Include missing data about key types in keychain_items
#8002
Conversation
mike-myers-tob
changed the title
keychain_items
specs/darwin/keychain_items.table
Outdated
| @@ -8,6 +8,7 @@ schema([ | |||
| Column("created", TEXT, "Date item was created"), | |||
| Column("modified", TEXT, "Date of last modification"), | |||
| Column("type", TEXT, "Keychain item type (class)"), | |||
| Column("pk_hash", TEXT, "Hash of associated public key (SHA1 of DER PKCS#1)"), | |||
There was a problem hiding this comment.
Is this a standard hash? Can we match openssl's format for it?
There was a problem hiding this comment.
It seems like it is actually the SHA1 hash of the subjectPublicKey bit string defined by RFC 5280, which matches the first method outlined in section 4.2.1.2 for generating a "Subject Key Identifier". I'll update the documentation to reference that RFC instead of PKCS#1, since PKCS#1 is specifically for RSA keys.
I didn't find a particularly convenient way to output this in OpenSSL, though I might have missed it. One method I used to test is to first find the public key info section with the BIT STRING in the output of openssl asn1parse -i, which looks something like this:
# ECDSA Example
267:d=3 hl=2 l= 19 cons: SEQUENCE
269:d=4 hl=2 l= 7 prim: OBJECT :id-ecPublicKey
278:d=4 hl=2 l= 8 prim: OBJECT :prime256v1
288:d=3 hl=2 l= 66 prim: BIT STRING
# RSA Example
278:d=2 hl=4 l= 290 cons: SEQUENCE
282:d=3 hl=2 l= 13 cons: SEQUENCE
284:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption
295:d=4 hl=2 l= 0 prim: NULL
297:d=3 hl=4 l= 271 prim: BIT STRING
The first number in the row is the byte offset into the ASN.1 DER encoded certificate data, hl is the header length of the section, and l is the length of the section content. The actual data to hash is offset by 1 byte within the BIT STRING. So the data to hash starts at (offset + header + 1) for length - 1 bytes.
For the certificate examples above, the pk_hash can then be computed like:
# ECDSA example
$ cat ecdsa.pem | sed '1d;$d' | base64 -d | dd skip=291 bs=1 count=65 | sha1sum
# RSA example
$ cat rsa.pem | sed '1d;$d' | base64 -d | dd skip=302 bs=1 count=270 | sha1sum
There was a problem hiding this comment.
Works for me! Mostly I'm never sure when hash based fingerprints should be upcased or downcased of need : in the middle. Though I guess we can update if we figure out we got it wrong
Includes the label and associated public key hash for keys in the
keychain_itemstable.Before this change, the label column was blank for "public key", "symmetric key", and "private key" item types because these can use a different attribute for their label (
kSecKeyPrintName).The new column "pk_hash" is useful to identify which public key and private keys are linked to which certificates, described in the docs for kSecKeyLabel.
While the new attributes are marked deprecated, there does not seem to be a non-deprecated replacement.
Tested this change on macOS Ventura 13.3 (many entries removed to just show 1 example of each case):
Before this PR the same items look like: