本人于2015年5月写的可运行的RSA加密解密算法,升级到iOS9之后,到SecItemAdd
就crash掉了。
打了断点发现SecKeyRef竟然为空,几个月前可不是这样的,只能是iOS9更新了什么。看了一下官方文档:About the security content of iOS 9
CFNetwork SSL
Available for: iPhone 4s and later, iPod touch (5th generation) and later, iPad 2 and later
Impact: An attacker may be able to decrypt data protected by SSL
Description: There are known attacks on the confidentiality of RC4. An attacker could force the use of RC4, even if the server preferred better ciphers, by blocking TLS 1.0 and higher connections until CFNetwork tried SSL 3.0, which only allows RC4. This issue was addressed by removing the fallback to SSL 3.0.
大概就是说,旧的网络方式被破了,所以换成了SSL 3.0的。SSL 3.0用的是RSA加密,所以,我觉得是苹果认为觉得自己新的连接方式比较安全,不需要双层加密吧。(当然也有可能是苹果的bug,Import of RSA key crashes on iOS9)
在@xillkey的启发下想到一个曲折救国的解决方案:
就是偷偷新建一个web view把加密的算法用javascript执行,曲线救国
首先,在项目里新建一个rsa.html,然后写上以下代码: