Skip to content

Commit

Permalink
remove unused signing code from swift
Browse files Browse the repository at this point in the history
  • Loading branch information
@iaik-jheher
iaik-jheher committed Aug 23, 2024
1 parent 74088be commit c4c2a4f
Showing 1 changed file with 0 additions and 80 deletions.
80 changes: 0 additions & 80 deletions supreme/src/swift/Krypto.swift
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,88 +6,8 @@
import CryptoKit
import Foundation

@objc public class SignerProxy: NSObject {
let publicKey: SecKey
let privateKey: SecKey
init(_ pubKey: SecKey, _ privKey: SecKey) {
publicKey = pubKey
privateKey = privKey
}

@objc public func getPublicKey() throws -> Data
{
var error: Unmanaged<CFError>?
guard let result = SecKeyCopyExternalRepresentation(publicKey, &error)
else { throw error!.takeRetainedValue() as Error }
return result as Data
}

@objc public func sign(_ digest: String, _ data: Data) throws -> Data
{
let algorithm: SecKeyAlgorithm = switch digest {
case "SHA256": .ecdsaSignatureMessageX962SHA256
case "SHA384": .ecdsaSignatureMessageX962SHA384
case "SHA512": .ecdsaSignatureMessageX962SHA512
default: throw RuntimeError("Unsupported digest \(digest)")
}
guard SecKeyIsAlgorithmSupported(privateKey, .sign, algorithm)
else { throw RuntimeError("ECDSA with \(digest) is unsupported by this key") }

var error: Unmanaged<CFError>?
guard let signature = SecKeyCreateSignature(privateKey, algorithm, data as CFData, &error) as Data?
else { throw error!.takeRetainedValue() as Error }
return signature
}
}

@objc public class Krypto: NSObject {

// =========== SIGNING

@objc public static func createAttestedP256Key(_ alias: String) throws -> SignerProxy
{
guard let bundleId = Bundle.main.bundleIdentifier
else { throw RuntimeError("Failed to retrieve main bundle identifier") }
let tag = "kmp-crypto-\(bundleId)"
fputs("zero\n", stderr)
//var error: Unmanaged<CFError>?
/*guard let access = SecAccessControlCreateWithFlags(
kCFAllocatorDefault,
kSecAttrAccessibleWhenUnlockedThisDeviceOnly,
.privateKeyUsage,
&error)
else { throw error!.takeRetainedValue() as Error }*/

let privateKeyParams = [
kSecAttrLabel: "privkey-\(alias)",
kSecAttrIsPermanent: true,
kSecAttrApplicationTag: tag
] as CFDictionary
let publicKeyParams = [
kSecAttrLabel: "pubkey-\(alias)",
kSecAttrIsPermanent: false,
kSecAttrApplicationTag: tag
] as CFDictionary

let parameters = [
kSecAttrKeyType: kSecAttrKeyTypeEC,
kSecAttrKeySizeInBits: 256,
kSecAttrTokenID: kSecAttrTokenIDSecureEnclave,
kSecPublicKeyAttrs: publicKeyParams,
kSecPrivateKeyAttrs: privateKeyParams,
] as CFDictionary

fputs("one\n", stderr)
var pubKey, privKey: SecKey?
let status = SecKeyGeneratePair(parameters, &pubKey, &privKey)
if (status != errSecSuccess) {
let e = SecCopyErrorMessageString(status, nil) as String? ?? "Unspecified security error"
throw RuntimeError("Failed to generate key: \(e)")
}
fputs("three\n", stderr)
return SignerProxy(pubKey!, privKey!)
}

// =========== VERIFICATION

fileprivate static func verifyECDSA_P256(_ pubkeyDER: Data, _ sigDER: Data, _ data: any Digest) throws -> Bool {
Expand Down

0 comments on commit c4c2a4f

Please sign in to comment.