(Objective-C) Convert Java KeyStore to PEM

Loads a Java keystore file and saves the trusted certificate entries to a PEM file.

Chilkat Objective-C Library Downloads MAC OS X (Cocoa) Libs iOS Libs

#import <CkoJavaKeyStore.h>
#import <NSString.h>
#import <CkoFileAccess.h>
#import <CkoCert.h>

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

CkoJavaKeyStore *jks = [[CkoJavaKeyStore alloc] init];

NSString *jksPassword = @"myJksPassword";

// Load the Java keystore from a file.  The JKS file password is used
// to verify the keyed digest that is found at the very end of the keystore.
// It verifies that the keystore has not been modified.
BOOL success = [jks LoadFile: jksPassword path: @"/someDir/keyStore.jks"];
if (success != YES) {
    NSLog(@"%@",jks.LastErrorText);
    return;
}

// Open/create the output PEM file. 
// This example uses Chilkat's file access class for writing the output file.
// You may replace the file I/O lines of code with whatever is most convenient for you.
CkoFileAccess *fac = [[CkoFileAccess alloc] init];
success = [fac OpenForWrite: @"/pemFiles/caCerts.pem"];
if (success != YES) {
    NSLog(@"%@",fac.LastErrorText);
    return;
}

int numCerts = [jks.NumTrustedCerts intValue];
int i;

CkoCert *cert = 0;
NSString *pem = 0;

// Iterate over the trusted certs, get the PEM for each,
// and append it to the output file.
i = 0;
while (i < numCerts) {
    cert = [jks GetTrustedCert: [NSNumber numberWithInt: i]];

    // Get the certificate in PEM format.  
    pem = [cert ExportCertPem];

    // Append the PEM string to the open file.
    // The PEM contains only us-ascii chars..
    success = [fac AppendAnsi: pem];
    if (success != YES) {
        NSLog(@"%@",fac.LastErrorText);

        return;
    }

    i = i + 1;
}

// Close the output file.
[fac FileClose];

NSLog(@"%@",@"Trusted certificates saved to PEM.");