在iphone上生成密钥对并打印以记录为NSString [英] Generate key pair on iphone and print to log as NSString

问题描述

遵循Apple示例代码： http ：//developer.apple.com/library/ios/#documentation/Security/Conceptual/CertKeyTrustProgGuide/iPhone_Tasks/iPhone_Tasks.html

我能够使用下面的代码片段成功生成密钥对，但无法打印密钥...

函数SecKeyGeneratePair（） - 将密钥作为SecKeyRef类型返回。 / p>

我不知道如何处理这种类型，我知道这是钥匙串表示，但我怎么能实际查看密钥对为NSString？
更具体地说，如何将SecKeyRef转换为NSString ??

  static const UInt8 publicKeyIdentifier [] =com.apple .sample.publickey\0\" ; 
 static const UInt8 privateKeyIdentifier [] =com.apple.sample.privatekey\0; 
 // 1 
 
 
  - （无效）generateKeyPairPlease 
 {
 OSStatus status = noErr; 
 NSMutableDictionary * privateKeyAttr = [[NSMutableDictionary alloc] init]; 
 NSMutableDictionary * publicKeyAttr = [[NSMutableDictionary alloc] init]; 
 NSMutableDictionary * keyPairAttr = [[NSMutableDictionary alloc] init]; 
 // 2 
 
 NSData * publicTag = [NSData dataWithBytes：publicKeyIdentifier 
 length：strlen（（const char *）publicKeyIdentifier）]; 
 NSData * privateTag = [NSData dataWithBytes：privateKeyIdentifier 
 length：strlen（（const char *）privateKeyIdentifier）]; 
 // 3 
 
 SecKeyRef publicKey = NULL; 
 SecKeyRef privateKey = NULL; // 4 
 
 [keyPairAttr setObject：（id）kSecAttrKeyTypeRSA 
 forKey：（id）kSecAttrKeyType]; // 5 
 [keyPairAttr setObject：[NSNumber numberWithInt：1024] 
 forKey：（id）kSecAttrKeySizeInBits]; // 6 
 
 [privateKeyAttr setObject：[NSNumber numberWithBool：YES] 
 forKey：（id）kSecAttrIsPermanent]; // 7 
 [privateKeyAttr setObject：privateTag 
 forKey：（id）kSecAttrApplicationTag]; // 8 
 
 [publicKeyAttr setObject：[NSNumber numberWithBool：YES] 
 forKey：（id）kSecAttrIsPermanent]; // 9 
 [publicKeyAttr setObject：publicTag 
 forKey：（id）kSecAttrApplicationTag]; // 10 
 
 [keyPairAttr setObject：privateKeyAttr 
 forKey：（id）kSecPrivateKeyAttrs]; // 11 
 [keyPairAttr setObject：publicKeyAttr 
 forKey：（id）kSecPublicKeyAttrs]; // 12 
 
 status = SecKeyGeneratePair（（CFDictionaryRef）keyPairAttr，
& publicKey，& privateKey）; // 13 
 //错误处理... 
 
 
 if（privateKeyAttr）[privateKeyAttr release]; 
 if（publicKeyAttr）[publicKeyAttr release]; 
 if（keyPairAttr）[keyPairAttr release]; 
 if（publicKey）CFRelease（publicKey）; 
 if（privateKey）CFRelease（privateKey）; // 14 
} 
  

解决方案

你可以使用 SecItemCopyMatching 获取密钥的NSData。检查 getPublicKeyBits 方法/ doc / uid / DTS40008019-Classes_SecKeyWrapper_m-DontLinkElementID_17rel =nofollow noreferrer> Apple的CryptoExercise ，它实现了您所需要的。

然后你可以将 NSData 转换为字符串。也许， Base64 编码将满足您的需求。 这里你可以找到 Base64 iPhone的编码/解码示例。或者，此答案对于 Base64 编码也可能有用。

Following Apple example code in: http://developer.apple.com/library/ios/#documentation/Security/Conceptual/CertKeyTrustProgGuide/iPhone_Tasks/iPhone_Tasks.html

I'm able to successfully generate key-pair with the code snippet below, but unable to print the keys...

The function SecKeyGeneratePair() - returns the keys as SecKeyRef type.

I have no idea how to handle this type, I understand that this is the keychain representation but how can I actually view the key-pair as NSString?? More specifically, how to convert SecKeyRef to NSString??

static const UInt8 publicKeyIdentifier[] = "com.apple.sample.publickey\0";
static const UInt8 privateKeyIdentifier[] = "com.apple.sample.privatekey\0";
                                                            // 1


- (void)generateKeyPairPlease
{
    OSStatus status = noErr;
    NSMutableDictionary *privateKeyAttr = [[NSMutableDictionary alloc] init];
    NSMutableDictionary *publicKeyAttr = [[NSMutableDictionary alloc] init];
    NSMutableDictionary *keyPairAttr = [[NSMutableDictionary alloc] init];
                                                                // 2

    NSData * publicTag = [NSData dataWithBytes:publicKeyIdentifier
                                length:strlen((const char *)publicKeyIdentifier)];
    NSData * privateTag = [NSData dataWithBytes:privateKeyIdentifier
                               length:strlen((const char *)privateKeyIdentifier)];
                                                                // 3

    SecKeyRef publicKey = NULL;
    SecKeyRef privateKey = NULL;                                // 4

    [keyPairAttr setObject:(id)kSecAttrKeyTypeRSA
                                   forKey:(id)kSecAttrKeyType]; // 5
    [keyPairAttr setObject:[NSNumber numberWithInt:1024]
                             forKey:(id)kSecAttrKeySizeInBits]; // 6

    [privateKeyAttr setObject:[NSNumber numberWithBool:YES]
                               forKey:(id)kSecAttrIsPermanent]; // 7
    [privateKeyAttr setObject:privateTag
                            forKey:(id)kSecAttrApplicationTag]; // 8

    [publicKeyAttr setObject:[NSNumber numberWithBool:YES]
                               forKey:(id)kSecAttrIsPermanent]; // 9
    [publicKeyAttr setObject:publicTag
                            forKey:(id)kSecAttrApplicationTag]; // 10

    [keyPairAttr setObject:privateKeyAttr
                               forKey:(id)kSecPrivateKeyAttrs]; // 11
    [keyPairAttr setObject:publicKeyAttr
                                forKey:(id)kSecPublicKeyAttrs]; // 12

    status = SecKeyGeneratePair((CFDictionaryRef)keyPairAttr,
                                      &publicKey, &privateKey); // 13
//    error handling...


    if(privateKeyAttr) [privateKeyAttr release];
    if(publicKeyAttr) [publicKeyAttr release];
    if(keyPairAttr) [keyPairAttr release];
    if(publicKey) CFRelease(publicKey);
    if(privateKey) CFRelease(privateKey);                       // 14
}

解决方案

You can use SecItemCopyMatching to get key's NSData. Check getPublicKeyBits method in Apple's CryptoExercise, it implements exactly what you need.

Then you can convert NSData to a string. Perhaps, Base64 encoding will suite your needs. Here you can find Base64 encoding/decoding sample for iPhone. Alternatively, this answer may also be useful for Base64 encoding.

这篇关于在iphone上生成密钥对并打印以记录为NSString的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！