View on GitHub
KeyMaterial Class Reference
KeyMaterial
public class KeyMaterialThis class can be used to securely store key material in memory.
-
The size of the key material in bytes.
Declaration
Swift
public var sizeInBytes: UInt32 { get } -
Initializes new key material of a given size.
Declaration
Swift
public init(sizeInBytes: UInt32, initialize: Bool = true)Parameters
sizeInBytesThe size of the key material in bytes.
initialzeIf
true, then the allocated memory will be filled cryptographically secure random data, else it will be filled with0xdb. -
Initializes key material by a given byte array. The byte array is copied to a secure memory location and overwritten with zeros afterwards in order to avoid the key material from being compromised.
Declaration
Swift
public init?(bytes: inout Bytes)Parameters
bytesThe key material.
-
Creates another instance pointing to the same secure memory location.
Declaration
Swift
public init(_ other: KeyMaterial)Parameters
otherOther key material.
-
Read raw bytes from the key material.
Usually you do not need to call this function.
Declaration
Swift
public func withUnsafeBytes<ResultType, ContentType>(body: (UnsafePointer<ContentType>) throws -> ResultType) rethrows -> ResultTypeParameters
bodyA code block where the key material is readable.
Return Value
The result from the
bodycode block. -
Make changes to the raw bytes of the key material.
Warning
Use this with caution, as setting key material manually might lead to insecure key material.
Declaration
Swift
func withUnsafeMutableBytes<ResultType, ContentType>(body: (UnsafeMutablePointer<ContentType>) throws -> ResultType) rethrows -> ResultTypeParameters
bodyA code block where the key material is writable.
Return Value
The result from the
bodycode block. -
Copy the key material from the secure memory into an insecure byte array.
Warning
Use this with caution, as the output is not located in secure memory.
Declaration
Swift
@inline(__always) public func copyBytes() -> BytesReturn Value
A copy of the key material.
-
Returns a fingerprint of the key material. This can be used to compare key materials of different sizes.
The fingerprint will only be calculated the first time this function is called.
Declaration
Swift
func fingerprint() -> BytesReturn Value
The fingerprint.
-
Constant time comparison of the key material.
Warning
Do not use if
othermight have a different size.Note
Explicitly do not conform to the
Equatableprotocol, as its invocation is determined statically. Therefore subclasses might end up being compared with this method. This can lead to problems if their sizes do not match, i.e. the application might crash or worse consider two instances equal if this instance is a prefix of theother. Hence, if a subclass is used to guarantee a fixed size, this method can safely called in an implementation of the==operator of theEquatableprotocol. Then the compiler will only allow to compare instances of fixed length types. To compare instances of possibly different sizes, useisFingerprintEqual(to:).Precondition
sizeInBytes=other.sizeInBytesDeclaration
Swift
func isEqual(to other: KeyMaterial) -> BoolParameters
otherOther key material to which this should be compared to.
Return Value
trueif the key material is equal. -
Constant time comparison of the hash representing the key material.
This can be used to compare instances that potentially have different sizes. If they are guaranteed to have the same size, use
isEqual(to:)instead, as it is faster.Declaration
Swift
func isFingerprintEqual(to other: KeyMaterial) -> BoolReturn Value
trueif both key materials have the same fingerprint.