 +//
1.5 +// MYKey.m
1.6 +// MYCrypto
1.7 +//
1.8 +// Created by Jens Alfke on 3/21/09.
1.9 +// Copyright 2009 Jens Alfke. All rights reserved.
1.10 +//
1.11 +
1.12 +#import "MYKey.h"
1.13 +#import "MYCrypto_Private.h"
1.14 +#import "MYDigest.h"
1.15 +#import "MYErrorUtils.h"
1.16 +
1.17 +#if !USE_IPHONE_API
1.18 +
1.19 +
1.20 +#pragma mark -
1.21 +@implementation MYKey
1.22 +
1.23 +
1.24 +- (id) initWithKeyRef: (SecKeyRef)key {
1.25 + self = [super initWithKeychainItemRef: (SecKeychainItemRef)key];
1.26 + if (self) {
1.27 + _key = key; // superclass has already CFRetained it
1.28 + }
1.29 + return self;
1.30 +}
1.31 +
1.32 +- (id) _initWithKeyData: (NSData*)data
1.33 + forKeychain: (SecKeychainRef)keychain {
1.34 + SecKeyImportExportParameters params = {};
1.35 + SecKeyRef key = importKey(data, self.keyType, keychain, ¶ms);
1.36 + if (!key) {
1.37 + [self release];
1.38 + return nil;
1.39 + }
1.40 + self = [super initWithKeychainItemRef: (SecKeychainItemRef)key];
1.41 + if (self) {
1.42 + _key = key;
1.43 + }
1.44 + CFRelease(key);
1.45 + return self;
1.46 +}
1.47 +
1.48 +- (id) initWithKeyData: (NSData*)data {
1.49 + return [self _initWithKeyData: data forKeychain: nil];
1.50 +}
1.51 +
1.52 +
1.53 +- (NSString*) description {
1.54 + return $sprintf(@"%@[%p]", [self class], _key); //FIX: Can we do anything better?
1.55 +}
1.56 +
1.57 +
1.58 +- (SecExternalItemType) keyType {
1.59 + AssertAbstractMethod();
1.60 +}
1.61 +
1.62 +
1.63 +@synthesize keyRef=_key;
1.64 +
1.65 +
1.66 +- (MYKey*) asKey {
1.67 + return self;
1.68 +}
1.69 +
1.70 +- (const CSSM_KEY*) cssmKey {
1.71 + const CSSM_KEY *cssmKey = NULL;
1.72 + Assert(check(SecKeyGetCSSMKey(_key, &cssmKey), @"SecKeyGetCSSMKey"), @"Failed to get CSSM_KEY");
1.73 + return cssmKey;
1.74 +}
1.75 +
1.76 +- (NSData*) exportKeyInFormat: (SecExternalFormat)format withPEM: (BOOL)withPEM {
1.77 + CFDataRef data = NULL;
1.78 + if (check(SecKeychainItemExport(_key, format, (withPEM ?kSecItemPemArmour :0), NULL, &data),
1.79 + @"SecKeychainItemExport"))
1.80 + return [(id)CFMakeCollectable(data) autorelease];
1.81 + else
1.82 + return nil;
1.83 +}
1.84 +
1.85 +- (NSData*) keyData {
1.86 + return [self exportKeyInFormat: kSecFormatRawKey withPEM: NO];
1.87 +}
1.88 +
1.89 +- (NSString*) name {
1.90 + return [self stringValueOfAttribute: kSecKeyPrintName];
1.91 +}
1.92 +
1.93 +- (void) setName: (NSString*)name {
1.94 + [self setValue: name ofAttribute: kSecKeyPrintName];
1.95 +}
1.96 +
1.97 +- (NSString*) comment {
1.98 + return [self stringValueOfAttribute: kSecKeyApplicationTag];
1.99 +}
1.100 +
1.101 +- (void) setComment: (NSString*)comment {
1.102 + [self setValue: comment ofAttribute: kSecKeyApplicationTag];
1.103 +}
1.104 +
1.105 +- (NSString*) alias {
1.106 + return [self stringValueOfAttribute: kSecKeyAlias];
1.107 +}
1.108 +
1.109 +- (void) setAlias: (NSString*)alias {
1.110 + [self setValue: alias ofAttribute: kSecKeyAlias];
1.111 +}
1.112 +
1.113 +
1.114 +@end
1.115 +
1.116 +
1.117 +
1.118 +
1.119 +#pragma mark -
1.120 +#pragma mark UTILITY FUNCTIONS:
1.121 +
1.122 +
1.123 +SecKeyRef importKey(NSData *data,
1.124 + SecExternalItemType type,
1.125 + SecKeychainRef keychain,
1.126 + SecKeyImportExportParameters *params) {
1.127 + SecExternalFormat inputFormat = (type==kSecItemTypeSessionKey) ?kSecFormatRawKey :kSecFormatOpenSSL;
1.128 + CFArrayRef items = NULL;
1.129 +
1.130 + params->version = SEC_KEY_IMPORT_EXPORT_PARAMS_VERSION;
1.131 + params->flags |= kSecKeyImportOnlyOne;
1.132 + if (keychain) {
1.133 + params->keyAttributes = CSSM_KEYATTR_EXTRACTABLE | CSSM_KEYATTR_PERMANENT;
1.134 + if (type==kSecItemTypeSessionKey)
1.135 + params->keyUsage = CSSM_KEYUSE_ENCRYPT | CSSM_KEYUSE_DECRYPT;
1.136 + else if (type==kSecItemTypePublicKey)
1.137 + params->keyUsage = CSSM_KEYUSE_ENCRYPT | CSSM_KEYUSE_VERIFY;
1.138 + else if (type==kSecItemTypePrivateKey)
1.139 + params->keyUsage = CSSM_KEYUSE_DECRYPT | CSSM_KEYUSE_SIGN;
1.140 + }
1.141 + if (!check(SecKeychainItemImport((CFDataRef)data, NULL, &inputFormat, &type,
1.142 + 0, params, keychain, &items),
1.143 + @"SecKeychainItemImport"))
1.144 + return nil;
1.145 + if (!items || CFArrayGetCount(items) != 1)
1.146 + return nil;
1.147 + SecKeyRef key = (SecKeyRef)CFRetain(CFArrayGetValueAtIndex(items,0));
1.148 + CFRelease(items);
1.149 + return key; // caller must CFRelease
1.150 +}
1.151 +
1.152 +
1.153 +#endif USE_IPHONE_API
1.154 +
1.155 +
1.156 +
1.157 +/*
1.158 + Copyright (c) 2009, Jens Alfke <jens@mooseyard.com>. All rights reserved.
1.159 +
1.160 + Redistribution and use in source and binary forms, with or without modification, are permitted
1.161 + provided that the following conditions are met:
1.162 +
1.163 + * Redistributions of source code must retain the above copyright notice, this list of conditions
1.164 + and the following disclaimer.
1.165 + * Redistributions in binary form must reproduce the above copyright notice, this list of conditions
1.166 + and the following disclaimer in the documentation and/or other materials provided with the
1.167 + distribution.
1.168 +
1.169 + THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR
1.170 + IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND
1.171 + FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRI-
1.172 + BUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
1.173 + (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
1.174 + PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
1.175 + CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF
1.176 + THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
1.177 + */