1

I'm having a string. I want to SecKeyRawSign and SecKeyRawVerify in swift3. I'm using Xcode 8.3.3

   func signString(string: String, privateKey: SecKey) -> NSData? {
    var digest = Data(count: Int(CC_SHA256_DIGEST_LENGTH))
    let stringData: Data = string.data(using: String.Encoding.utf8)!

    _ = digest.withUnsafeMutableBytes { (digestBytes) in
        stringData.withUnsafeBytes { (stringBytes) in
            CC_SHA256(stringBytes, CC_LONG(stringData.count), digestBytes)
        }
    }

    let signedData: NSMutableData = NSMutableData(length: SecKeyGetBlockSize(privateKey))!
    var signedDataLength: Int = signedData.length

    let err: OSStatus = SecKeyRawSign(
        privateKey,
        SecPadding.PKCS1SHA256,
        [UInt8](digest),
        digest.count,
        signedData.mutableBytes.assumingMemoryBound(to: UInt8.self),
        &signedDataLength
    )
    switch err {
    case noErr:
        return signedData
    default:
        return nil
    }    
}

Edited: I'm passing returned data from signString method to verifyString method. I'm not able to get, what string I signed earlier. 

func verifyString(signeddata: NSData,  publicKey: SecKey) -> String {

        var digest = Data(count: Int(CC_SHA256_DIGEST_LENGTH))
        let rawSignedData: Data =  signeddata as Data
        _ = digest.withUnsafeMutableBytes { (digestBytes) in
            rawSignedData.withUnsafeBytes { (stringBytes) in
                CC_SHA256(stringBytes, CC_LONG(rawSignedData.count), digestBytes)
            }
        }


        let unsignedData: NSMutableData = NSMutableData(length: SecKeyGetBlockSize(publicKey))!
        let unsignedDataLength: Int = unsignedData.length

        let err: OSStatus = SecKeyRawVerify(
            publicKey,
            SecPadding.PKCS1SHA256,
            [UInt8](digest),
            digest.count,
            unsignedData.mutableBytes.assumingMemoryBound(to: UInt8.self),
            unsignedDataLength
        )
        switch err {
        case noErr:
             let backToString2 = String(data: unsignedData as Data, encoding: String.Encoding.utf8) as String!
            return backToString2!
        default:
            return ""
        }


    }

But I can able to verify, If I pass the same string in the below method.

func verifyString(string: String, signature: NSData, publicKey: SecKey) -> Bool {
    var digest = Data(count: Int(CC_SHA256_DIGEST_LENGTH))
    let stringData: Data = string.data(using: String.Encoding.utf8)!

    _ = digest.withUnsafeMutableBytes { (digestBytes) in
        stringData.withUnsafeBytes { (stringBytes) in
            CC_SHA256(stringBytes, CC_LONG(stringData.count), digestBytes)
        }
    }


    let mutdata = NSMutableData(data: signature as Data)

    let err: OSStatus = SecKeyRawVerify(
        publicKey,
        SecPadding.PKCS1SHA256,
        [UInt8](digest),
        digest.count,
        mutdata.mutableBytes.assumingMemoryBound(to: UInt8.self),
        signature.length
    )
    switch err {
    case noErr:
        return true
    default:
        return false
    }



}
Senthilkumar
  • 2,471
  • 4
  • 30
  • 50
  • see this for e.g https://stackoverflow.com/questions/39515173/how-to-use-unsafemutablepointer-in-swift-3 – Anbu.Karthik Sep 22 '17 at 05:49
  • I tried with this, but its not work out. var digest2 = Data(digest as Data) // var keyData = Data(count: 64) let result = digest2.withUnsafeMutableBytes {mutableBytes in SecRandomCopyBytes(kSecRandomDefault, digest2.count, mutableBytes) } CC_SHA256(stringData.bytes, CC_LONG(stringData.length),UnsafeMutablePointer(result)) – Senthilkumar Sep 22 '17 at 06:27

1 Answers1

3

Please check :

func signString(string: String, privateKey: SecKey) -> NSData? {
    var digest = Data(count: Int(CC_SHA256_DIGEST_LENGTH))
    let stringData: Data = string.data(using: String.Encoding.utf8)!

    _ = digest.withUnsafeMutableBytes { (digestBytes) in
            stringData.withUnsafeBytes { (stringBytes) in
                CC_SHA256(stringBytes, CC_LONG(stringData.count), digestBytes)
            }
        }

    let signedData: NSMutableData = NSMutableData(length: SecKeyGetBlockSize(privateKey))!
    var signedDataLength: Int = signedData.length

    let err: OSStatus = SecKeyRawSign(
        privateKey,
        SecPadding.PKCS1SHA256,
        [UInt8](digest),
        digest.count,
        signedData.mutableBytes.assumingMemoryBound(to: UInt8.self),
        &signedDataLength
    )
    switch err {
        case noErr:
            return signedData
        default:
            return nil
    }    
}
Vini App
  • 7,339
  • 2
  • 26
  • 43