Exports one or more certificates, keys, or identities.
SDK
- macOS 10.0–10.7Deprecated
Framework
- Security
Declaration
OSStatus SecKeychainItemExport(CFTypeParameters
keychainItemOrArrayThe keychain item or items to export. You can export only the following types of keychain items:
Sec,Certificate Ref Sec, andKey Ref Sec. If you are exporting exactly one item, you can specify aIdentity Ref Secobject. Otherwise this parameter is aKeychain Item Ref CFArrayobject containing a number of items of typeRef Sec.Keychain Item Ref outputFormatThe format of the desired external representation for the item. Set this parameter to
kto use the default for that item type. Possible values for this parameter and default values are enumerated inSec Format Unknown Sec.External Format flagsA flag indicating whether the exported item should have PEM armor. PEM armor refers to a way of expressing binary data as an ASCII string so that it can be transferred over text-only channels such as email. Set this flag to
kif you want PEM armoring.Sec Item Pem Armour keyParamsA pointer to a structure containing a set of input parameters for the function. If no key items are being exported, these parameters are optional and you can set the
keyparameter toParams NULL.exportedDataOn return, points to the external representation of the keychain item or items.
Return Value
A result code. See Security Framework Result Codes.
Discussion
This function works only with keys, certificates, and identities. An identity is the combination of a certificate and its associated private key. Although public keys are commonly stored in certificates, they can be stored separately in the keychain as well; for example, when you call the Sec function to create a key pair, both the public and private keys are stored in the keychain. Use the Sec function to find a key or certificate. Use the Sec function in the Certificate, Key, and Trust API to find an identity.
Special Considerations
This function is deprecated in macOS 10.7 and later; use Sec instead.