MYCrypto: MYKey.m@60e4cbbb5128

     1 //

     2 //  MYKey.m

     3 //  MYCrypto

     4 //

     5 //  Created by Jens Alfke on 3/21/09.

     6 //  Copyright 2009 Jens Alfke. All rights reserved.

     7 //

     9 #import "MYKey.h"

    10 #import "MYCrypto_Private.h"

    11 #import "MYDigest.h"

    12 #import "MYErrorUtils.h"

    14 #if !USE_IPHONE_API

    17 #pragma mark -

    18 @implementation MYKey

    21 - (id) initWithKeyRef: (SecKeyRef)key {

    22     return [super initWithKeychainItemRef: (SecKeychainItemRef)key];

    23 }

    25 - (id) _initWithKeyData: (NSData*)data

    26             forKeychain: (SecKeychainRef)keychain {

    27     SecKeyImportExportParameters params = {};

    28     SecKeyRef key = importKey(data, self.keyType, keychain, &params);

    29     if (!key) {

    30         [self release];

    31         return nil;

    32     }

    33     self = [self initWithKeyRef: key];

    34     CFRelease(key);

    35     return self;

    36 }

    38 - (id) initWithKeyData: (NSData*)data {

    39     return [self _initWithKeyData: data forKeychain: nil];

    40 }

    43 - (SecExternalItemType) keyType {

    44     AssertAbstractMethod();

    45 }

    48 - (SecKeyRef) keyRef {

    49     return (SecKeyRef) self.keychainItemRef;

    50 }

    52 - (const CSSM_KEY*) cssmKey {

    53     const CSSM_KEY *cssmKey = NULL;

    54     Assert(check(SecKeyGetCSSMKey(self.keyRef, &cssmKey), @"SecKeyGetCSSMKey"), @"Failed to get CSSM_KEY");

    55     return cssmKey;

    56 }

    58 - (NSData*) exportKeyInFormat: (SecExternalFormat)format withPEM: (BOOL)withPEM {

    59     CFDataRef data = NULL;

    60     if (check(SecKeychainItemExport(self.keyRef, format, (withPEM ?kSecItemPemArmour :0), NULL, &data),

    61               @"SecKeychainItemExport"))

    62         return [(id)CFMakeCollectable(data) autorelease];

    63     else

    64         return nil;

    65 }

    67 - (NSData*) keyData {

    68     return [self exportKeyInFormat: kSecFormatRawKey withPEM: NO];

    69 }

    71 - (NSString*) name {

    72     return [self stringValueOfAttribute: kSecKeyPrintName];

    73 }

    75 - (void) setName: (NSString*)name {

    76     [self setValue: name ofAttribute: kSecKeyPrintName];

    77 }

    79 - (NSString*) comment {

    80     return [self stringValueOfAttribute: kSecKeyApplicationTag];

    81 }

    83 - (void) setComment: (NSString*)comment {

    84     [self setValue: comment ofAttribute: kSecKeyApplicationTag];

    85 }

    87 - (NSString*) alias {

    88     return [self stringValueOfAttribute: kSecKeyAlias];

    89 }

    91 - (void) setAlias: (NSString*)alias {

    92     [self setValue: alias ofAttribute: kSecKeyAlias];

    93 }

    96 @end

   101 #pragma mark -

   102 #pragma mark UTILITY FUNCTIONS:

   105 SecKeyRef importKey(NSData *data,

   106                     SecExternalItemType type,

   107                     SecKeychainRef keychain,

   108                     SecKeyImportExportParameters *params) {

   109     SecExternalFormat inputFormat = (type==kSecItemTypeSessionKey) ?kSecFormatRawKey :kSecFormatOpenSSL;

   110     CFArrayRef items = NULL;

   112     params->version = SEC_KEY_IMPORT_EXPORT_PARAMS_VERSION;

   113     params->flags |= kSecKeyImportOnlyOne;

   114     if (keychain) {

   115         params->keyAttributes = CSSM_KEYATTR_EXTRACTABLE | CSSM_KEYATTR_PERMANENT;

   116         if (type==kSecItemTypeSessionKey)

   117             params->keyUsage = CSSM_KEYUSE_ENCRYPT | CSSM_KEYUSE_DECRYPT;

   118         else if (type==kSecItemTypePublicKey)

   119             params->keyUsage = CSSM_KEYUSE_ENCRYPT | CSSM_KEYUSE_VERIFY;

   120         else if (type==kSecItemTypePrivateKey)

   121             params->keyUsage = CSSM_KEYUSE_DECRYPT | CSSM_KEYUSE_SIGN;

   122     }

   123     if (!check(SecKeychainItemImport((CFDataRef)data, NULL, &inputFormat, &type,

   124                                      0, params, keychain, &items),

   125                @"SecKeychainItemImport"))

   126         return nil;

   127     if (!items || CFArrayGetCount(items) != 1)

   128         return nil;

   129     SecKeyRef key = (SecKeyRef)CFRetain(CFArrayGetValueAtIndex(items,0));

   130     CFRelease(items);

   131     return key; // caller must CFRelease

   132 }

   135 #endif USE_IPHONE_API

   139 /*

   140  Copyright (c) 2009, Jens Alfke <jens@mooseyard.com>. All rights reserved.

   142  Redistribution and use in source and binary forms, with or without modification, are permitted

   143  provided that the following conditions are met:

   145  * Redistributions of source code must retain the above copyright notice, this list of conditions

   146  and the following disclaimer.

   147  * Redistributions in binary form must reproduce the above copyright notice, this list of conditions

   148  and the following disclaimer in the documentation and/or other materials provided with the

   149  distribution.

   151  THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR

   152  IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND

   153  FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRI-

   154  BUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES

   155  (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR

   156   PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN

   157  CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF

   158  THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

   159  */

author	snej@snej.local
	Sat Apr 04 22:56:13 2009 -0700 (2009-04-04)
changeset 1	60e4cbbb5128
parent 0	0a6527af039b
child 2	8982b8fada63
permissions	-rw-r--r--