Marle
/
iOS
Vērot 1
Pievienot zvaigznīti 1
Atdalīts 0
Kods Problēmas 0 Izmaiņu pieprasījumi 0 Laidieni 0 Vikivietne Aktivitāte
Nav apraksta
4 Revīzijas
2 Atzari
Koks: d0c283573b
Atzari Tagi
${ item.name }
Izveidot atzaru ${ searchTerm }
no 'd0c283573b'
${ noResults }
iOS/Pods/FirebaseInstanceID/Firebase/InstanceID/FIRInstanceIDKeychain.m

FIRInstanceIDKeychain.m 6.5KB
Vēsture Neapstrādāts

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175 
  1. /*

  2.  * Copyright 2019 Google

  3.  *

  4.  * Licensed under the Apache License, Version 2.0 (the "License");

  5.  * you may not use this file except in compliance with the License.

  6.  * You may obtain a copy of the License at

  7.  *

  8.  *      http://www.apache.org/licenses/LICENSE-2.0

  9.  *

  10.  * Unless required by applicable law or agreed to in writing, software

  11.  * distributed under the License is distributed on an "AS IS" BASIS,

  12.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  13.  * See the License for the specific language governing permissions and

  14.  * limitations under the License.

  15.  */

  16. 

  17. #import "FIRInstanceIDKeychain.h"

  18. 

  19. #import "FIRInstanceIDKeyPair.h"

  20. #import "FIRInstanceIDKeyPairUtilities.h"

  21. #import "FIRInstanceIDLogger.h"

  22. 

  23. NSString *const kFIRInstanceIDKeychainErrorDomain = @"com.google.iid";

  24. 

  25. static const NSUInteger kRSA2048KeyPairSize = 2048;

  26. 

  27. @interface FIRInstanceIDKeychain () {

  28.   dispatch_queue_t _keychainOperationQueue;

  29. }

  30. 

  31. @end

  32. 

  33. @implementation FIRInstanceIDKeychain

  34. 

  35. + (instancetype)sharedInstance {

  36.   static FIRInstanceIDKeychain *sharedInstance;

  37.   static dispatch_once_t onceToken;

  38.   dispatch_once(&onceToken, ^{

  39.     sharedInstance = [[FIRInstanceIDKeychain alloc] init];

  40.   });

  41.   return sharedInstance;

  42. }

  43. 

  44. - (instancetype)init {

  45.   self = [super init];

  46.   if (self) {

  47.     _keychainOperationQueue =

  48.         dispatch_queue_create("com.google.FirebaseInstanceID.Keychain", DISPATCH_QUEUE_SERIAL);

  49.   }

  50.   return self;

  51. }

  52. 

  53. - (CFTypeRef)itemWithQuery:(NSDictionary *)keychainQuery {

  54.   __block SecKeyRef keyRef = NULL;

  55.   dispatch_sync(_keychainOperationQueue, ^{

  56.     OSStatus status =

  57.         SecItemCopyMatching((__bridge CFDictionaryRef)keychainQuery, (CFTypeRef *)&keyRef);

  58. 

  59.     if (status != noErr) {

  60.       if (keyRef) {

  61.         CFRelease(keyRef);

  62.       }

  63.       FIRInstanceIDLoggerDebug(

  64.           kFIRInstanceIDKeychainReadItemError,

  65.           @"No info is retrieved from Keychain OSStatus: %d with the keychain query %@",

  66.           (int)status, keychainQuery);

  67.     }

  68.   });

  69.   return keyRef;

  70. }

  71. 

  72. - (void)removeItemWithQuery:(NSDictionary *)keychainQuery

  73.                     handler:(void (^)(NSError *error))handler {

  74.   dispatch_async(_keychainOperationQueue, ^{

  75.     OSStatus status = SecItemDelete((__bridge CFDictionaryRef)keychainQuery);

  76.     if (status != noErr) {

  77.       FIRInstanceIDLoggerDebug(

  78.           kFIRInstanceIDKeychainDeleteItemError,

  79.           @"Couldn't delete item from Keychain OSStatus: %d with the keychain query %@",

  80.           (int)status, keychainQuery);

  81.     }

  82. 

  83.     if (handler) {

  84.       NSError *error;

  85.       // When item is not found, it should NOT be considered as an error. The operation should

  86.       // continue.

  87.       if (status != noErr && status != errSecItemNotFound) {

  88.         error = [NSError errorWithDomain:kFIRInstanceIDKeychainErrorDomain

  89.                                     code:status

  90.                                 userInfo:nil];

  91.       }

  92.       dispatch_async(dispatch_get_main_queue(), ^{

  93.         handler(error);

  94.       });

  95.     }

  96.   });

  97. }

  98. 

  99. - (void)addItemWithQuery:(NSDictionary *)keychainQuery handler:(void (^)(NSError *))handler {

  100.   dispatch_async(_keychainOperationQueue, ^{

  101.     OSStatus status = SecItemAdd((__bridge CFDictionaryRef)keychainQuery, NULL);

  102. 

  103.     if (handler) {

  104.       NSError *error;

  105.       if (status != noErr) {

  106.         FIRInstanceIDLoggerWarning(kFIRInstanceIDKeychainAddItemError,

  107.                                    @"Couldn't add item to Keychain OSStatus: %d", (int)status);

  108.         error = [NSError errorWithDomain:kFIRInstanceIDKeychainErrorDomain

  109.                                     code:status

  110.                                 userInfo:nil];

  111.       }

  112.       dispatch_async(dispatch_get_main_queue(), ^{

  113.         handler(error);

  114.       });

  115.     }

  116.   });

  117. }

  118. 

  119. - (FIRInstanceIDKeyPair *)generateKeyPairWithPrivateTag:(NSString *)privateTag

  120.                                               publicTag:(NSString *)publicTag {

  121.   // TODO(chliangGoogle) this is called by appInstanceID, which is an internal API used by other

  122.   // Firebase teams, will see if we can make it async.

  123.   NSData *publicTagData = [publicTag dataUsingEncoding:NSUTF8StringEncoding];

  124.   NSData *privateTagData = [privateTag dataUsingEncoding:NSUTF8StringEncoding];

  125. 

  126.   NSDictionary *privateKeyAttr = @{

  127.     (__bridge id)kSecAttrIsPermanent : @YES,

  128.     (__bridge id)kSecAttrApplicationTag : privateTagData,

  129.     (__bridge id)kSecAttrLabel : @"Firebase InstanceID Key Pair Private Key",

  130.     (__bridge id)kSecAttrAccessible : (__bridge id)kSecAttrAccessibleAlwaysThisDeviceOnly,

  131.   };

  132. 

  133.   NSDictionary *publicKeyAttr = @{

  134.     (__bridge id)kSecAttrIsPermanent : @YES,

  135.     (__bridge id)kSecAttrApplicationTag : publicTagData,

  136.     (__bridge id)kSecAttrLabel : @"Firebase InstanceID Key Pair Public Key",

  137.     (__bridge id)kSecAttrAccessible : (__bridge id)kSecAttrAccessibleAlwaysThisDeviceOnly,

  138.   };

  139. 

  140.   NSDictionary *keyPairAttributes = @{

  141.     (__bridge id)kSecAttrKeyType : (__bridge id)kSecAttrKeyTypeRSA,

  142.     (__bridge id)kSecAttrLabel : @"Firebase InstanceID Key Pair",

  143.     (__bridge id)kSecAttrKeySizeInBits : @(kRSA2048KeyPairSize),

  144.     (__bridge id)kSecPrivateKeyAttrs : privateKeyAttr,

  145.     (__bridge id)kSecPublicKeyAttrs : publicKeyAttr,

  146.   };

  147. 

  148.   __block SecKeyRef privateKey = NULL;

  149.   __block SecKeyRef publicKey = NULL;

  150.   dispatch_sync(_keychainOperationQueue, ^{

  151.     // SecKeyGeneratePair does not allow you to set kSetAttrAccessible on the keys. We need the keys

  152.     // to be accessible even when the device is locked (i.e. app is woken up during a push

  153.     // notification, or some background refresh).

  154.     OSStatus status =

  155.         SecKeyGeneratePair((__bridge CFDictionaryRef)keyPairAttributes, &publicKey, &privateKey);

  156.     if (status != noErr || publicKey == NULL || privateKey == NULL) {

  157.       FIRInstanceIDLoggerWarning(kFIRInstanceIDKeychainCreateKeyPairError,

  158.                                  @"Couldn't create keypair from Keychain OSStatus: %d",

  159.                                  (int)status);

  160.     }

  161.   });

  162.   // Extract the actual public and private key data from the Keychain

  163.   NSDictionary *publicKeyDataQuery = FIRInstanceIDKeyPairQuery(publicTag, YES, YES);

  164.   NSDictionary *privateKeyDataQuery = FIRInstanceIDKeyPairQuery(privateTag, YES, YES);

  165. 

  166.   NSData *publicKeyData = (__bridge NSData *)[self itemWithQuery:publicKeyDataQuery];

  167.   NSData *privateKeyData = (__bridge NSData *)[self itemWithQuery:privateKeyDataQuery];

  168. 

  169.   return [[FIRInstanceIDKeyPair alloc] initWithPrivateKey:privateKey

  170.                                                 publicKey:publicKey

  171.                                             publicKeyData:publicKeyData

  172.                                            privateKeyData:privateKeyData];

  173. }

  174. 

  175. @end