
264 lines
11 KiB
Raw Permalink Normal View History

2020-03-04 07:14:38 +00:00
import Foundation
import Combine
2020-03-04 07:14:38 +00:00
import Security
import CryptoTokenKit
import LocalAuthentication
import SecretKit
2020-03-04 07:14:38 +00:00
extension SmartCard {
2022-01-02 02:45:03 +00:00
/// An implementation of Store backed by a Smart Card.
public final class Store: SecretStore {
2020-03-04 07:14:38 +00:00
2020-03-07 23:42:40 +00:00
@Published public var isAvailable: Bool = false
2020-03-09 03:03:40 +00:00
public let id = UUID()
public private(set) var name = String(localized: "smart_card")
2020-05-16 06:19:00 +00:00
@Published public private(set) var secrets: [Secret] = []
private let watcher = TKTokenWatcher()
private var tokenID: String?
2020-03-04 07:14:38 +00:00
2022-01-02 02:45:03 +00:00
/// Initializes a Store.
2020-03-04 07:14:38 +00:00
public init() {
2020-03-18 03:41:37 +00:00
tokenID = watcher.nonSecureEnclaveTokens.first
watcher.setInsertionHandler { [reload = reloadSecretsInternal] string in
2020-03-09 03:03:40 +00:00
guard self.tokenID == nil else { return }
2020-03-06 06:47:13 +00:00
guard !string.contains("setoken") else { return }
2020-03-18 03:41:37 +00:00
2020-03-09 03:03:40 +00:00
self.tokenID = string
DispatchQueue.main.async {
2020-03-07 23:42:40 +00:00
self.watcher.addRemovalHandler(self.smartcardRemoved, forTokenID: string)
2020-03-07 23:20:59 +00:00
2020-03-09 03:03:40 +00:00
if let tokenID = tokenID {
2020-03-07 23:42:40 +00:00
self.isAvailable = true
2020-03-09 03:03:40 +00:00
self.watcher.addRemovalHandler(self.smartcardRemoved, forTokenID: tokenID)
2020-03-04 07:14:38 +00:00
2020-03-06 08:52:44 +00:00
// MARK: Public API
public func create(name: String) throws {
fatalError("Keys must be created on the smart card.")
2020-03-04 07:14:38 +00:00
2020-03-06 08:52:44 +00:00
public func delete(secret: Secret) throws {
fatalError("Keys must be deleted on the smart card.")
2020-03-04 07:14:38 +00:00
public func sign(data: Data, with secret: Secret, for provenance: SigningRequestProvenance) throws -> Data {
2020-03-09 03:03:40 +00:00
guard let tokenID = tokenID else { fatalError() }
let context = LAContext()
context.localizedReason = String(localized: "auth_context_request_signature_description_\(provenance.origin.displayName)_\(")
context.localizedCancelTitle = String(localized: "auth_context_request_deny_button")
let attributes = KeychainDictionary([
2020-03-06 08:52:44 +00:00
kSecClass: kSecClassKey,
kSecAttrKeyClass: kSecAttrKeyClassPrivate,
kSecAttrApplicationLabel: as CFData,
2020-03-09 03:03:40 +00:00
kSecAttrTokenID: tokenID,
kSecUseAuthenticationContext: context,
2020-03-06 08:52:44 +00:00
kSecReturnRef: true
2020-03-06 08:52:44 +00:00
var untyped: CFTypeRef?
let status = SecItemCopyMatching(attributes, &untyped)
if status != errSecSuccess {
throw KeychainError(statusCode: status)
guard let untypedSafe = untyped else {
throw KeychainError(statusCode: errSecSuccess)
let key = untypedSafe as! SecKey
var signError: SecurityError?
guard let signature = SecKeyCreateSignature(key, signatureAlgorithm(for: secret, allowRSA: true), data as CFData, &signError) else {
2020-03-06 08:52:44 +00:00
throw SigningError(error: signError)
return signature as Data
public func verify(signature: Data, for data: Data, with secret: Secret) throws -> Bool {
let attributes = KeychainDictionary([
kSecAttrKeyType: secret.algorithm.secAttrKeyType,
kSecAttrKeySizeInBits: secret.keySize,
kSecAttrKeyClass: kSecAttrKeyClassPublic
var verifyError: SecurityError?
let untyped: CFTypeRef? = SecKeyCreateWithData(secret.publicKey as CFData, attributes, &verifyError)
guard let untypedSafe = untyped else {
throw KeychainError(statusCode: errSecSuccess)
let key = untypedSafe as! SecKey
let verified = SecKeyVerifySignature(key, signatureAlgorithm(for: secret, allowRSA: true), data as CFData, signature as CFData, &verifyError)
if !verified, let verifyError {
if verifyError.takeUnretainedValue() ~= .verifyError {
return false
} else {
throw SigningError(error: verifyError)
return verified
public func existingPersistedAuthenticationContext(secret: Secret) -> PersistedAuthenticationContext? {
public func persistAuthentication(secret: Secret, forDuration: TimeInterval) throws {
2020-03-04 07:14:38 +00:00
/// Reloads all secrets from the store.
public func reloadSecrets() {
2020-03-04 07:14:38 +00:00
2020-03-06 08:52:44 +00:00
extension SmartCard.Store {
@Sendable private func reloadSecretsInternal() {
self.isAvailable = self.tokenID != nil
let before = self.secrets
if self.secrets != before { .secretStoreReloaded, object: self)
2022-01-02 02:45:03 +00:00
/// Resets the token ID and reloads secrets.
/// - Parameter tokenID: The ID of the token that was removed.
2020-05-16 06:19:00 +00:00
private func smartcardRemoved(for tokenID: String? = nil) {
2020-03-09 03:03:40 +00:00
self.tokenID = nil
2020-03-07 23:42:40 +00:00
2022-01-02 02:45:03 +00:00
/// Loads all secrets from the store.
2020-05-16 06:19:00 +00:00
private func loadSecrets() {
2020-03-09 03:03:40 +00:00
guard let tokenID = tokenID else { return }
let fallbackName = String(localized: "smart_card")
if let driverName = watcher.tokenInfo(forTokenID: tokenID)?.driverName {
name = driverName
2020-03-18 03:41:37 +00:00
} else {
name = fallbackName
2020-03-18 03:41:37 +00:00
let attributes = KeychainDictionary([
2020-03-06 08:52:44 +00:00
kSecClass: kSecClassKey,
2020-03-09 03:03:40 +00:00
kSecAttrTokenID: tokenID,
2020-03-06 08:52:44 +00:00
kSecReturnRef: true,
kSecMatchLimit: kSecMatchLimitAll,
kSecReturnAttributes: true
2020-03-06 08:52:44 +00:00
var untyped: CFTypeRef?
2020-03-06 09:05:20 +00:00
SecItemCopyMatching(attributes, &untyped)
2020-03-06 08:52:44 +00:00
guard let typed = untyped as? [[CFString: Any]] else { return }
let wrapped = {
let name = $0[kSecAttrLabel] as? String ?? String(localized: "unnamed_secret")
2020-03-09 03:03:40 +00:00
let tokenID = $0[kSecAttrApplicationLabel] as! Data
let algorithm = Algorithm(secAttr: $0[kSecAttrKeyType] as! NSNumber)
let keySize = $0[kSecAttrKeySizeInBits] as! Int
2020-03-06 08:52:44 +00:00
let publicKeyRef = $0[kSecValueRef] as! SecKey
let publicKeySecRef = SecKeyCopyPublicKey(publicKeyRef)!
let publicKeyAttributes = SecKeyCopyAttributes(publicKeySecRef) as! [CFString: Any]
let publicKey = publicKeyAttributes[kSecValueData] as! Data
return SmartCard.Secret(id: tokenID, name: name, algorithm: algorithm, keySize: keySize, publicKey: publicKey)
2020-03-06 08:52:44 +00:00
secrets.append(contentsOf: wrapped)
// MARK: Smart Card specific encryption/decryption/verification
extension SmartCard.Store {
/// Encrypts a payload with a specified key.
/// - Parameters:
/// - data: The payload to encrypt.
/// - secret: The secret to encrypt with.
/// - Returns: The encrypted data.
/// - Warning: Encryption functions are deliberately only exposed on a library level, and are not exposed in Secretive itself to prevent users from data loss. Any pull requests which expose this functionality in the app will not be merged.
public func encrypt(data: Data, with secret: SecretType) throws -> Data {
let context = LAContext()
context.localizedReason = String(localized: "auth_context_request_encrypt_description_\(")
context.localizedCancelTitle = String(localized: "auth_context_request_deny_button")
let attributes = KeychainDictionary([
kSecAttrKeyType: secret.algorithm.secAttrKeyType,
kSecAttrKeySizeInBits: secret.keySize,
kSecAttrKeyClass: kSecAttrKeyClassPublic,
kSecUseAuthenticationContext: context
var encryptError: SecurityError?
let untyped: CFTypeRef? = SecKeyCreateWithData(secret.publicKey as CFData, attributes, &encryptError)
guard let untypedSafe = untyped else {
throw KeychainError(statusCode: errSecSuccess)
let key = untypedSafe as! SecKey
guard let signature = SecKeyCreateEncryptedData(key, encryptionAlgorithm(for: secret), data as CFData, &encryptError) else {
throw SigningError(error: encryptError)
return signature as Data
/// Decrypts a payload with a specified key.
/// - Parameters:
/// - data: The payload to decrypt.
/// - secret: The secret to decrypt with.
/// - Returns: The decrypted data.
/// - Warning: Encryption functions are deliberately only exposed on a library level, and are not exposed in Secretive itself to prevent users from data loss. Any pull requests which expose this functionality in the app will not be merged.
public func decrypt(data: Data, with secret: SecretType) throws -> Data {
guard let tokenID = tokenID else { fatalError() }
let context = LAContext()
context.localizedReason = String(localized: "auth_context_request_decrypt_description_\(")
context.localizedCancelTitle = String(localized: "auth_context_request_deny_button")
let attributes = KeychainDictionary([
kSecClass: kSecClassKey,
kSecAttrKeyClass: kSecAttrKeyClassPrivate,
kSecAttrApplicationLabel: as CFData,
kSecAttrTokenID: tokenID,
kSecUseAuthenticationContext: context,
kSecReturnRef: true
var untyped: CFTypeRef?
let status = SecItemCopyMatching(attributes, &untyped)
if status != errSecSuccess {
throw KeychainError(statusCode: status)
guard let untypedSafe = untyped else {
throw KeychainError(statusCode: errSecSuccess)
let key = untypedSafe as! SecKey
var encryptError: SecurityError?
guard let signature = SecKeyCreateDecryptedData(key, encryptionAlgorithm(for: secret), data as CFData, &encryptError) else {
throw SigningError(error: encryptError)
return signature as Data
private func encryptionAlgorithm(for secret: SecretType) -> SecKeyAlgorithm {
switch (secret.algorithm, secret.keySize) {
case (.ellipticCurve, 256):
return .eciesEncryptionCofactorVariableIVX963SHA256AESGCM
case (.ellipticCurve, 384):
2023-09-13 05:12:17 +00:00
return .eciesEncryptionCofactorVariableIVX963SHA384AESGCM
case (.rsa, 1024), (.rsa, 2048):
return .rsaEncryptionOAEPSHA512AESGCM
2020-03-18 03:41:37 +00:00
extension TKTokenWatcher {
2022-01-02 02:45:03 +00:00
/// All available tokens, excluding the Secure Enclave.
2020-03-18 03:41:37 +00:00
fileprivate var nonSecureEnclaveTokens: [String] {
tokenIDs.filter { !$0.contains("setoken") }