Swift从privateKey创建secKey

pxy2qtax 于 2023-09-30 发布在 Swift

关注(0)|答案(1)|浏览(121)

我是新来的，但我有一个私钥，我从p12 cert使用此命令获得它
openssl pkcs12 -in cert.p12 -nodes -out private.key.pem -nocerts
这是结果文件的内容
行李属性localKeyID：== friendlyName：==关键属性：- 开始PRIVATE KEY- MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQg1e12SFqNnD2aiLtB 2x5+K0R2pZDaBh2Drt09zLuL5imhRANCAASduIdkrmXpf5681JwnJHkcMi5zVPAS YFUig95A2w7flEY1lNtZcy/IRDQidqu/6BqLqe0V8P/CBZDa4hvKGzkE -结束PRIVATE KEY-
然后我试图从这个文件的内容创建一个secKey，但我总是得到相同的错误
非托管（_value：错误域=NSOSStatusErrorDomain Code=-50“从数据创建EC私钥失败”UserInfo={numberOfErrorsDeep=0，NSDescription=从数据创建EC私钥失败}）
这里的代码

func test() {
    let pemContent = """
     MIGHAgEAMBMGByqGSM49AgEGCCqGSM49AwEHBG0wawIBAQQg1e12SFqNnD2aiLtB
     2x5+K0R2pZDaBh2Drt09zLuL5imhRANCAASduIdkrmXpf5681JwnJHkcMi5zVPAS
     YFUig95A2w7flEY1lNtZcy/IRDQidqu/6BqLqe0V8P/CBZDa4hvKGzkE
     """
    let pemData = pemContent
        .replacingOccurrences(of: "\n", with: "")
        .trimmingCharacters(in: .whitespacesAndNewlines)
    guard let decodedData = Data(base64Encoded: pemData) else {
        fatalError("Failed to decode Base64 data")
    }
    var attribute = [
        kSecAttrKeyType: kSecAttrKeyTypeECSECPrimeRandom,
        kSecAttrKeyClass: kSecAttrKeyClassPrivate,
        kSecAttrKeySizeInBits: 256
    ] as CFDictionary
    // Create the key
    var error: Unmanaged<CFError>?
    guard let secKey = SecKeyCreateWithData(decodedData as CFData,
                                            [
                                                kSecAttrKeyType: kSecAttrKeyTypeECSECPrimeRandom,
                                                kSecAttrKeyClass: kSecAttrKeyClassPrivate,
                                                kSecAttrKeySizeInBits: 256
                                            ] as CFDictionary,
                                            &error) else {
        if let createKeyError = error {
            print("Error creating key: \(createKeyError.takeRetainedValue() as Error)")
        }
        fatalError("Failed to create key")
    }
    
    // Successfully created SecKey
    print("SecKey created: \(secKey)")
}

注：相同的关键是工作正常，当我尝试在Android平台，但不是在iOS

swift

来源：https://stackoverflow.com/questions/77128002/swift-creating-seckey-from-privatekey

1条答案

按热度按时间

rmbxnbpk1#

我能够找到一种方法来做到这一点，我将张贴在这里的任何人有同样的问题，与this question的帮助

func privateKeyFromCertificate() -> SecKey {
      let certName : String = "yourCertName"
      let resourcePath: String = Bundle.main.path(forResource: certName, ofType: "p12")!
      let p12Data: NSData = NSData(contentsOfFile: resourcePath)!
      let key : NSString = kSecImportExportPassphrase as NSString
      let options : NSDictionary = [key : "CertificatePassword"]
      var privateKeyRef: SecKey? = nil
      var items : CFArray?
      let securityError: OSStatus = SecPKCS12Import(p12Data, options, &items)
      //let description : CFString = CFCopyDescription(items)
      //print(description)
      let theArray : CFArray = items!
      if securityError == noErr && CFArrayGetCount(theArray) > 0 {
          let newArray = theArray as [AnyObject] as NSArray
          let dictionary = newArray.object(at: 0)
          if let secIdentity = (dictionary as AnyObject).value(forKey: kSecImportItemIdentity as String) {
                      let securityError = SecIdentityCopyPrivateKey(secIdentity as! SecIdentity , &privateKeyRef)
                      if securityError != noErr {
                          privateKeyRef = nil
                      }
                  }
          
      }
    
    var error:Unmanaged<CFError>?
    if let cfdata = SecKeyCopyExternalRepresentation(privateKeyRef!, &error) {
       let data:Data = cfdata as Data
       let b64Key = data.base64EncodedString()
    }
      return privateKeyRef!
  }

展开查看全部

赞(0）回复(0）举报 2023-09-30

我来回答

Swift从privateKey创建secKey

1条答案

相关问题

热门标签

最新问答