自从将Objective-C的一段代码转换为Swift的两天以来,我一直处于困境之中:
CFArrayRef keyref = NULL;
CFDictionaryRef identityDict = CFArrayGetValueAtIndex(keyref, 0);
SecIdentityRef identityRef = (SecIdentityRef)CFDictionaryGetValue(identityDict, kSecImportItemIdentity);
是的,仅此而已!我根本无法用那些指针满足编译器的要求。
请帮忙 :-)
这是要翻译的整个 objective-c 代码:
// Read .p12 file
NSString *path = [[NSBundle mainBundle] pathForResource:@"SSLKeyStoreClient" ofType:@"p12"];
NSData *pkcs12data = [[NSData alloc] initWithContentsOfFile:path];
// Import .p12 data
CFArrayRef keyref = NULL;
OSStatus sanityChesk = SecPKCS12Import((__bridge CFDataRef)pkcs12data,
(__bridge CFDictionaryRef)[NSDictionary
dictionaryWithObject:@"wed-zzz"
forKey:(__bridge id)kSecImportExportPassphrase],
&keyref);
if (sanityChesk != noErr) {
NSLog(@"Error while importing pkcs12 [%d]", (int)sanityChesk);
} else
NSLog(@"Success opening p12 certificate.");
// Identity
CFDictionaryRef identityDict = CFArrayGetValueAtIndex(keyref, 0);
SecIdentityRef identityRef = (SecIdentityRef)CFDictionaryGetValue(identityDict,
kSecImportItemIdentity);
// Cert
SecCertificateRef cert = NULL;
OSStatus status = SecIdentityCopyCertificate(identityRef, &cert);
if (status)
NSLog(@"SecIdentityCopyCertificate failed.");
// the certificates array, containing the identity then the root certificate
NSArray *myCerts = [[NSArray alloc] initWithObjects:(__bridge id)identityRef, (__bridge id)cert, nil];
NSMutableDictionary *SSLOptions;
[SSLOptions setObject:[NSNumber numberWithBool:YES] forKey:(NSString *)kCFStreamSSLAllowsExpiredRoots];
NSDictionary *settings = [[NSDictionary alloc] initWithObjectsAndKeys:
[NSNumber numberWithBool:YES], kCFStreamSSLAllowsExpiredCertificates,
[NSNumber numberWithBool:YES], kCFStreamSSLAllowsAnyRoot,
[NSNumber numberWithBool:NO], kCFStreamSSLValidatesCertificateChain,
kCFNull,kCFStreamSSLPeerName,
myCerts,kCFStreamSSLCertificates,
nil];
CFReadStreamSetProperty((CFReadStreamRef)self.inputStream, kCFStreamPropertySSLSettings, (CFTypeRef)settings);
CFWriteStreamSetProperty((CFWriteStreamRef)self.outputStream, kCFStreamPropertySSLSettings, (CFTypeRef)settings);
这就是我到目前为止所得到的:
// Read .p12 file
var path = NSBundle.mainBundle().pathForResource("SSLKeyStoreClient", ofType: "p12")
var pkcs12data: NSData = NSData.dataWithContentsOfFile(path, options: nil, error: nil)
// Import .p12 data
var keyref: Unmanaged<CFArray>?
var optionDict: NSMutableDictionary = NSMutableDictionary()
optionDict.setValue("wed-zzz", forKey: kSecImportExportPassphrase!.takeRetainedValue())
var sanityChesk = SecPKCS12Import(pkcs12data,optionDict,&keyref)
if sanityChesk != 0{ //noErr
println("Error while importing pkcs12 \(sanityChesk)")
} else {
println("Success opening p12 certificate.")
}
// Identity
var key = keyref!
var identityDict: CFDictionary = CFArrayGetValueAtIndex(keyref, 0)
var identityRef:COpaquePointer = CFDictionaryGetValue(identityDict,nil)
// Cert
var cert: Unmanaged<SecCertificate>?
var status: OSStatus = SecIdentityCopyCertificate(identityRef, &cert)
if status == 0{
println("SecIdentityCopyCertificate failed.")
}
// the certificates array, containing the identity then the root certificate
var sslOptions = Dictionary<NSObject, NSObject>()
sslOptions[kCFStreamSSLAllowsExpiredRoots] = NSNumber.numberWithBool(true)
var settings = Dictionary<NSObject, NSObject>()
settings[kCFStreamSSLAllowsExpiredCertificates] = NSNumber.numberWithBool(true)
settings[kCFStreamSSLAllowsAnyRoot] = NSNumber.numberWithBool(true)
settings[kCFStreamSSLValidatesCertificateChain] = NSNumber.numberWithBool(false)
settings[kCFStreamSSLPeerName] = kCFNull
//settings[kCFStreamSSLCertificates] = myCerts
CFReadStreamSetProperty(self.inputStream, kCFStreamPropertySSLSettings, settings)
CFReadStreamSetProperty(self.inputStream, kCFStreamPropertySSLSettings, settings)
问题开始于:
var identityDict: CFDictionary = CFArrayGetValueAtIndex(keyref, 0)
错误:“非托管CFArray无法转换为CFArray”。
到目前为止,这是我最好的尝试。
最佳答案
大概第一行是实际数组的占位符?如果您实际上是在使用NULL数组指针,则其余代码将不执行任何操作。
假设您是从一个真正的CFArrayRef开始的,则可以利用桥接的优势:CoreFoundation类型会自动像Swift对象一样对待,因此您不需要使用CFArrayRef和CFDictionaryRef指针。使用CF类型系统的任何其他C API也是一样,因此它也应适用于SecIdentity。
CF集合的自动桥接似乎有些怪异-您可以将CFArray隐式地链接到NSArray,而将NSArray隐式地链接到Swift Array<T>,您不能仅仅对CFArray下标。
因此,您的转换看起来像这样(包装在处理您假定的数组的函数中):
func getIdentity(keychainArray: NSArray) -> SecIdentity? {
let dict = keychainArray[0] as Dictionary<String,AnyObject>
let key = kSecImportItemIdentity.takeRetainedValue()
return dict[key] as SecIdentity?
}
如果您有
CFArray,则可以将其传递给此函数,它将自动桥接/广播到NSArray,然后Unmanaged<CFString>自动转换为Swift数组以进行下标。将项目0视为Swift字典,您可以对字典下标以获取标识。对于 key ,您需要将其从ojit_code中拉出来,因为没有为该常量的声明的隐式桥接设置安全框架。我离开了该函数,返回一个可选参数,因为我不知道您要传入的array + dictionary是否实际上包含一个标识。如果确定可以,则可以删除两个问号。
(它在操场上编译,但是我没有一个包含字典的数组,该字典包含一个方便进行测试的身份,因此请小心。)