OpenVPNAdapter/OpenVPN Adapter/OpenVPNCertificate.m

//
//  OpenVPNCertificate.m
//  OpenVPN Adapter
//
//  Created by Sergey Abramchuk on 06.09.17.
//
//

#import <mbedtls/x509_crt.h>
#import <mbedtls/pem.h>

#import "NSError+Message.h"
#import "OpenVPNError.h"
#import "OpenVPNCertificate.h"

@interface OpenVPNCertificate ()

@property (nonatomic, assign) mbedtls_x509_crt *crt;

@end

@implementation OpenVPNCertificate

- (instancetype)init
{
    self = [super init];
    if (self) {
        self.crt = malloc(sizeof(mbedtls_x509_crt));
        mbedtls_x509_crt_init(self.crt);
    }
    return self;
}

+ (OpenVPNCertificate *)certificateWithPEM:(NSData *)pemData error:(out NSError **)error {
    OpenVPNCertificate *certificate = [OpenVPNCertificate new];
    
    NSString *pemString = [[NSString alloc] initWithData:pemData encoding:NSUTF8StringEncoding];
    
    int result = mbedtls_x509_crt_parse(certificate.crt, (const unsigned char *)pemString.UTF8String, pemData.length + 1);
    if (result < 0) {
        if (error) {
            NSString *reason = [NSError reasonFromResult:result];
            *error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{
                NSLocalizedDescriptionKey: @"Failed to read PEM data.",
                NSLocalizedFailureReasonErrorKey: reason
            }];
        }
        
        return nil;
    }
    
    return certificate;
}

+ (OpenVPNCertificate *)certificateWithDER:(NSData *)derData error:(out NSError **)error {
    OpenVPNCertificate *certificate = [OpenVPNCertificate new];
    
    int result = mbedtls_x509_crt_parse_der(certificate.crt, derData.bytes, derData.length);
    if (result < 0) {
        if (error) {
            NSString *reason = [NSError reasonFromResult:result];
            *error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{
                NSLocalizedDescriptionKey: @"Failed to read DER data.",
                NSLocalizedFailureReasonErrorKey: reason
            }];
        }
        
        return nil;
    }
    
    return certificate;
}

- (NSData *)pemData:(out NSError **)error {
    NSString *header = @"-----BEGIN CERTIFICATE-----\n";
    NSString *footer = @"-----END CERTIFICATE-----\n";
    
    size_t buffer_length = self.crt->raw.len * 2;
    unsigned char *pem_buffer = malloc(buffer_length);
    
    size_t output_length = 0;
    
    int result = mbedtls_pem_write_buffer(header.UTF8String, footer.UTF8String, self.crt->raw.p, self.crt->raw.len, pem_buffer, buffer_length, &output_length);
    if (result < 0) {
        if (error) {
            NSString *reason = [NSError reasonFromResult:result];
            *error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{
                NSLocalizedDescriptionKey: @"Failed to write PEM data.",
                NSLocalizedFailureReasonErrorKey: reason
            }];
        }
        
        return nil;
    }
    
    return [NSData dataWithBytes:pem_buffer length:output_length - 1];
}

- (NSData *)derData:(out NSError **)error {
    if (self.crt->raw.p == NULL || self.crt->raw.len == 0) {
        NSString *reason = [NSError reasonFromResult:MBEDTLS_ERR_X509_BAD_INPUT_DATA];
        *error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:MBEDTLS_ERR_X509_BAD_INPUT_DATA userInfo:@{
            NSLocalizedDescriptionKey: @"Failed to write DER data.",
            NSLocalizedFailureReasonErrorKey:reason
        }];
        
        return nil;
    }
    
    return [NSData dataWithBytes:self.crt->raw.p length:self.crt->raw.len];
}

- (void)dealloc {
    mbedtls_x509_crt_free(self.crt);
    free(self.crt);
}

@end
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00			`//`
			`// OpenVPNCertificate.m`
			`// OpenVPN Adapter`
			`//`
			`// Created by Sergey Abramchuk on 06.09.17.`
			`//`
			`//`

			`#import <mbedtls/x509_crt.h>`
Implement writing certificate PEM data 2017-09-07 04:29:06 +08:00			`#import <mbedtls/pem.h>`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`#import "NSError+Message.h"`
			`#import "OpenVPNError.h"`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00			`#import "OpenVPNCertificate.h"`

			`@interface OpenVPNCertificate ()`

Add assign modifier to the crt property 2017-09-07 00:04:03 +08:00			`@property (nonatomic, assign) mbedtls_x509_crt *crt;`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00
			`@end`

			`@implementation OpenVPNCertificate`

			`- (instancetype)init`
			`{`
			`self = [super init];`
			`if (self) {`
			`self.crt = malloc(sizeof(mbedtls_x509_crt));`
			`mbedtls_x509_crt_init(self.crt);`
			`}`
			`return self;`
			`}`

Remove unnecessary nullable keywords from method definitions 2017-09-07 04:02:22 +08:00			`+ (OpenVPNCertificate )certificateWithPEM:(NSData )pemData error:(out NSError **)error {`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00			`OpenVPNCertificate *certificate = [OpenVPNCertificate new];`

Implement parsing certificate PEM data 2017-09-06 23:10:26 +08:00			`NSString *pemString = [[NSString alloc] initWithData:pemData encoding:NSUTF8StringEncoding];`

			`int result = mbedtls_x509_crt_parse(certificate.crt, (const unsigned char *)pemString.UTF8String, pemData.length + 1);`
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`if (result < 0) {`
Implement parsing certificate DER data 2017-09-06 23:18:36 +08:00			`if (error) {`
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`NSString *reason = [NSError reasonFromResult:result];`
			`*error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{`
Modify localized descriptions 2017-09-07 04:31:25 +08:00			`NSLocalizedDescriptionKey: @"Failed to read PEM data.",`
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`NSLocalizedFailureReasonErrorKey: reason`
			`}];`
Implement parsing certificate DER data 2017-09-06 23:18:36 +08:00			`}`

Implement parsing certificate PEM data 2017-09-06 23:10:26 +08:00			`return nil;`
			`}`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00
			`return certificate;`
			`}`

Remove unnecessary nullable keywords from method definitions 2017-09-07 04:02:22 +08:00			`+ (OpenVPNCertificate )certificateWithDER:(NSData )derData error:(out NSError **)error {`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00			`OpenVPNCertificate *certificate = [OpenVPNCertificate new];`

Implement parsing certificate DER data 2017-09-06 23:18:36 +08:00			`int result = mbedtls_x509_crt_parse_der(certificate.crt, derData.bytes, derData.length);`
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`if (result < 0) {`
Implement parsing certificate DER data 2017-09-06 23:18:36 +08:00			`if (error) {`
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`NSString *reason = [NSError reasonFromResult:result];`
			`*error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{`
Modify localized descriptions 2017-09-07 04:31:25 +08:00			`NSLocalizedDescriptionKey: @"Failed to read DER data.",`
Return error object if parsing finished with failure 2017-09-07 03:58:41 +08:00			`NSLocalizedFailureReasonErrorKey: reason`
			`}];`
Implement parsing certificate DER data 2017-09-06 23:18:36 +08:00			`}`

			`return nil;`
			`}`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00
			`return certificate;`
			`}`

Implement writing certificate PEM data 2017-09-07 04:29:06 +08:00			`- (NSData )pemData:(out NSError *)error {`
			`NSString *header = @"-----BEGIN CERTIFICATE-----\n";`
			`NSString *footer = @"-----END CERTIFICATE-----\n";`

			`size_t buffer_length = self.crt->raw.len * 2;`
			`unsigned char *pem_buffer = malloc(buffer_length);`

			`size_t output_length = 0;`

			`int result = mbedtls_pem_write_buffer(header.UTF8String, footer.UTF8String, self.crt->raw.p, self.crt->raw.len, pem_buffer, buffer_length, &output_length);`
			`if (result < 0) {`
			`if (error) {`
			`NSString *reason = [NSError reasonFromResult:result];`
			`*error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:result userInfo:@{`
			`NSLocalizedDescriptionKey: @"Failed to write PEM data.",`
			`NSLocalizedFailureReasonErrorKey: reason`
			`}];`
			`}`

			`return nil;`
			`}`

Remove null character 2017-09-07 15:35:57 +08:00			`return [NSData dataWithBytes:pem_buffer length:output_length - 1];`
Implement writing certificate PEM data 2017-09-07 04:29:06 +08:00			`}`

Implement writing certificate DER data 2017-09-07 15:21:10 +08:00			`- (NSData )derData:(out NSError *)error {`
			`if (self.crt->raw.p == NULL \|\| self.crt->raw.len == 0) {`
Use predefined result value for error reason 2017-09-07 15:35:02 +08:00			`NSString *reason = [NSError reasonFromResult:MBEDTLS_ERR_X509_BAD_INPUT_DATA];`
Implement writing certificate DER data 2017-09-07 15:21:10 +08:00			`*error = [NSError errorWithDomain:OpenVPNIdentityErrorDomain code:MBEDTLS_ERR_X509_BAD_INPUT_DATA userInfo:@{`
			`NSLocalizedDescriptionKey: @"Failed to write DER data.",`
Use predefined result value for error reason 2017-09-07 15:35:02 +08:00			`NSLocalizedFailureReasonErrorKey:reason`
Implement writing certificate DER data 2017-09-07 15:21:10 +08:00			`}];`

			`return nil;`
			`}`

			`return [NSData dataWithBytes:self.crt->raw.p length:self.crt->raw.len];`
			`}`

Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00			`- (void)dealloc {`
Remove a condition from the deallocation 2017-09-07 04:05:15 +08:00			`mbedtls_x509_crt_free(self.crt);`
			`free(self.crt);`
Declare OpenVPNCertificate class and its methods for parsing PEM and DER format 2017-09-06 23:07:16 +08:00			`}`

			`@end`