2017-09-06 23:07:16 +08:00
|
|
|
//
|
|
|
|
|
// OpenVPNCertificate.m
|
|
|
|
|
// OpenVPN Adapter
|
|
|
|
|
//
|
|
|
|
|
// Created by Sergey Abramchuk on 06.09.17.
|
|
|
|
|
//
|
|
|
|
|
//
|
|
|
|
|
|
|
|
|
|
#import <mbedtls/x509_crt.h>
|
|
|
|
|
|
2017-09-07 03:58:41 +08:00
|
|
|
#import "NSError+Message.h"
|
|
|
|
|
#import "OpenVPNError.h"
|
2017-09-06 23:07:16 +08:00
|
|
|
#import "OpenVPNCertificate.h"
|
|
|
|
|
|
|
|
|
|
@interface OpenVPNCertificate ()
|
|
|
|
|
|
2017-09-07 00:04:03 +08:00
|
|
|
@property (nonatomic, assign) mbedtls_x509_crt *crt;
|
2017-09-06 23:07:16 +08:00
|
|
|
|
|
|
|
|
@end
|
|
|
|
|
|
|
|
|
|
@implementation OpenVPNCertificate
|
|
|
|
|
|
|
|
|
|
- (instancetype)init
|
|
|
|
|
{
|
|
|
|
|
self = [super init];
|
|
|
|
|
if (self) {
|
|
|
|
|
self.crt = malloc(sizeof(mbedtls_x509_crt));
|
|
|
|
|
mbedtls_x509_crt_init(self.crt);
|
|
|
|
|
}
|
|
|
|
|
return self;
|
|
|
|
|
}
|
|
|
|
|
|
2017-09-07 04:02:22 +08:00
|
|
|
+ (OpenVPNCertificate *)certificateWithPEM:(NSData *)pemData error:(out NSError **)error {
|
2017-09-06 23:07:16 +08:00
|
|
|
OpenVPNCertificate *certificate = [OpenVPNCertificate new];
|
|
|
|
|
|
2017-09-06 23:10:26 +08:00
|
|
|
NSString *pemString = [[NSString alloc] initWithData:pemData encoding:NSUTF8StringEncoding];
|
|
|
|
|
|
|
|
|
|
int result = mbedtls_x509_crt_parse(certificate.crt, (const unsigned char *)pemString.UTF8String, pemData.length + 1);
|
2017-09-07 03:58:41 +08:00
|
|
|
if (result < 0) {
|
2017-09-06 23:18:36 +08:00
|
|
|
if (error) {
|
2017-09-07 03:58:41 +08:00
|
|
|
NSString *reason = [NSError reasonFromResult:result];
|
|
|
|
|
*error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{
|
|
|
|
|
NSLocalizedDescriptionKey: @"Failed to parse PEM data.",
|
|
|
|
|
NSLocalizedFailureReasonErrorKey: reason
|
|
|
|
|
}];
|
2017-09-06 23:18:36 +08:00
|
|
|
}
|
|
|
|
|
|
2017-09-06 23:10:26 +08:00
|
|
|
return nil;
|
|
|
|
|
}
|
2017-09-06 23:07:16 +08:00
|
|
|
|
|
|
|
|
return certificate;
|
|
|
|
|
}
|
|
|
|
|
|
2017-09-07 04:02:22 +08:00
|
|
|
+ (OpenVPNCertificate *)certificateWithDER:(NSData *)derData error:(out NSError **)error {
|
2017-09-06 23:07:16 +08:00
|
|
|
OpenVPNCertificate *certificate = [OpenVPNCertificate new];
|
|
|
|
|
|
2017-09-06 23:18:36 +08:00
|
|
|
int result = mbedtls_x509_crt_parse_der(certificate.crt, derData.bytes, derData.length);
|
2017-09-07 03:58:41 +08:00
|
|
|
if (result < 0) {
|
2017-09-06 23:18:36 +08:00
|
|
|
if (error) {
|
2017-09-07 03:58:41 +08:00
|
|
|
NSString *reason = [NSError reasonFromResult:result];
|
|
|
|
|
*error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{
|
|
|
|
|
NSLocalizedDescriptionKey: @"Failed to parse DER data.",
|
|
|
|
|
NSLocalizedFailureReasonErrorKey: reason
|
|
|
|
|
}];
|
2017-09-06 23:18:36 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil;
|
|
|
|
|
}
|
2017-09-06 23:07:16 +08:00
|
|
|
|
|
|
|
|
return certificate;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
- (void)dealloc {
|
2017-09-07 04:05:15 +08:00
|
|
|
mbedtls_x509_crt_free(self.crt);
|
|
|
|
|
free(self.crt);
|
2017-09-06 23:07:16 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
@end
|
