#include <securityd/SecDbItem.h>
#include <securityd/SecDbKeychainItem.h>
#include <securityd/SecItemDb.h>
#include <utilities/SecCFWrappers.h>
#include <utilities/SecCFCCWrappers.h>
#include <utilities/der_date.h>
#include <utilities/der_plist.h>
#include <utilities/debugging.h>
#include <Security/SecBasePriv.h>
#include <Security/SecInternal.h>
#include <corecrypto/ccsha1.h>
#include <Security/SecItem.h>
#include <Security/SecItemPriv.h>
#include <Security/SecAccessControl.h>
#include <Security/SecAccessControlPriv.h>
#include <securityd/SecItemSchema.h>
#include <keychain/ckks/CKKS.h>
CFStringRef copyString(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFStringGetTypeID()) {
return CFStringCreateCopy(0, obj);
}else if (tid == CFDataGetTypeID()) {
return CFStringCreateFromExternalRepresentation(0, obj, kCFStringEncodingUTF8);
} else if (tid == CFUUIDGetTypeID()) {
return CFUUIDCreateString(NULL, obj);
} else {
return NULL;
}
}
CFDataRef copyData(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFDataGetTypeID()) {
return CFDataCreateCopy(0, obj);
} else if (tid == CFStringGetTypeID()) {
return CFStringCreateExternalRepresentation(0, obj, kCFStringEncodingUTF8, 0);
} else if (tid == CFNumberGetTypeID()) {
SInt32 value;
CFNumberGetValue(obj, kCFNumberSInt32Type, &value);
return CFDataCreate(0, (const UInt8 *)&value, sizeof(value));
} else {
return NULL;
}
}
CFTypeRef copyUUID(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFDataGetTypeID()) {
CFIndex length = CFDataGetLength(obj);
if (length != 0 && length != 16)
return NULL;
return CFDataCreateCopy(NULL, obj);
} else if (tid == CFNullGetTypeID()) {
return CFDataCreate(NULL, NULL, 0);
} else if (tid == CFUUIDGetTypeID()) {
CFUUIDBytes uuidbytes = CFUUIDGetUUIDBytes(obj);
CFDataRef uuiddata = CFDataCreate(NULL, (void*) &uuidbytes, sizeof(uuidbytes));
return uuiddata;
} else {
return NULL;
}
}
CFTypeRef copyBlob(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFDataGetTypeID()) {
return CFDataCreateCopy(0, obj);
} else if (tid == CFStringGetTypeID()) {
return CFStringCreateCopy(0, obj);
} else if (tid == CFNumberGetTypeID()) {
CFRetain(obj);
return obj;
} else {
return NULL;
}
}
CFDataRef copySHA1(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFDataGetTypeID() && CFDataGetLength(obj) == CCSHA1_OUTPUT_SIZE) {
return CFDataCreateCopy(CFGetAllocator(obj), obj);
} else {
return NULL;
}
}
CFTypeRef copyNumber(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFNumberGetTypeID()) {
CFRetain(obj);
return obj;
} else if (tid == CFBooleanGetTypeID()) {
SInt32 value = CFBooleanGetValue(obj);
return CFNumberCreate(0, kCFNumberSInt32Type, &value);
} else if (tid == CFStringGetTypeID()) {
SInt32 value = CFStringGetIntValue(obj);
CFStringRef t = CFStringCreateWithFormat(0, 0, CFSTR("%ld"), (long) value);
if (!CFEqual(t, obj)) {
CFRelease(t);
return CFStringCreateCopy(0, obj);
}
CFRelease(t);
return CFNumberCreate(0, kCFNumberSInt32Type, &value);
} else
return NULL;
}
CFDateRef copyDate(CFTypeRef obj) {
CFTypeID tid = CFGetTypeID(obj);
if (tid == CFDateGetTypeID()) {
CFRetain(obj);
return obj;
} else
return NULL;
}
static CFDataRef SecDbColumnCopyData(CFAllocatorRef allocator, sqlite3_stmt *stmt, int col, CFErrorRef *error) {
return CFDataCreate(allocator, sqlite3_column_blob(stmt, col),
sqlite3_column_bytes(stmt, col));
}
static CFDateRef SecDbColumnCopyDate(CFAllocatorRef allocator, sqlite3_stmt *stmt, int col, CFErrorRef *error) {
return CFDateCreate(allocator, sqlite3_column_double(stmt, col));
}
static CFNumberRef SecDbColumnCopyDouble(CFAllocatorRef allocator, sqlite3_stmt *stmt, int col, CFErrorRef *error) {
double number = sqlite3_column_double(stmt, col);
return CFNumberCreate(allocator, kCFNumberDoubleType, &number);
}
static CFNumberRef SecDbColumnCopyNumber64(CFAllocatorRef allocator, sqlite3_stmt *stmt, int col, CFErrorRef *error) {
sqlite_int64 number = sqlite3_column_int64(stmt, col);
return CFNumberCreate(allocator, kCFNumberSInt64Type, &number);
}
static CFNumberRef SecDbColumnCopyNumber(CFAllocatorRef allocator, sqlite3_stmt *stmt, int col, CFErrorRef *error) {
sqlite_int64 number = sqlite3_column_int64(stmt, col);
if (INT32_MIN <= number && number <= INT32_MAX) {
int32_t num32 = (int32_t)number;
return CFNumberCreate(allocator, kCFNumberSInt32Type, &num32);
} else {
return CFNumberCreate(allocator, kCFNumberSInt64Type, &number);
}
}
static CFTypeRef SecDbColumnCopyString(CFAllocatorRef allocator, sqlite3_stmt *stmt, int col, CFErrorRef *error,
CFOptionFlags flags) {
const unsigned char *text = sqlite3_column_text(stmt, col);
if (!text || 0 == strlen((const char *)text)) {
if (flags & kSecDbDefaultEmptyFlag) {
return CFSTR("");
} else if (flags & kSecDbDefault0Flag) {
return CFSTR("0");
} else {
return kCFNull;
}
}
return CFStringCreateWithBytes(allocator, text, strlen((const char *)text), kCFStringEncodingUTF8, false);
}
const SecDbAttr *SecDbClassAttrWithKind(const SecDbClass *class, SecDbAttrKind kind, CFErrorRef *error) {
const SecDbAttr *result = NULL;
SecDbForEachAttr(class, desc) {
if (desc->kind == kind)
result = desc;
}
if (!result)
SecError(errSecInternal, error, CFSTR("Can't find attribute of kind %d in class %@"), kind, class->name);
return result;
}
static bool SecDbIsTombstoneDbSelectAttr(const SecDbAttr *attr) {
return attr->flags & kSecDbPrimaryKeyFlag || attr->kind == kSecDbTombAttr;
}
#if 0
static bool SecDbIsTombstoneDbInsertAttr(const SecDbAttr *attr) {
return SecDbIsTombstoneDbSelectAttr(attr) || attr->kind == kSecDbAccessAttr || attr->kind == kSecDbCreationDateAttr || attr->kind == kSecDbModificationDateAttr;
}
#endif
static bool SecDbIsTombstoneDbUpdateAttr(const SecDbAttr *attr) {
return SecDbIsTombstoneDbSelectAttr(attr) || attr->kind == kSecDbAccessAttr || attr->kind == kSecDbCreationDateAttr || attr->kind == kSecDbRowIdAttr || (attr->flags & kSecDbInAuthenticatedDataFlag);
}
CFTypeRef SecDbAttrCopyDefaultValue(const SecDbAttr *attr, CFErrorRef *error) {
CFTypeRef value = NULL;
switch (attr->kind) {
case kSecDbAccessAttr:
case kSecDbStringAttr:
case kSecDbAccessControlAttr:
value = CFSTR("");
break;
case kSecDbBlobAttr:
case kSecDbDataAttr:
value = CFDataCreate(kCFAllocatorDefault, NULL, 0);
break;
case kSecDbUUIDAttr:
value = CFDataCreate(kCFAllocatorDefault, NULL, 0);
break;
case kSecDbNumberAttr:
case kSecDbSyncAttr:
case kSecDbTombAttr:
{
int32_t zero = 0;
value = CFNumberCreate(kCFAllocatorDefault, kCFNumberSInt32Type, &zero);
break;
}
case kSecDbDateAttr:
value = CFDateCreate(kCFAllocatorDefault, 0.0);
break;
case kSecDbCreationDateAttr:
case kSecDbModificationDateAttr:
value = CFDateCreate(kCFAllocatorDefault, CFAbsoluteTimeGetCurrent());
break;
default:
SecError(errSecInternal, error, CFSTR("attr %@ has no default value"), attr->name);
value = NULL;
}
return value;
}
static CFTypeRef SecDbAttrCopyValueForDb(const SecDbAttr *attr, CFTypeRef value, CFErrorRef *error) {
CFDataRef data = NULL;
CFTypeRef result = NULL;
if (value == NULL)
value = kCFNull;
if (CFEqual(value, kCFNull) && attr->flags & kSecDbPrimaryKeyFlag) {
require_quiet(result = SecDbAttrCopyDefaultValue(attr, error), out);
} else {
result = CFRetain(value);
}
if (attr->flags & kSecDbSHA1ValueInFlag && !CFEqual(result, kCFNull)) {
require_action_quiet(data = copyData(result), out,
SecError(errSecInternal, error, CFSTR("failed to get attribute %@ data"), attr->name);
CFReleaseNull(result));
CFAssignRetained(result, CFDataCopySHA1Digest(data, error));
}
out:
CFReleaseSafe(data);
return result;
}
static CFStringRef SecDbAttrGetHashName(const SecDbAttr *attr) {
if ((attr->flags & kSecDbSHA1ValueInFlag) == 0) {
return attr->name;
}
static dispatch_once_t once;
static CFMutableDictionaryRef hash_store;
static dispatch_queue_t queue;
dispatch_once(&once, ^{
queue = dispatch_queue_create("secd-hash-name", NULL);
hash_store = CFDictionaryCreateMutableForCFTypes(NULL);
});
__block CFStringRef name;
dispatch_sync(queue, ^{
name = CFDictionaryGetValue(hash_store, attr->name);
if (name == NULL) {
name = CFStringCreateWithFormat(NULL, NULL, CFSTR("#%@"), attr->name);
CFDictionarySetValue(hash_store, attr->name, name);
CFRelease(name);
}
});
return name;
}
CFTypeRef SecDbItemGetCachedValueWithName(SecDbItemRef item, CFStringRef name) {
return CFDictionaryGetValue(item->attributes, name);
}
static CFTypeRef SecDbItemGetCachedValue(SecDbItemRef item, const SecDbAttr *desc) {
return CFDictionaryGetValue(item->attributes, desc->name);
}
CFMutableDictionaryRef SecDbItemCopyPListWithMask(SecDbItemRef item, CFOptionFlags mask, CFErrorRef *error) {
CFMutableDictionaryRef dict = CFDictionaryCreateMutableForCFTypes(kCFAllocatorDefault);
SecDbForEachAttrWithMask(item->class, desc, mask) {
CFTypeRef value = SecDbItemGetValue(item, desc, error);
if (value) {
if (!CFEqual(kCFNull, value)) {
CFDictionarySetValue(dict, desc->name, value);
} else if (desc->flags & kSecDbNotNullFlag) {
SecError(errSecDecode, error, CFSTR("attribute %@ has NULL value"), desc->name);
secerror("%@", error ? *error : (CFErrorRef)CFSTR("error == NULL"));
CFReleaseNull(dict);
break;
}
} else {
CFReleaseNull(dict);
break;
}
}
return dict;
}
void SecDbItemSetCredHandle(SecDbItemRef item, CFTypeRef cred_handle) {
CFRetainAssign(item->credHandle, cred_handle);
}
void SecDbItemSetCallerAccessGroups(SecDbItemRef item, CFArrayRef caller_access_groups) {
CFRetainAssign(item->callerAccessGroups, caller_access_groups);
}
CFDataRef SecDbItemCopyEncryptedDataToBackup(SecDbItemRef item, uint64_t handle, CFErrorRef *error) {
CFDataRef edata = NULL;
keybag_handle_t keybag = (keybag_handle_t)handle;
CFMutableDictionaryRef attributes = SecDbItemCopyPListWithMask(item, kSecDbInCryptoDataFlag, error);
CFMutableDictionaryRef auth_attributes = SecDbItemCopyPListWithMask(item, kSecDbInAuthenticatedDataFlag, error);
if (attributes || auth_attributes) {
SecAccessControlRef access_control = SecDbItemCopyAccessControl(item, error);
if (access_control) {
if (ks_encrypt_data_legacy(keybag, access_control, item->credHandle, attributes, auth_attributes, &edata, false, error)) {
item->_edataState = kSecDbItemEncrypting;
} else {
seccritical("ks_encrypt_data (db): failed: %@", error ? *error : (CFErrorRef)CFSTR(""));
}
CFRelease(access_control);
}
CFReleaseNull(attributes);
CFReleaseNull(auth_attributes);
}
return edata;
}
bool SecDbItemEnsureDecrypted(SecDbItemRef item, bool decryptSecretData, CFErrorRef *error) {
bool result = true;
if (item->_edataState == kSecDbItemEncrypted || (decryptSecretData && item->_edataState == kSecDbItemSecretEncrypted)) {
const SecDbAttr *attr = SecDbClassAttrWithKind(item->class, kSecDbEncryptedDataAttr, error);
if (attr) {
CFDataRef edata = SecDbItemGetCachedValue(item, attr);
if (!edata)
return SecError(errSecInternal, error, CFSTR("state= encrypted but edata is NULL"));
item->_edataState = kSecDbItemDecrypting;
result = SecDbItemDecrypt(item, decryptSecretData, edata, error);
if (result)
item->_edataState = decryptSecretData ? kSecDbItemClean : kSecDbItemSecretEncrypted;
else
item->_edataState = kSecDbItemEncrypted;
}
}
return result;
}
static CFTypeRef SecDbItemCopyValue(SecDbItemRef item, const SecDbAttr *attr, CFErrorRef *error) {
if (attr->copyValue)
return attr->copyValue(item, attr, error);
CFTypeRef value = NULL;
switch (attr->kind) {
case kSecDbSHA1Attr:
case kSecDbEncryptedDataAttr:
case kSecDbPrimaryKeyAttr:
value = NULL;
break;
case kSecDbAccessAttr:
case kSecDbStringAttr:
case kSecDbBlobAttr:
case kSecDbAccessControlAttr:
if (attr->flags & kSecDbNotNullFlag) {
if (attr->flags & kSecDbDefault0Flag) {
value = CFSTR("0");
break;
} else if (attr->kind != kSecDbBlobAttr && attr->flags & kSecDbDefaultEmptyFlag) {
value = CFSTR("");
break;
}
}
case kSecDbDataAttr:
if (attr->flags & kSecDbNotNullFlag && attr->flags & kSecDbDefaultEmptyFlag) {
value = CFDataCreate(CFGetAllocator(item), NULL, 0);
} else {
value = kCFNull;
}
break;
case kSecDbUUIDAttr:
value = CFDataCreate(CFGetAllocator(item), NULL, 0);
break;
case kSecDbNumberAttr:
case kSecDbSyncAttr:
case kSecDbTombAttr:
if (attr->flags & kSecDbNotNullFlag) {
int32_t zero = 0;
value = CFNumberCreate(CFGetAllocator(item), kCFNumberSInt32Type, &zero);
} else {
value = kCFNull;
}
break;
case kSecDbDateAttr:
if (attr->flags & kSecDbNotNullFlag && attr->flags & kSecDbDefault0Flag) {
value = CFDateCreate(kCFAllocatorDefault, 0.0);
} else {
value = kCFNull;
}
break;
case kSecDbRowIdAttr:
if (attr->flags & kSecDbNotNullFlag) {
}
value = kCFNull;
break;
case kSecDbCreationDateAttr:
case kSecDbModificationDateAttr:
value = CFDateCreate(CFGetAllocator(item), CFAbsoluteTimeGetCurrent());
break;
case kSecDbUTombAttr:
value = kCFNull;
break;
}
return value;
}
CFTypeRef SecDbItemGetValue(SecDbItemRef item, const SecDbAttr *desc, CFErrorRef *error) {
if (!desc)
return NULL;
if (desc->flags & kSecDbInCryptoDataFlag || desc->flags & kSecDbInAuthenticatedDataFlag || desc->flags & kSecDbReturnDataFlag) {
if (!SecDbItemEnsureDecrypted(item, desc->flags & kSecDbReturnDataFlag, error))
return NULL;
}
CFTypeRef value = SecDbItemGetCachedValue(item, desc);
if (!value) {
value = SecDbItemCopyValue(item, desc, error);
if (value) {
if (CFEqual(kCFNull, value)) {
CFRelease(value); value = kCFNull;
} else {
SecDbItemSetValue(item, desc, value, error);
CFRelease(value);
value = SecDbItemGetCachedValue(item, desc);
}
}
}
return value;
}
CFTypeRef SecDbItemGetValueKind(SecDbItemRef item, SecDbAttrKind descKind, CFErrorRef *error) {
CFTypeRef result = NULL;
const SecDbClass * itemClass = SecDbItemGetClass(item);
const SecDbAttr * desc = SecDbClassAttrWithKind(itemClass, descKind, error);
if (desc) {
result = SecDbItemGetValue(item, desc, error);
}
return result;
}
static CFTypeRef SecDbItemCopyValueForDb(SecDbItemRef item, const SecDbAttr *desc, CFErrorRef *error) {
CFTypeRef value = NULL;
CFStringRef hash_name = NULL;
hash_name = SecDbAttrGetHashName(desc);
if ((desc->flags & kSecDbSHA1ValueInFlag) && (desc->flags & kSecDbInFlag)) {
value = CFRetainSafe(CFDictionaryGetValue(item->attributes, hash_name));
}
if (value == NULL) {
require_quiet(value = SecDbItemGetValue(item, desc, error), out);
require_action_quiet(value = SecDbAttrCopyValueForDb(desc, value, error), out, CFReleaseNull(value));
if ((desc->flags & kSecDbSHA1ValueInFlag) != 0) {
CFDictionarySetValue(item->attributes, hash_name, value);
}
}
out:
return value;
}
static bool SecDbItemGetBoolValue(SecDbItemRef item, const SecDbAttr *desc, bool *bvalue, CFErrorRef *error) {
CFTypeRef value = SecDbItemGetValue(item, desc, error);
if (!value)
return false;
char cvalue;
*bvalue = (isNumber(value) && CFNumberGetValue(value, kCFNumberCharType, &cvalue) && cvalue == 1);
return true;
}
static CFStringRef SecDbItemCopyFormatDescription(CFTypeRef cf, CFDictionaryRef formatOptions) {
CFStringRef desc;
if (isDictionary(formatOptions) && CFDictionaryContainsKey(formatOptions, kSecDebugFormatOption)) {
SecDbItemRef item = (SecDbItemRef)cf;
CFMutableStringRef mdesc = CFStringCreateMutable(CFGetAllocator(cf), 0);
CFStringAppendFormat(mdesc, NULL, CFSTR("<%@"), item->class->name);
SecDbForEachAttr(item->class, attr) {
CFTypeRef value = SecDbItemGetValue(item, attr, NULL);
if (value) {
CFStringAppend(mdesc, CFSTR(","));
CFStringAppend(mdesc, attr->name);
CFStringAppend(mdesc, CFSTR("="));
if (CFEqual(CFSTR("data"), attr->name)) {
CFStringAppendEncryptedData(mdesc, value);
} else if (CFEqual(CFSTR("v_Data"), attr->name)) {
CFStringAppend(mdesc, CFSTR("<?>"));
} else if (isData(value)) {
CFStringAppendHexData(mdesc, value);
} else {
CFStringAppendFormat(mdesc, 0, CFSTR("%@"), value);
}
}
}
CFStringAppend(mdesc, CFSTR(">"));
desc = mdesc;
} else {
SecDbItemRef item = (SecDbItemRef)cf;
const UInt8 zero4[4] = {};
const UInt8 *pk = &zero4[0], *sha1 = &zero4[0];
char sync = 0;
char tomb = 0;
SInt64 rowid = 0;
CFStringRef access = NULL;
uint8_t mdatbuf[32] = {};
uint8_t *mdat = &mdatbuf[0];
CFMutableStringRef attrs = CFStringCreateMutable(kCFAllocatorDefault, 0);
CFStringRef agrp = NULL;
CFBooleanRef utomb = NULL;
SecDbForEachAttr(item->class, attr) {
CFTypeRef value;
switch (attr->kind) {
case kSecDbBlobAttr:
case kSecDbDataAttr:
case kSecDbStringAttr:
case kSecDbNumberAttr:
case kSecDbDateAttr:
case kSecDbEncryptedDataAttr:
if (attr->flags & (kSecDbReturnAttrFlag | kSecDbReturnDataFlag) && (value = SecDbItemGetValue(item, attr, NULL)) && !CFEqual(value, kCFNull)) {
if (isString(value) && CFEqual(attr->name, kSecAttrAccessGroup)) {
agrp = value;
} else {
CFStringAppend(attrs, CFSTR(","));
CFStringAppend(attrs, attr->name);
}
}
break;
case kSecDbUUIDAttr:
if ((value = SecDbItemGetValue(item, attr, NULL))) {
if (CFEqual(attr->name, kSecAttrMultiUser)) {
if (isData(value)) {
CFStringAppend(attrs, CFSTR(","));
if (CFDataGetLength(value)) {
CFStringAppendHexData(attrs, value);
} else {
CFStringAppend(attrs, attr->name);
}
}
}
}
break;
case kSecDbCreationDateAttr:
break;
case kSecDbModificationDateAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isDate(value))
mdat = der_encode_generalizedtime_body(CFDateGetAbsoluteTime(value), NULL, mdat, &mdatbuf[31]);
break;
case kSecDbSHA1Attr:
value = SecDbItemGetValue(item, attr, NULL);
if (isData(value) && CFDataGetLength(value) >= (CFIndex)sizeof(zero4))
sha1 = CFDataGetBytePtr(value);
break;
case kSecDbRowIdAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isNumber(value))
CFNumberGetValue(value, kCFNumberSInt64Type, &rowid);
break;
case kSecDbPrimaryKeyAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isData(value))
pk = CFDataGetBytePtr(value);
break;
case kSecDbSyncAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isNumber(value))
CFNumberGetValue(value, kCFNumberCharType, &sync);
break;
case kSecDbTombAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isNumber(value))
CFNumberGetValue(value, kCFNumberCharType, &tomb);
break;
case kSecDbAccessAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isString(value))
access = value;
break;
case kSecDbUTombAttr:
value = SecDbItemGetValue(item, attr, NULL);
if (isBoolean(value))
utomb = value;
case kSecDbAccessControlAttr:
break;
}
}
desc = CFStringCreateWithFormat(CFGetAllocator(cf), NULL,
CFSTR(
"%s,"
"%@,"
"%02X%02X%02X%02X,"
"%s,"
"%@,"
"%@,"
"%"PRId64
"%@,"
"%s,"
"%s"
"%02X%02X%02X%02X"),
tomb ? "T" : "O",
item->class->name,
pk[0], pk[1], pk[2], pk[3],
sync ? "S" : "L",
access,
agrp,
rowid,
attrs,
mdat,
utomb ? (CFEqual(utomb, kCFBooleanFalse) ? "F," : "T,") : "",
sha1[0], sha1[1], sha1[2], sha1[3]);
CFReleaseSafe(attrs);
}
return desc;
}
static void SecDbItemDestroy(CFTypeRef cf) {
SecDbItemRef item = (SecDbItemRef)cf;
CFReleaseSafe(item->attributes);
CFReleaseSafe(item->credHandle);
CFReleaseSafe(item->callerAccessGroups);
CFReleaseSafe(item->cryptoOp);
}
static CFHashCode SecDbItemHash(CFTypeRef cf) {
SecDbItemRef item = (SecDbItemRef)cf;
CFDataRef digest = SecDbItemGetSHA1(item, NULL);
CFHashCode code;
const UInt8 *p = CFDataGetBytePtr(digest);
code = p[0] + ((p[1] + ((p[2] + ((p[3] + ((p[4] + ((p[5] + ((p[6] + (p[7] << 8)) << 8)) << 8)) << 8)) << 8)) << 8)) << 8);
return code;
}
static Boolean SecDbItemCompare(CFTypeRef cf1, CFTypeRef cf2) {
SecDbItemRef item1 = (SecDbItemRef)cf1;
SecDbItemRef item2 = (SecDbItemRef)cf2;
CFDataRef digest1 = NULL;
CFDataRef digest2 = NULL;
if (item1)
digest1 = SecDbItemGetSHA1(item1, NULL);
if (item2)
digest2 = SecDbItemGetSHA1(item2, NULL);
Boolean equal = CFEqual(digest1, digest2);
return equal;
}
CFGiblisWithHashFor(SecDbItem)
static SecDbItemRef SecDbItemCreate(CFAllocatorRef allocator, const SecDbClass *class, keybag_handle_t keybag) {
SecDbItemRef item = CFTypeAllocate(SecDbItem, struct SecDbItem, allocator);
item->class = class;
item->attributes = CFDictionaryCreateMutableForCFTypes(allocator);
item->keybag = keybag;
item->_edataState = kSecDbItemDirty;
item->cryptoOp = kAKSKeyOpDecrypt;
return item;
}
const SecDbClass *SecDbItemGetClass(SecDbItemRef item) {
return item->class;
}
keybag_handle_t SecDbItemGetKeybag(SecDbItemRef item) {
return item->keybag;
}
bool SecDbItemSetKeybag(SecDbItemRef item, keybag_handle_t keybag, CFErrorRef *error) {
if (!SecDbItemEnsureDecrypted(item, true, error))
return false;
if (item->keybag != keybag) {
item->keybag = keybag;
if (item->_edataState == kSecDbItemClean) {
SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbEncryptedDataAttr, NULL), kCFNull, NULL);
}
}
return true;
}
bool SecDbItemSetValue(SecDbItemRef item, const SecDbAttr *desc, CFTypeRef value, CFErrorRef *error) {
if (!desc)
return false;
if (!value)
value = kCFNull;
if (desc->setValue)
return desc->setValue(item, desc, value, error);
if (desc->flags & kSecDbInCryptoDataFlag || desc->flags & kSecDbInAuthenticatedDataFlag) {
if (!SecDbItemEnsureDecrypted(item, true, error)) {
return false;
}
}
bool changed = false;
CFTypeRef attr = NULL;
switch (desc->kind) {
case kSecDbPrimaryKeyAttr:
case kSecDbDataAttr:
attr = copyData(value);
break;
case kSecDbEncryptedDataAttr:
attr = copyData(value);
if (attr) {
if (item->_edataState == kSecDbItemEncrypting)
item->_edataState = kSecDbItemClean;
else
item->_edataState = kSecDbItemEncrypted;
} else if (!value || CFEqual(kCFNull, value)) {
item->_edataState = kSecDbItemDirty;
}
break;
case kSecDbBlobAttr:
case kSecDbAccessControlAttr:
attr = copyBlob(value);
break;
case kSecDbDateAttr:
case kSecDbCreationDateAttr:
case kSecDbModificationDateAttr:
attr = copyDate(value);
break;
case kSecDbNumberAttr:
case kSecDbSyncAttr:
case kSecDbTombAttr:
case kSecDbRowIdAttr:
attr = copyNumber(value);
break;
case kSecDbAccessAttr:
case kSecDbStringAttr:
attr = copyString(value);
break;
case kSecDbSHA1Attr:
attr = copySHA1(value);
break;
case kSecDbUTombAttr:
attr = CFRetainSafe(asBoolean(value, NULL));
break;
case kSecDbUUIDAttr:
attr = copyUUID(value);
break;
}
if (attr) {
CFTypeRef ovalue = CFDictionaryGetValue(item->attributes, desc->name);
changed = (!ovalue || !CFEqual(ovalue, attr));
CFDictionarySetValue(item->attributes, desc->name, attr);
CFRelease(attr);
} else {
if (value && !CFEqual(kCFNull, value)) {
SecError(errSecItemInvalidValue, error, CFSTR("attribute %@: value: %@ failed to convert"), desc->name, value);
return false;
}
CFTypeRef ovalue = CFDictionaryGetValue(item->attributes, desc->name);
changed = (ovalue && !CFEqual(ovalue, kCFNull));
CFDictionaryRemoveValue(item->attributes, desc->name);
}
if (changed) {
if (desc->flags & kSecDbInHashFlag)
SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbSHA1Attr, NULL), kCFNull, NULL);
if (desc->flags & kSecDbPrimaryKeyFlag)
SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbPrimaryKeyAttr, NULL), kCFNull, NULL);
if ((desc->flags & kSecDbInCryptoDataFlag || desc->flags & kSecDbInAuthenticatedDataFlag) && (item->_edataState == kSecDbItemClean || (item->_edataState == kSecDbItemSecretEncrypted && (desc->flags & kSecDbReturnDataFlag) == 0)))
SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbEncryptedDataAttr, NULL), kCFNull, NULL);
if (desc->flags & kSecDbSHA1ValueInFlag)
CFDictionaryRemoveValue(item->attributes, SecDbAttrGetHashName(desc));
}
return true;
}
bool SecDbItemSetValues(SecDbItemRef item, CFDictionaryRef values, CFErrorRef *error) {
SecDbForEachAttr(item->class, attr) {
CFTypeRef value = CFDictionaryGetValue(values, attr->name);
if (value && !SecDbItemSetValue(item, attr, value, error))
return false;
}
return true;
}
bool SecDbItemSetValueWithName(SecDbItemRef item, CFStringRef name, CFTypeRef value, CFErrorRef *error) {
SecDbForEachAttr(item->class, attr) {
if (CFEqual(attr->name, name)) {
return SecDbItemSetValue(item, attr, value, error);
}
}
return false;
}
bool SecDbItemSetAccessControl(SecDbItemRef item, SecAccessControlRef access_control, CFErrorRef *error) {
bool ok = true;
if (item->_edataState == kSecDbItemClean)
ok = SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbEncryptedDataAttr, error), kCFNull, error);
if (ok && access_control) { item->_edataState = kSecDbItemDirty;
CFDataRef data = SecAccessControlCopyData(access_control);
ok = SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbAccessControlAttr, error), data, error);
CFRelease(data);
}
return ok;
}
SecDbItemRef SecDbItemCreateWithAttributes(CFAllocatorRef allocator, const SecDbClass *class, CFDictionaryRef attributes, keybag_handle_t keybag, CFErrorRef *error) {
SecDbItemRef item = SecDbItemCreate(kCFAllocatorDefault, class, keybag);
if (item && !SecDbItemSetValues(item, attributes, error))
CFReleaseNull(item);
return item;
}
static CFTypeRef
SecDbColumnCopyValueWithAttr(CFAllocatorRef allocator, sqlite3_stmt *stmt, const SecDbAttr *attr, int col, CFErrorRef *error) {
CFTypeRef value = NULL;
switch (attr->kind) {
case kSecDbDateAttr:
case kSecDbCreationDateAttr:
case kSecDbModificationDateAttr:
value = SecDbColumnCopyDate(allocator, stmt, col, error);
break;
case kSecDbBlobAttr:
case kSecDbNumberAttr:
switch (sqlite3_column_type(stmt, col)) {
case SQLITE_INTEGER:
value = SecDbColumnCopyNumber(allocator, stmt, col, error);
break;
case SQLITE_FLOAT:
value = SecDbColumnCopyDouble(allocator, stmt, col, error);
break;
case SQLITE_TEXT:
value = SecDbColumnCopyString(allocator, stmt, col, error,
attr->flags);
break;
case SQLITE_BLOB:
value = SecDbColumnCopyData(allocator, stmt, col, error);
break;
case SQLITE_NULL:
value = kCFNull;
break;
}
break;
case kSecDbAccessAttr:
case kSecDbStringAttr:
value = SecDbColumnCopyString(allocator, stmt, col, error,
attr->flags);
break;
case kSecDbDataAttr:
case kSecDbUUIDAttr:
case kSecDbSHA1Attr:
case kSecDbPrimaryKeyAttr:
case kSecDbEncryptedDataAttr:
value = SecDbColumnCopyData(allocator, stmt, col, error);
break;
case kSecDbSyncAttr:
case kSecDbTombAttr:
value = SecDbColumnCopyNumber(allocator, stmt, col, error);
break;
case kSecDbRowIdAttr:
value = SecDbColumnCopyNumber64(allocator, stmt, col, error);
break;
case kSecDbAccessControlAttr:
case kSecDbUTombAttr:
break;
}
return value;
}
SecDbItemRef SecDbItemCreateWithStatement(CFAllocatorRef allocator, const SecDbClass *class, sqlite3_stmt *stmt, keybag_handle_t keybag, CFErrorRef *error, bool (^return_attr)(const SecDbAttr *attr)) {
SecDbItemRef item = SecDbItemCreate(allocator, class, keybag);
int col = 0;
SecDbForEachAttr(class, attr) {
if (return_attr(attr)) {
CFTypeRef value = SecDbColumnCopyValueWithAttr(allocator, stmt, attr, col++, error);
require_action_quiet(value, errOut, CFReleaseNull(item));
CFDictionarySetValue(item->attributes, SecDbAttrGetHashName(attr), value);
CFRelease(value);
}
const SecDbAttr *data_attr = SecDbClassAttrWithKind(class, kSecDbEncryptedDataAttr, NULL);
if (data_attr != NULL && CFDictionaryGetValue(item->attributes, data_attr->name) != NULL) {
item->_edataState = kSecDbItemEncrypted;
}
}
errOut:
return item;
}
SecDbItemRef SecDbItemCreateWithEncryptedData(CFAllocatorRef allocator, const SecDbClass *class,
CFDataRef edata, keybag_handle_t keybag, CFErrorRef *error) {
SecDbItemRef item = SecDbItemCreate(allocator, class, keybag);
const SecDbAttr *edata_attr = SecDbClassAttrWithKind(class, kSecDbEncryptedDataAttr, error);
if (edata_attr) {
if (!SecDbItemSetValue(item, edata_attr, edata, error))
CFReleaseNull(item);
}
return item;
}
bool SecDbItemInV2(SecDbItemRef item) {
const SecDbClass *iclass = SecDbItemGetClass(item);
return (SecDbItemGetCachedValueWithName(item, kSecAttrSyncViewHint) == NULL &&
(iclass == genp_class() || iclass == inet_class() || iclass == keys_class() || iclass == cert_class()));
}
bool SecDbItemInV2AlsoInV0(SecDbItemRef item) {
return (SecDbItemGetCachedValueWithName(item, kSecAttrTokenID) == NULL && SecDbItemGetClass(item) != cert_class());
}
SecDbItemRef SecDbItemCopyWithUpdates(SecDbItemRef item, CFDictionaryRef updates, CFErrorRef *error) {
SecDbItemRef new_item = SecDbItemCreate(CFGetAllocator(item), item->class, item->keybag);
SecDbItemSetCredHandle(new_item, item->credHandle);
SecDbForEachAttr(item->class, attr) {
if (attr->kind != kSecDbModificationDateAttr && attr->kind != kSecDbEncryptedDataAttr && attr->kind != kSecDbSHA1Attr && attr->kind != kSecDbPrimaryKeyAttr) {
CFTypeRef value = NULL;
if (CFDictionaryGetValueIfPresent(updates, attr->name, &value)) {
if (!value)
SecError(errSecParam, error, CFSTR("NULL value in dictionary"));
} else {
value = SecDbItemGetValue(item, attr, error);
}
if (!value || !SecDbItemSetValue(new_item, attr, value, error)) {
CFReleaseNull(new_item);
break;
}
}
}
return new_item;
}
static bool SecDbItemMakeAttrYounger(SecDbItemRef new_item, SecDbItemRef old_item, const SecDbAttr *attr, CFErrorRef *error) {
CFDateRef old_date = SecDbItemGetValue(old_item, attr, error);
if (!old_date)
return false;
CFDateRef new_date = SecDbItemGetValue(new_item, attr, error);
if (!new_date)
return false;
bool ok = true;
if (CFDateCompare(new_date, old_date, NULL) != kCFCompareGreaterThan) {
CFDateRef adjusted_date = CFDateCreate(kCFAllocatorDefault, CFDateGetAbsoluteTime(old_date) + 0.001);
if (adjusted_date) {
ok = SecDbItemSetValue(new_item, attr, adjusted_date, error);
CFRelease(adjusted_date);
}
}
return ok;
}
static bool SecDbItemMakeYounger(SecDbItemRef new_item, SecDbItemRef old_item, CFErrorRef *error) {
const SecDbAttr *attr = SecDbClassAttrWithKind(new_item->class, kSecDbModificationDateAttr, error);
return attr && SecDbItemMakeAttrYounger(new_item, old_item, attr, error);
}
static SecDbItemRef SecDbItemCopyTombstone(SecDbItemRef item, CFBooleanRef makeTombStone, CFErrorRef *error) {
SecDbItemRef new_item = SecDbItemCreate(CFGetAllocator(item), item->class, item->keybag);
SecDbForEachAttr(item->class, attr) {
if (attr->kind == kSecDbTombAttr) {
if (!SecDbItemSetValue(new_item, attr, kCFBooleanTrue, error)) {
CFReleaseNull(new_item);
break;
}
} else if (SecDbIsTombstoneDbUpdateAttr(attr)) {
CFTypeRef value = SecDbItemGetValue(item, attr, error);
if (!value || (!CFEqual(kCFNull, value) && !SecDbItemSetValue(new_item, attr, value, error))) {
CFReleaseNull(new_item);
break;
}
} else if (attr->kind == kSecDbModificationDateAttr) {
if (!SecDbItemMakeAttrYounger(new_item, item, attr, error)) {
CFReleaseNull(new_item);
break;
}
} else if (makeTombStone && attr->kind == kSecDbUTombAttr) {
if (makeTombStone)
SecDbItemSetValue(new_item, attr, makeTombStone, error);
}
}
return new_item;
}
bool SecDbItemIsEngineInternalState(SecDbItemRef itemObject) {
if (!itemObject) {
return false;
}
const SecDbAttr *agrp = SecDbAttrWithKey(SecDbItemGetClass(itemObject), kSecAttrAccessGroup, NULL);
CFTypeRef cfval = SecDbItemGetValue(itemObject, agrp, NULL);
return cfval && CFStringCompareSafe(cfval, kSOSInternalAccessGroup, NULL) == kCFCompareEqualTo;
}
void SecDbAppendElement(CFMutableStringRef sql, CFStringRef value, bool *needComma) {
assert(needComma);
if (*needComma) {
CFStringAppend(sql, CFSTR(","));
} else {
*needComma = true;
}
CFStringAppend(sql, value);
}
static void SecDbAppendElementEquals(CFMutableStringRef sql, CFStringRef value, bool *needComma) {
SecDbAppendElement(sql, value, needComma);
CFStringAppend(sql, CFSTR("=?"));
}
void
SecDbAppendWhereOrAnd(CFMutableStringRef sql, bool *needWhere) {
if (!needWhere || !*needWhere) {
CFStringAppend(sql, CFSTR(" AND "));
} else {
CFStringAppend(sql, CFSTR(" WHERE "));
*needWhere = false;
}
}
void
SecDbAppendWhereOrAndEquals(CFMutableStringRef sql, CFStringRef col, bool *needWhere) {
SecDbAppendWhereOrAnd(sql, needWhere);
CFStringAppend(sql, col);
CFStringAppend(sql, CFSTR("=?"));
}
void
SecDbAppendWhereOrAndNotEquals(CFMutableStringRef sql, CFStringRef col, bool *needWhere) {
SecDbAppendWhereOrAnd(sql, needWhere);
CFStringAppend(sql, col);
CFStringAppend(sql, CFSTR("!=?"));
}
static void SecDbAppendCountArgsAndCloseParen(CFMutableStringRef sql, CFIndex count) {
bool needComma = false;
while (count-- > 0)
SecDbAppendElement(sql, CFSTR("?"), &needComma);
CFStringAppend(sql, CFSTR(")"));
}
void
SecDbAppendWhereOrAndIn(CFMutableStringRef sql, CFStringRef col, bool *needWhere, CFIndex count) {
if (count == 1)
return SecDbAppendWhereOrAndEquals(sql, col, needWhere);
SecDbAppendWhereOrAnd(sql, needWhere);
CFStringAppend(sql, col);
CFStringAppend(sql, CFSTR(" IN ("));
SecDbAppendCountArgsAndCloseParen(sql, count);
}
void
SecDbAppendWhereOrAndNotIn(CFMutableStringRef sql, CFStringRef col, bool *needWhere, CFIndex count) {
if (count == 1)
return SecDbAppendWhereOrAndNotEquals(sql, col, needWhere);
SecDbAppendWhereOrAnd(sql, needWhere);
CFStringAppend(sql, col);
CFStringAppend(sql, CFSTR(" NOT IN ("));
SecDbAppendCountArgsAndCloseParen(sql, count);
}
static CFStringRef SecDbItemCopyInsertSQL(SecDbItemRef item, bool(^use_attr)(const SecDbAttr *attr)) {
CFMutableStringRef sql = CFStringCreateMutable(CFGetAllocator(item), 0);
CFStringAppend(sql, CFSTR("INSERT INTO "));
CFStringAppend(sql, item->class->name);
CFStringAppend(sql, CFSTR("("));
bool needComma = false;
CFIndex used_attr = 0;
SecDbForEachAttr(item->class, attr) {
if (use_attr(attr)) {
++used_attr;
SecDbAppendElement(sql, attr->name, &needComma);
}
}
CFStringAppend(sql, CFSTR(")VALUES(?"));
while (used_attr-- > 1) {
CFStringAppend(sql, CFSTR(",?"));
}
CFStringAppend(sql, CFSTR(")"));
return sql;
}
static bool SecDbItemInsertBind(SecDbItemRef item, sqlite3_stmt *stmt, CFErrorRef *error, bool(^use_attr)(const SecDbAttr *attr)) {
bool ok = true;
int param = 0;
SecDbForEachAttr(item->class, attr) {
if (use_attr(attr)) {
CFTypeRef value = SecDbItemCopyValueForDb(item, attr, error);
ok = value && SecDbBindObject(stmt, ++param, value, error);
CFReleaseSafe(value);
if (!ok)
break;
}
}
return ok;
}
sqlite3_int64 SecDbItemGetRowId(SecDbItemRef item, CFErrorRef *error) {
sqlite3_int64 row_id = 0;
const SecDbAttr *attr = SecDbClassAttrWithKind(item->class, kSecDbRowIdAttr, error);
if (attr) {
CFNumberRef number = SecDbItemGetValue(item, attr, error);
if (!isNumber(number)|| !CFNumberGetValue(number, kCFNumberSInt64Type, &row_id))
SecDbError(SQLITE_ERROR, error, CFSTR("rowid %@ is not a 64 bit number"), number);
}
return row_id;
}
static CFNumberRef SecDbItemCreateRowId(SecDbItemRef item, sqlite3_int64 rowid, CFErrorRef *error) {
return CFNumberCreate(CFGetAllocator(item), kCFNumberSInt64Type, &rowid);
}
bool SecDbItemSetRowId(SecDbItemRef item, sqlite3_int64 rowid, CFErrorRef *error) {
bool ok = true;
const SecDbAttr *attr = SecDbClassAttrWithKind(item->class, kSecDbRowIdAttr, error);
if (attr) {
CFNumberRef value = SecDbItemCreateRowId(item, rowid, error);
if (!value)
return false;
ok = SecDbItemSetValue(item, attr, value, error);
CFRelease(value);
}
return ok;
}
bool SecDbItemClearRowId(SecDbItemRef item, CFErrorRef *error) {
bool ok = true;
const SecDbAttr *attr = SecDbClassAttrWithKind(item->class, kSecDbRowIdAttr, error);
if (attr) {
CFDictionaryRemoveValue(item->attributes, attr->name);
}
return ok;
}
static bool SecDbItemSetLastInsertRowId(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error) {
sqlite3_int64 rowid = sqlite3_last_insert_rowid(SecDbHandle(dbconn));
return SecDbItemSetRowId(item, rowid, error);
}
bool SecDbItemIsSyncableOrCorrupted(SecDbItemRef item) {
bool is_syncable_or_corrupted = false;
CFErrorRef localError = NULL;
if (!SecDbItemGetBoolValue(item, SecDbClassAttrWithKind(item->class, kSecDbSyncAttr, &localError),
&is_syncable_or_corrupted, &localError)) {
is_syncable_or_corrupted = SecErrorGetOSStatus(localError) == errSecDecode;
}
CFReleaseSafe(localError);
return is_syncable_or_corrupted;
}
bool SecDbItemIsSyncable(SecDbItemRef item) {
bool is_syncable;
if (SecDbItemGetBoolValue(item, SecDbClassAttrWithKind(item->class, kSecDbSyncAttr, NULL), &is_syncable, NULL))
return is_syncable;
return false;
}
bool SecDbItemSetSyncable(SecDbItemRef item, bool sync, CFErrorRef *error)
{
return SecDbItemSetValue(item, SecDbClassAttrWithKind(item->class, kSecDbSyncAttr, error), sync ? kCFBooleanTrue : kCFBooleanFalse, error);
}
bool SecDbItemIsTombstone(SecDbItemRef item) {
bool is_tomb;
if (SecDbItemGetBoolValue(item, SecDbClassAttrWithKind(item->class, kSecDbTombAttr, NULL), &is_tomb, NULL))
return is_tomb;
return false;
}
CFDataRef SecDbItemGetPrimaryKey(SecDbItemRef item, CFErrorRef *error) {
return SecDbItemGetValue(item, SecDbClassAttrWithKind(item->class, kSecDbPrimaryKeyAttr, error), error);
}
CFDataRef SecDbItemGetSHA1(SecDbItemRef item, CFErrorRef *error) {
return SecDbItemGetValue(item, SecDbClassAttrWithKind(item->class, kSecDbSHA1Attr, error), error);
}
static SecDbQueryRef SecDbQueryCreateWithItemPrimaryKey(SecDbItemRef item, CFErrorRef *error) {
CFMutableDictionaryRef dict = SecDbItemCopyPListWithMask(item, kSecDbPrimaryKeyFlag, error);
if (!dict)
return NULL;
SecDbQueryRef query = query_create(item->class, NULL, NULL, error);
if (query) {
CFReleaseSafe(query->q_item);
query->q_item = dict;
}
else
CFRelease(dict);
return query;
}
static bool SecDbItemIsCorrupt(SecDbItemRef item, bool *is_corrupt, CFErrorRef *error) {
CFErrorRef localError = NULL;
const struct SecDbAttr *sha1attr = SecDbClassAttrWithKind(item->class, kSecDbSHA1Attr, &localError);
CFDataRef storedSHA1 = CFRetainSafe(SecDbItemGetValue(item, sha1attr, &localError));
bool akpu = false;
if (localError || !SecDbItemEnsureDecrypted(item, true, &localError)) {
if (SecErrorGetOSStatus(localError) == errSecDecode) {
const SecDbAttr *desc = SecDbClassAttrWithKind(item->class, kSecDbAccessControlAttr, &localError);
SecAccessControlRef accc = NULL;
CFDataRef acccData = NULL;
acccData = (CFDataRef)SecDbItemGetValue(item, desc, &localError);
if (isData(acccData)) {
accc = SecAccessControlCreateFromData(CFGetAllocator(item), acccData, &localError);
}
if (accc && CFEqualSafe(SecAccessControlGetProtection(accc), kSecAttrAccessibleWhenPasscodeSetThisDeviceOnly)) {
akpu = true;
secwarning("cannot decrypt item %@, item is irrecoverably lost with older passcode (error %@)", item, localError);
} else {
secerror("error %@ reading item %@ (corrupted)", localError, item);
__security_simulatecrash(CFSTR("Corrupted item found in keychain"), __sec_exception_code_CorruptItem);
}
CFReleaseNull(localError);
*is_corrupt = true;
}
}
CFDataRef computedSHA1 = SecDbItemCopyValue(item, sha1attr, &localError);
if (storedSHA1 && computedSHA1 && !CFEqual(storedSHA1, computedSHA1)) {
CFStringRef storedHex = CFDataCopyHexString(storedSHA1), computedHex = CFDataCopyHexString(computedSHA1);
secerror("error %@ %@ != %@ item %@ (corrupted)", sha1attr->name, storedHex, computedHex, item);
__security_simulatecrash(CFSTR("Corrupted item (sha1 mismatch) found in keychain"), __sec_exception_code_CorruptItem);
CFReleaseSafe(storedHex);
CFReleaseSafe(computedHex);
*is_corrupt = true;
}
if (!localError) SecDbForEachAttr(item->class, attr) {
if (attr->flags & (kSecDbInCryptoDataFlag | kSecDbInAuthenticatedDataFlag)) {
CFTypeRef value = SecDbItemGetValue(item, attr, &localError);
if (value) {
if (CFEqual(kCFNull, value) && attr->flags & kSecDbNotNullFlag) {
secerror("error attribute %@ has NULL value in item %@ (corrupted)", attr->name, item);
__security_simulatecrash(CFSTR("Corrupted item (attr NULL) found in keychain"), __sec_exception_code_CorruptItem);
*is_corrupt = true;
break;
}
} else {
if (SecErrorGetOSStatus(localError) == errSecDecode) {
if (akpu) {
secwarning("attribute %@: %@ item %@ (item lost with older passcode)", attr->name, localError, item);
} else {
secerror("error attribute %@: %@ item %@ (corrupted)", attr->name, localError, item);
__security_simulatecrash(CFSTR("Corrupted item found in keychain"), __sec_exception_code_CorruptItem);
}
*is_corrupt = true;
CFReleaseNull(localError);
}
break;
}
}
}
CFReleaseSafe(computedSHA1);
CFReleaseSafe(storedSHA1);
return SecErrorPropagate(localError, error);
}
static void SecDbItemRecordUpdate(SecDbConnectionRef dbconn, SecDbItemRef deleted, SecDbItemRef inserted) {
SecDbRecordChange(dbconn, deleted, inserted);
}
static bool SecDbItemDoInsert(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error) {
bool (^use_attr)(const SecDbAttr *attr) = ^bool(const SecDbAttr *attr) {
return (attr->flags & kSecDbInFlag);
};
if (!SecDbItemEnsureDecrypted(item, true, error)) {
return false;
}
CFStringRef sql = SecDbItemCopyInsertSQL(item, use_attr);
__block bool ok = sql;
if (sql) {
ok &= SecDbPrepare(dbconn, sql, error, ^(sqlite3_stmt *stmt) {
ok = (SecDbItemInsertBind(item, stmt, error, use_attr) &&
SecDbStep(dbconn, stmt, error, NULL) &&
SecDbItemSetLastInsertRowId(item, dbconn, error));
});
CFRelease(sql);
}
if (ok) {
secnotice("item", "inserted %@", item);
SecDbItemRecordUpdate(dbconn, NULL, item);
} else {
if (SecDbItemIsEngineInternalState(item)) {
secdebug ("item", "insert failed for item %@ with %@", item, error ? *error : NULL);
} else {
secnotice("item", "insert failed for item %@ with %@", item, error ? *error : NULL);
}
}
return ok;
}
bool SecErrorIsSqliteDuplicateItemError(CFErrorRef error) {
return error && CFErrorGetCode(error) == SQLITE_CONSTRAINT && CFEqual(kSecDbErrorDomain, CFErrorGetDomain(error));
}
bool SecDbItemInsertOrReplace(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error, void(^duplicate)(SecDbItemRef item, SecDbItemRef *replace)) {
__block CFErrorRef localError = NULL;
__block bool ok = SecDbItemDoInsert(item, dbconn, &localError);
if (!ok && localError && CFErrorGetCode(localError) == SQLITE_CONSTRAINT && CFEqual(kSecDbErrorDomain, CFErrorGetDomain(localError))) {
SecDbQueryRef query = SecDbQueryCreateWithItemPrimaryKey(item, error);
if (query) {
CFRetainAssign(query->q_use_cred_handle, item->credHandle);
SecDbItemSelect(query, dbconn, error, NULL, ^bool(const SecDbAttr *attr) {
return attr->flags & kSecDbPrimaryKeyFlag;
}, NULL, NULL, ^(SecDbItemRef old_item, bool *stop) {
bool is_corrupt = false;
ok = SecDbItemIsCorrupt(old_item, &is_corrupt, error);
SecDbItemRef replace = NULL;
if (is_corrupt) {
replace = item;
CFRetain(replace);
if(error)
CFReleaseNull(*error); } else if (ok && duplicate) {
duplicate(old_item, &replace);
}
if (replace) {
const SecDbAttr *rowid_attr = SecDbClassAttrWithKind(old_item->class, kSecDbRowIdAttr, error);
CFNumberRef oldrowid = SecDbItemGetCachedValue(old_item, rowid_attr);
if (oldrowid) {
ok = SecDbItemSetValue(replace, rowid_attr, oldrowid, &localError);
if (ok && !is_corrupt) {
ok = SecDbItemMakeYounger(replace, old_item, error);
}
ok = ok && SecDbItemDoUpdate(old_item, replace, dbconn, &localError, ^bool (const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
} else {
ok = SecError(errSecInternal, &localError, CFSTR("no rowid for %@"), old_item);
}
CFRelease(replace);
if (ok)
CFReleaseNull(localError); }
});
SecDbItemSetCredHandle(item, query->q_use_cred_handle);
ok &= query_destroy(query, error);
}
}
return ok & SecErrorPropagate(localError, error); }
bool SecDbItemInsert(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error) {
return SecDbItemInsertOrReplace(item, dbconn, error, ^(SecDbItemRef old_item, SecDbItemRef *replace) {
if (SecDbItemIsTombstone(old_item)) {
CFRetain(item);
*replace = item;
}
});
}
static CFStringRef SecDbItemCopyUpdateSQL(SecDbItemRef old_item, SecDbItemRef new_item, bool(^use_attr_in_where)(const SecDbAttr *attr)) {
CFMutableStringRef sql = CFStringCreateMutable(CFGetAllocator(new_item), 0);
CFStringAppend(sql, CFSTR("UPDATE "));
CFStringAppend(sql, new_item->class->name);
CFStringAppend(sql, CFSTR(" SET "));
bool needComma = false;
CFIndex used_attr = 0;
SecDbForEachAttrWithMask(new_item->class, attr, kSecDbInFlag) {
++used_attr;
SecDbAppendElementEquals(sql, attr->name, &needComma);
}
bool needWhere = true;
SecDbForEachAttr(old_item->class, attr) {
if (use_attr_in_where(attr)) {
SecDbAppendWhereOrAndEquals(sql, attr->name, &needWhere);
}
}
return sql;
}
static bool SecDbItemUpdateBind(SecDbItemRef old_item, SecDbItemRef new_item, sqlite3_stmt *stmt, CFErrorRef *error, bool(^use_attr_in_where)(const SecDbAttr *attr)) {
bool ok = true;
int param = 0;
SecDbForEachAttrWithMask(new_item->class, attr, kSecDbInFlag) {
CFTypeRef value = SecDbItemCopyValueForDb(new_item, attr, error);
ok &= value && SecDbBindObject(stmt, ++param, value, error);
CFReleaseSafe(value);
if (!ok)
break;
}
SecDbForEachAttr(old_item->class, attr) {
if (use_attr_in_where(attr)) {
CFTypeRef value = SecDbItemCopyValueForDb(old_item, attr, error);
ok &= value && SecDbBindObject(stmt, ++param, value, error);
CFReleaseSafe(value);
if (!ok)
break;
}
}
return ok;
}
bool SecDbItemDoUpdate(SecDbItemRef old_item, SecDbItemRef new_item, SecDbConnectionRef dbconn, CFErrorRef *error, bool (^use_attr_in_where)(const SecDbAttr *attr)) {
CFStringRef sql = SecDbItemCopyUpdateSQL(old_item, new_item, use_attr_in_where);
__block bool ok = sql;
if (sql) {
ok &= SecDbPrepare(dbconn, sql, error, ^(sqlite3_stmt *stmt) {
ok = SecDbItemUpdateBind(old_item, new_item, stmt, error, use_attr_in_where) && SecDbStep(dbconn, stmt, error, NULL);
});
CFRelease(sql);
}
if (ok) {
if (SecDbItemIsEngineInternalState(old_item)) {
secdebug ("item", "replaced %@ in %@", old_item, dbconn);
secdebug ("item", " with %@ in %@", new_item, dbconn);
} else {
secnotice("item", "replaced %@ in %@", old_item, dbconn);
secnotice("item", " with %@ in %@", new_item, dbconn);
}
SecDbItemRecordUpdate(dbconn, old_item, new_item);
}
return ok;
}
static CFStringRef SecDbItemCopyDeleteSQL(SecDbItemRef item, bool(^use_attr_in_where)(const SecDbAttr *attr)) {
CFMutableStringRef sql = CFStringCreateMutable(CFGetAllocator(item), 0);
CFStringAppend(sql, CFSTR("DELETE FROM "));
CFStringAppend(sql, item->class->name);
bool needWhere = true;
SecDbForEachAttr(item->class, attr) {
if (use_attr_in_where(attr)) {
SecDbAppendWhereOrAndEquals(sql, attr->name, &needWhere);
}
}
return sql;
}
static bool SecDbItemDeleteBind(SecDbItemRef item, sqlite3_stmt *stmt, CFErrorRef *error, bool(^use_attr_in_where)(const SecDbAttr *attr)) {
bool ok = true;
int param = 0;
SecDbForEachAttr(item->class, attr) {
if (use_attr_in_where(attr)) {
CFTypeRef value = SecDbItemCopyValueForDb(item, attr, error);
ok &= value && SecDbBindObject(stmt, ++param, value, error);
CFReleaseSafe(value);
if (!ok)
break;
}
}
return ok;
}
static bool SecDbItemDoDeleteOnly(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error, bool (^use_attr_in_where)(const SecDbAttr *attr)) {
CFStringRef sql = SecDbItemCopyDeleteSQL(item, use_attr_in_where);
__block bool ok = sql;
if (sql) {
ok &= SecDbPrepare(dbconn, sql, error, ^(sqlite3_stmt *stmt) {
ok = SecDbItemDeleteBind(item, stmt, error, use_attr_in_where) && SecDbStep(dbconn, stmt, error, NULL);
});
CFRelease(sql);
}
return ok;
}
bool SecDbItemDoDeleteSilently(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error) {
return SecDbItemDoDeleteOnly(item, dbconn, error, ^bool(const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
}
static bool SecDbItemDoDelete(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error, bool (^use_attr_in_where)(const SecDbAttr *attr)) {
bool ok = SecDbItemDoDeleteOnly(item, dbconn, error, use_attr_in_where);
if (ok) {
secnotice("item", "deleted %@ from %@", item, dbconn);
SecDbItemRecordUpdate(dbconn, item, NULL);
}
return ok;
}
#if 0
static bool SecDbItemDeleteTombstone(SecDbItemRef item, SecDbConnectionRef dbconn, CFErrorRef *error) {
bool ok = true;
SecDbItemRef tombstone = SecDbItemCopyTombstone(item, error);
ok = tombstone;
if (tombstone) {
ok = SecDbItemClearRowId(tombstone, error);
if (ok) {
ok = SecDbItemDoDelete(tombstone, dbconn, error, ^bool (const SecDbAttr *attr) {
return SecDbIsTombstoneDbSelectAttr(attr);
});
}
CFRelease(tombstone);
}
return ok;
}
#endif
bool SecDbItemUpdate(SecDbItemRef old_item, SecDbItemRef new_item, SecDbConnectionRef dbconn, CFBooleanRef makeTombstone, bool uuid_from_primary_key, CFErrorRef *error) {
__block bool ok = true;
__block CFErrorRef localError = NULL;
CFDataRef old_pk = SecDbItemGetPrimaryKey(old_item, error);
CFDataRef new_pk = SecDbItemGetPrimaryKey(new_item, error);
ok = old_pk && new_pk;
bool pk_equal = ok && CFEqual(old_pk, new_pk);
if (pk_equal) {
ok = SecDbItemMakeYounger(new_item, old_item, error);
} else if(!CFEqualSafe(makeTombstone, kCFBooleanFalse) && SecCKKSIsEnabled()) {
s3dl_item_make_new_uuid(new_item, uuid_from_primary_key, error);
}
ok = ok && SecDbItemDoUpdate(old_item, new_item, dbconn, &localError, ^bool(const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
if (localError) {
if(CFErrorGetCode(localError) == SQLITE_CONSTRAINT && CFEqual(kSecDbErrorDomain, CFErrorGetDomain(localError))) {
SecDbQueryRef query = SecDbQueryCreateWithItemPrimaryKey(new_item, error);
ok = query;
if (query) {
ok &= SecDbItemSelect(query, dbconn, error, NULL, ^bool(const SecDbAttr *attr) {
return attr->flags & kSecDbPrimaryKeyFlag;
}, NULL, NULL, ^(SecDbItemRef duplicate_item, bool *stop) {
bool is_corrupt = false;
bool is_tomb = false;
ok = SecDbItemIsCorrupt(duplicate_item, &is_corrupt, error);
if (ok && !is_corrupt) {
if ((is_tomb = SecDbItemIsTombstone(duplicate_item)))
ok = SecDbItemMakeYounger(new_item, duplicate_item, error);
}
if (ok && (is_corrupt || is_tomb)) {
ok = SecDbItemDoDelete(old_item, dbconn, error, ^bool (const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
ok = ok && SecDbItemDoUpdate(duplicate_item, new_item, dbconn, error, ^bool (const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
CFReleaseNull(localError);
}
});
ok &= query_destroy(query, error);
}
}
if (localError) {
ok = false;
if (error && *error == NULL) {
*error = localError;
localError = NULL;
}
CFReleaseSafe(localError);
}
}
if (ok && !pk_equal && !CFEqualSafe(makeTombstone, kCFBooleanFalse)) {
SecDbItemRef tombstone = SecDbItemCopyTombstone(old_item, makeTombstone, error);
ok = tombstone;
if (tombstone) {
ok = (SecDbItemClearRowId(tombstone, error) &&
SecDbItemDoInsert(tombstone, dbconn, error));
CFRelease(tombstone);
}
}
return ok;
}
bool SecDbItemDelete(SecDbItemRef item, SecDbConnectionRef dbconn, CFBooleanRef makeTombstone, CFErrorRef *error) {
bool ok = false;
if (!CFEqualSafe(makeTombstone, kCFBooleanFalse)) {
SecDbItemRef tombstone = SecDbItemCopyTombstone(item, makeTombstone, error);
if (tombstone) {
ok = SecDbItemDoUpdate(item, tombstone, dbconn, error, ^bool(const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
CFRelease(tombstone);
}
} else {
ok = SecDbItemDoDelete(item, dbconn, error, ^bool(const SecDbAttr *attr) {
return attr->kind == kSecDbRowIdAttr;
});
}
return ok;
}
CFStringRef SecDbItemCopySelectSQL(SecDbQueryRef query,
bool (^return_attr)(const SecDbAttr *attr),
bool (^use_attr_in_where)(const SecDbAttr *attr),
bool (^add_where_sql)(CFMutableStringRef sql, bool *needWhere)) {
CFMutableStringRef sql = CFStringCreateMutable(kCFAllocatorDefault, 0);
CFStringAppend(sql, CFSTR("SELECT "));
bool needComma = false;
SecDbForEachAttr(query->q_class, attr) {
if (return_attr(attr))
SecDbAppendElement(sql, attr->name, &needComma);
}
CFStringAppend(sql, CFSTR(" FROM "));
CFStringAppend(sql, query->q_class->name);
bool needWhere = true;
SecDbForEachAttr(query->q_class, attr) {
if (use_attr_in_where(attr)) {
CFTypeRef value = CFDictionaryGetValue(query->q_item, attr->name);
if (isArray(value)) {
CFArrayRef array = (CFArrayRef)value;
CFIndex length = CFArrayGetCount(array);
if (length > 0) {
CFTypeRef head = CFArrayGetValueAtIndex(array, 0);
if (CFEqualSafe(head, kCFNull)) {
SecDbAppendWhereOrAndNotIn(sql, attr->name, &needWhere, length - 1);
} else {
SecDbAppendWhereOrAndIn(sql, attr->name, &needWhere, length);
}
}
} else {
SecDbAppendWhereOrAndEquals(sql, attr->name, &needWhere);
}
}
}
if (add_where_sql)
add_where_sql(sql, &needWhere);
return sql;
}
static bool SecDbItemSelectBindValue(SecDbQueryRef query, sqlite3_stmt *stmt, int param, const SecDbAttr *attr, CFTypeRef inValue, CFErrorRef *error) {
bool ok = true;
CFTypeRef value = NULL;
if (attr->kind == kSecDbRowIdAttr) {
value = CFNumberCreate(NULL, kCFNumberSInt64Type, &query->q_row_id);
} else {
value = SecDbAttrCopyValueForDb(attr, inValue, error);
}
ok = ok && value != NULL && SecDbBindObject(stmt, ++param, value, error);
CFReleaseSafe(value);
return ok;
}
bool SecDbItemSelectBind(SecDbQueryRef query, sqlite3_stmt *stmt, CFErrorRef *error,
bool (^use_attr_in_where)(const SecDbAttr *attr),
bool (^bind_added_where)(sqlite3_stmt *stmt, int col)) {
__block bool ok = true;
__block int param = 0;
SecDbForEachAttr(query->q_class, attr) {
if (use_attr_in_where(attr)) {
CFTypeRef value = CFDictionaryGetValue(query->q_item, attr->name);
if (isArray(value)) {
CFArrayRef array = (CFArrayRef)value;
CFRange range = {.location = 0, .length = CFArrayGetCount(array) };
if (range.length > 0) {
CFTypeRef head = CFArrayGetValueAtIndex(array, 0);
if (CFEqualSafe(head, kCFNull)) {
range.length--;
range.location++;
}
}
CFArrayApplyFunction(array, range, apply_block_1, (void (^)(const void *value)) ^(const void *value) {
ok = SecDbItemSelectBindValue(query, stmt, param++, attr, value, error);
});
} else {
ok = SecDbItemSelectBindValue(query, stmt, param++, attr, value, error);
}
if (!ok)
break;
}
}
if (bind_added_where)
bind_added_where(stmt, ++param);
return ok;
}
bool SecDbItemSelect(SecDbQueryRef query, SecDbConnectionRef dbconn, CFErrorRef *error,
bool (^return_attr)(const SecDbAttr *attr),
bool (^use_attr_in_where)(const SecDbAttr *attr),
bool (^add_where_sql)(CFMutableStringRef sql, bool *needWhere),
bool (^bind_added_where)(sqlite3_stmt *stmt, int col),
void (^handle_row)(SecDbItemRef item, bool *stop)) {
__block bool ok = true;
if (return_attr == NULL) {
return_attr = ^bool (const SecDbAttr * attr) {
return attr->kind == kSecDbRowIdAttr || attr->kind == kSecDbEncryptedDataAttr || attr->kind == kSecDbSHA1Attr;
};
}
if (use_attr_in_where == NULL) {
use_attr_in_where = ^bool (const SecDbAttr* attr) { return false; };
}
CFStringRef sql = SecDbItemCopySelectSQL(query, return_attr, use_attr_in_where, add_where_sql);
if (sql) {
ok &= SecDbPrepare(dbconn, sql, error, ^(sqlite3_stmt *stmt) {
ok = (SecDbItemSelectBind(query, stmt, error, use_attr_in_where, bind_added_where) &&
SecDbStep(dbconn, stmt, error, ^(bool *stop) {
SecDbItemRef item = SecDbItemCreateWithStatement(kCFAllocatorDefault, query->q_class, stmt, query->q_keybag, error, return_attr);
if (item) {
CFRetainAssign(item->credHandle, query->q_use_cred_handle);
handle_row(item, stop);
CFRelease(item);
} else {
}
}));
});
CFRelease(sql);
} else {
ok = false;
}
return ok;
}