Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Feat/sdk 4227/Encryption v2 #400

Open
wants to merge 4 commits into
base: develop
Choose a base branch
from
Open

Feat/sdk 4227/Encryption v2 #400

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
9965acc
Merge pull request #390 from CleverTap/develop
akashvercetti Nov 29, 2024
6d98aaf
Merge pull request #399 from CleverTap/develop
nishant-clevertap Jan 23, 2025
7a1c00c
Added CryptoKit swift implmentation
kushCT Jan 29, 2025
5b1ed52
Updated AES GCM implementation for encryption
kushCT Jan 30, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion CleverTap-iOS-SDK.podspec
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,7 +13,7 @@ s.resource_bundles = {'CleverTapSDK' => ['CleverTapSDK/*.{xcprivacy}']}
s.ios.dependency 'SDWebImage', '~> 5.11'
s.ios.resource_bundle = {'CleverTapSDK' => ['CleverTapSDK/**/*.{png,xib,html}', 'CleverTapSDK/**/*.xcdatamodeld']}
s.ios.deployment_target = '9.0'
s.ios.source_files = 'CleverTapSDK/**/*.{h,m}'
s.ios.source_files = 'CleverTapSDK/**/*.{h,m,swift}'
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codebase verification

Add Swift version 6.0 to podspec

The main SDK project uses Swift 6.0, and the podspec should align with this version for the newly added Swift files:

 s.ios.source_files          = 'CleverTapSDK/**/*.{h,m,swift}'
+s.swift_version             = '6.0'
🔗 Analysis chain

Verify Swift version compatibility.

The addition of Swift files requires specifying the minimum Swift version for compatibility.

Consider adding the Swift version specification:

 s.ios.source_files          = 'CleverTapSDK/**/*.{h,m,swift}'
+s.swift_version             = '5.0'

Let's verify the Swift files in the project:

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Find all Swift files in the project
echo "Swift files in the project:"
fd -e swift . CleverTapSDK/

# Check for Swift version specifications in other files
echo -e "\nChecking for existing Swift version specifications:"
rg -i "swift_version" .

Length of output: 2715

s.ios.exclude_files = 'CleverTapSDK/include/**/*.h'
s.ios.public_header_files = 'CleverTapSDK/CleverTap.h', 'CleverTapSDK/CleverTap+SSLPinning.h','CleverTapSDK/CleverTap+Inbox.h', 'CleverTapSDK/CleverTapInstanceConfig.h', 'CleverTapSDK/CleverTapBuildInfo.h', 'CleverTapSDK/CleverTapEventDetail.h', 'CleverTapSDK/CleverTapInAppNotificationDelegate.h', 'CleverTapSDK/CleverTapSyncDelegate.h', 'CleverTapSDK/CleverTapTrackedViewController.h', 'CleverTapSDK/CleverTapUTMDetail.h', 'CleverTapSDK/CleverTapJSInterface.h', 'CleverTapSDK/CleverTap+DisplayUnit.h', 'CleverTapSDK/CleverTap+FeatureFlags.h', 'CleverTapSDK/CleverTap+ProductConfig.h', 'CleverTapSDK/CleverTapPushNotificationDelegate.h', 'CleverTapSDK/CleverTapURLDelegate.h', 'CleverTapSDK/CleverTap+InAppNotifications.h', 'CleverTapSDK/CleverTap+SCDomain.h', 'CleverTapSDK/CleverTap+PushPermission.h', 'CleverTapSDK/InApps/CTLocalInApp.h', 'CleverTapSDK/CleverTap+CTVar.h', 'CleverTapSDK/ProductExperiences/CTVar.h', 'CleverTapSDK/LeanplumCT.h', 'CleverTapSDK/InApps/CustomTemplates/CTInAppTemplateBuilder.h', 'CleverTapSDK/InApps/CustomTemplates/CTAppFunctionBuilder.h', 'CleverTapSDK/InApps/CustomTemplates/CTTemplatePresenter.h', 'CleverTapSDK/InApps/CustomTemplates/CTTemplateProducer.h', 'CleverTapSDK/InApps/CustomTemplates/CTCustomTemplateBuilder.h', 'CleverTapSDK/InApps/CustomTemplates/CTCustomTemplate.h', 'CleverTapSDK/InApps/CustomTemplates/CTTemplateContext.h', 'CleverTapSDK/InApps/CustomTemplates/CTCustomTemplatesManager.h', 'CleverTapSDK/InApps/CustomTemplates/CTJsonTemplateProducer.h'
s.tvos.deployment_target = '9.0'
Expand Down
22 changes: 20 additions & 2 deletions CleverTapSDK.xcodeproj/project.pbxproj
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -151,6 +151,7 @@
07FD65A2223BC26300A845B7 /* CTCoverViewController~iphoneland.xib in Resources */ = {isa = PBXBuildFile; fileRef = 07FD65A1223BC26300A845B7 /* CTCoverViewController~iphoneland.xib */; };
07FD65A4223BCB8200A845B7 /* CTCoverViewController~ipadland.xib in Resources */ = {isa = PBXBuildFile; fileRef = 07FD65A3223BCB8200A845B7 /* CTCoverViewController~ipadland.xib */; };
0B5564562C25946C00B87284 /* CTUserInfoMigratorTest.m in Sources */ = {isa = PBXBuildFile; fileRef = 0B5564552C25946C00B87284 /* CTUserInfoMigratorTest.m */; };
0B80D41B2D4A111900521AD9 /* CTEncryptor.swift in Sources */ = {isa = PBXBuildFile; fileRef = 0B80D41A2D4A111900521AD9 /* CTEncryptor.swift */; };
0B995A4A2C36AEDC00AF6006 /* CTLocalDataStoreTests.m in Sources */ = {isa = PBXBuildFile; fileRef = 0B995A492C36AEDC00AF6006 /* CTLocalDataStoreTests.m */; };
1F1C18806B7F29B3374F2448 /* libPods-shared-CleverTapSDKTestsApp.a in Frameworks */ = {isa = PBXBuildFile; fileRef = E303560B5EE1D154C1E3D9EF /* libPods-shared-CleverTapSDKTestsApp.a */; };
32394C1F29FA251E00956058 /* CTEventBuilderTest.m in Sources */ = {isa = PBXBuildFile; fileRef = 32394C1E29FA251E00956058 /* CTEventBuilderTest.m */; };
Expand Down Expand Up @@ -769,6 +770,7 @@
07FD65A1223BC26300A845B7 /* CTCoverViewController~iphoneland.xib */ = {isa = PBXFileReference; lastKnownFileType = file.xib; path = "CTCoverViewController~iphoneland.xib"; sourceTree = "<group>"; };
07FD65A3223BCB8200A845B7 /* CTCoverViewController~ipadland.xib */ = {isa = PBXFileReference; lastKnownFileType = file.xib; path = "CTCoverViewController~ipadland.xib"; sourceTree = "<group>"; };
0B5564552C25946C00B87284 /* CTUserInfoMigratorTest.m */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.objc; path = CTUserInfoMigratorTest.m; sourceTree = "<group>"; };
0B80D41A2D4A111900521AD9 /* CTEncryptor.swift */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.swift; path = CTEncryptor.swift; sourceTree = "<group>"; };
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💡 Codebase verification

Swift version 6.0 is incorrectly specified

The project is configured to use Swift 6.0, which is not yet released. Please update the SWIFT_VERSION to a stable release (e.g., Swift 5.x) to ensure proper compatibility with iOS 9.0 deployment target.

🔗 Analysis chain

Verify Swift version compatibility with deployment target.

The addition of Swift code requires careful consideration of deployment target compatibility. Please ensure that Swift 6.0 is compatible with the iOS 9.0 deployment target specified in the project settings.

🏁 Scripts executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Check Swift version compatibility
xcodebuild -showBuildSettings | grep SWIFT

Length of output: 145

Script:

#!/bin/bash
# Search for Swift version and deployment target settings
rg "SWIFT_VERSION|IPHONEOS_DEPLOYMENT_TARGET" CleverTapSDK.xcodeproj/project.pbxproj

Length of output: 592

0B995A492C36AEDC00AF6006 /* CTLocalDataStoreTests.m */ = {isa = PBXFileReference; lastKnownFileType = sourcecode.c.objc; path = CTLocalDataStoreTests.m; sourceTree = "<group>"; };
0CA46771B6F202E37DAC9F70 /* Pods-shared-CleverTapSDKTestsApp.debug.xcconfig */ = {isa = PBXFileReference; includeInIndex = 1; lastKnownFileType = text.xcconfig; name = "Pods-shared-CleverTapSDKTestsApp.debug.xcconfig"; path = "Target Support Files/Pods-shared-CleverTapSDKTestsApp/Pods-shared-CleverTapSDKTestsApp.debug.xcconfig"; sourceTree = "<group>"; };
129AEC403AFA828F591B756E /* Pods-shared-CleverTapSDKTests.release.xcconfig */ = {isa = PBXFileReference; includeInIndex = 1; lastKnownFileType = text.xcconfig; name = "Pods-shared-CleverTapSDKTests.release.xcconfig"; path = "Target Support Files/Pods-shared-CleverTapSDKTests/Pods-shared-CleverTapSDKTests.release.xcconfig"; sourceTree = "<group>"; };
Expand Down Expand Up @@ -1330,6 +1332,16 @@
name = Frameworks;
sourceTree = "<group>";
};
0B80D4192D4A10EB00521AD9 /* Encryption */ = {
isa = PBXGroup;
children = (
4803951A2A7ABAD200C4D254 /* CTAES.h */,
480395192A7ABAD200C4D254 /* CTAES.m */,
0B80D41A2D4A111900521AD9 /* CTEncryptor.swift */,
);
path = Encryption;
sourceTree = "<group>";
};
4847D16B2CCB9018008DC327 /* EventDatabase */ = {
isa = PBXGroup;
children = (
Expand Down Expand Up @@ -1754,11 +1766,10 @@
D0C7BBBF207D82C0001345EF /* CleverTapSDK */ = {
isa = PBXGroup;
children = (
0B80D4192D4A10EB00521AD9 /* Encryption */,
4847D16B2CCB9018008DC327 /* EventDatabase */,
6B9E95B62C2AE6740002D557 /* FileDownload */,
3242D7DA2B1DDA2E00A5E37A /* PrivacyInfo.xcprivacy */,
4803951A2A7ABAD200C4D254 /* CTAES.h */,
480395192A7ABAD200C4D254 /* CTAES.m */,
4808030D292EB4FB00C06E2F /* CleverTap+PushPermission.h */,
4E838C4429A0C94B00ED0875 /* CleverTap+CTVar.h */,
4E64855A287440BA00C2F409 /* AmazonRootCA1.cer */,
Expand Down Expand Up @@ -2296,6 +2307,7 @@
};
D0C7BBBC207D82C0001345EF = {
CreatedOnToolsVersion = 9.3;
LastSwiftMigration = 1610;
};
};
};
Expand Down Expand Up @@ -2769,6 +2781,7 @@
4E49AE55275D24570074A774 /* CTValidationResultStack.m in Sources */,
D01A0895207EC2D400423D6F /* CleverTapInstanceConfig.m in Sources */,
071EB4C8217F6427008F0FAB /* CTDismissButton.m in Sources */,
0B80D41B2D4A111900521AD9 /* CTEncryptor.swift in Sources */,
6BB778C82BECEC2700A41628 /* CTCustomTemplateInAppData.m in Sources */,
4EF0D5472AD84BCA0044C48F /* CTSessionManager.m in Sources */,
4EB3638B2C087A8200C00AE2 /* CTUserInfoMigrator.m in Sources */,
Expand Down Expand Up @@ -3211,6 +3224,7 @@
isa = XCBuildConfiguration;
buildSettings = {
APPLICATION_EXTENSION_API_ONLY = YES;
CLANG_ENABLE_MODULES = YES;
CLANG_WARN_QUOTED_INCLUDE_IN_FRAMEWORK_HEADER = NO;
CODE_SIGN_IDENTITY = "";
CODE_SIGN_STYLE = Manual;
Expand Down Expand Up @@ -3249,6 +3263,8 @@
"PROVISIONING_PROFILE_SPECIFIER[sdk=macosx*]" = "";
SKIP_INSTALL = YES;
SUPPORTS_MACCATALYST = NO;
SWIFT_OPTIMIZATION_LEVEL = "-Onone";
SWIFT_VERSION = 6.0;
TARGETED_DEVICE_FAMILY = "1,2";
};
name = Debug;
Expand All @@ -3257,6 +3273,7 @@
isa = XCBuildConfiguration;
buildSettings = {
APPLICATION_EXTENSION_API_ONLY = YES;
CLANG_ENABLE_MODULES = YES;
CLANG_WARN_QUOTED_INCLUDE_IN_FRAMEWORK_HEADER = NO;
CODE_SIGN_IDENTITY = "";
CODE_SIGN_STYLE = Manual;
Expand Down Expand Up @@ -3286,6 +3303,7 @@
"PROVISIONING_PROFILE_SPECIFIER[sdk=macosx*]" = "";
SKIP_INSTALL = YES;
SUPPORTS_MACCATALYST = NO;
SWIFT_VERSION = 6.0;
TARGETED_DEVICE_FAMILY = "1,2";
};
name = Release;
Expand Down
17 changes: 17 additions & 0 deletions CleverTapSDK/Encryption/AESCrypt.h
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
//
// AESCrypt.h
// Pods
//
// Created by Kushagra Mishra on 29/01/25.
//
#import <Foundation/Foundation.h>
#import <CommonCrypto/CommonCrypto.h>

@interface AESCrypt : NSObject

+ (NSData *)AES128WithOperation:(CCOperation)operation
key:(NSString *)key
identifier:(NSString *)identifier
data:(NSData *)data;

@end
53 changes: 53 additions & 0 deletions CleverTapSDK/Encryption/AESCrypt.m
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,53 @@
//
// AESCrypt.m
// Pods
//
// Created by Kushagra Mishra on 29/01/25.
//
#import "AESCrypt.h"

@implementation AESCrypt : NSObject

+ (NSData *)AES128WithOperation:(CCOperation)operation
key:(NSString *)key
identifier:(NSString *)identifier
data:(NSData *)data {
// Note: The key will be 0's but we intentionally are keeping it this way to maintain
// compatibility. The correct code is:
// char keyPtr[[key length] + 1];
char keyCString[kCCKeySizeAES128 + 1];
memset(keyCString, 0, sizeof(keyCString));
[key getCString:keyCString maxLength:sizeof(keyCString) encoding:NSUTF8StringEncoding];

char identifierCString[kCCBlockSizeAES128 + 1];
memset(identifierCString, 0, sizeof(identifierCString));
[identifier getCString:identifierCString
maxLength:sizeof(identifierCString)
encoding:NSUTF8StringEncoding];

size_t outputAvailableSize = [data length] + kCCBlockSizeAES128;
void *output = malloc(outputAvailableSize);

Comment on lines +28 to +30
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

Potential memory leak in output buffer handling.

The dataWithBytesNoCopy: method takes ownership of the buffer, but if the method returns nil, the buffer isn't freed. Consider using dataWithBytesNoCopy:length:freeWhenDone: for explicit memory management.

-    return [NSData dataWithBytesNoCopy:output length:outputMovedSize];
+    return [NSData dataWithBytesNoCopy:output length:outputMovedSize freeWhenDone:YES];

Also applies to: 50-50

size_t outputMovedSize = 0;
CCCryptorStatus cryptStatus = CCCrypt(operation,
kCCAlgorithmAES128,
kCCOptionPKCS7Padding,
keyCString,
kCCBlockSizeAES128,
identifierCString,
[data bytes],
[data length],
output,
outputAvailableSize,
&outputMovedSize);

if (cryptStatus != kCCSuccess) {
NSLog(@"Failed to encode/decode the string with error code: %d", cryptStatus);
free(output);
return nil;
}

return [NSData dataWithBytesNoCopy:output length:outputMovedSize];
}

@end
95 changes: 95 additions & 0 deletions CleverTapSDK/Encryption/AESGCMCrypt.swift
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,95 @@
//
// AESGCMCrypt.swift
// Pods
//
// Created by Kushagra Mishra on 29/01/25.
//

import Foundation
import CryptoKit

@objc public enum AESGCMEncryptionErrorCode: Int {
case encryptionFailed
case decryptionFailed
case invalidData
case dataNotFound
}

@objcMembers
class AESGCMCryptResult: NSObject {
let iv: Data
let data: Data

init(iv: Data, data: Data) {
self.iv = iv
self.data = data
super.init()
}
}

@objc enum CryptError: Int, Error {
case invalidMode = 0
case keyGenerationFailed = 1
case encryptionFailed = 2
case decryptionFailed = 3
case ivRequired = 4
}

@available(iOS 13, *)
@objcMembers
class AESGCMCrypt: NSObject {
private let keyIdentifier = "your.key.identifier"
private static let ivSize = 12

private func generateOrGetKey() throws -> SymmetricKey {
if let existingKey = try? getKeyFromKeychain() {
return existingKey
}

let newKey = SymmetricKey(size: .bits256)
try storeKeyInKeychain(newKey)
return newKey
}
Comment on lines +38 to +52
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🛠️ Refactor suggestion

Handle Keychain concurrency or errors more explicitly.
generateOrGetKey() is a crucial function for retrieving and storing keys. In multi-threaded scenarios or repeated calls, concurrent attempts to generate the key may occur. Ensure robust handling for potential race conditions.


func performCryptOperation(mode: Bool, data: Data, iv: Data? = nil) throws -> AESGCMCryptResult {
let key = try generateOrGetKey()

if mode { // Encrypt
let nonce = try AES.GCM.Nonce(data: iv ?? Data())
let sealedBox = try AES.GCM.seal(data, using: key, nonce: nonce)

return AESGCMCryptResult(
iv: sealedBox.nonce.withUnsafeBytes { Data($0) },
data: sealedBox.ciphertext + sealedBox.tag
)
} else { // Decrypt
guard let iv = iv else {
throw CryptError.ivRequired
}

let tagLength = 16
let ciphertext = data.dropLast(tagLength)
let tag = data.suffix(tagLength)

let nonce = try AES.GCM.Nonce(data: iv)
let sealedBox = try AES.GCM.SealedBox(
nonce: nonce,
ciphertext: ciphertext,
tag: tag
)

let decryptedData = try AES.GCM.open(sealedBox, using: key)
return AESGCMCryptResult(iv: iv, data: decryptedData)
}
}


private func storeKeyInKeychain(_ key: SymmetricKey) throws {
// Implement secure key storage in Keychain
}

private func getKeyFromKeychain() throws -> SymmetricKey? {
// Implement secure key retrieval from Keychain
return nil
}
}
Comment on lines +85 to +95
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

Implement or remove placeholder methods.
The methods for storing/retrieving keys in the Keychain are not implemented. If these remain unimplemented, the encryption logic will likely fail outside of test or mock environments.

- private func storeKeyInKeychain(_ key: SymmetricKey) throws {
-     // Implement secure key storage in Keychain
- }
+ private func storeKeyInKeychain(_ key: SymmetricKey) throws {
+     // Suggested implementation example or future integration:
+     // 1. Convert SymmetricKey to raw data
+     // 2. Use Keychain Services to store
+     // 3. Handle OSStatus errors
+ }

- private func getKeyFromKeychain() throws -> SymmetricKey? {
-     // Implement secure key retrieval from Keychain
-     return nil
- }
+ private func getKeyFromKeychain() throws -> SymmetricKey? {
+     // 1. Obtain raw data from Keychain
+     // 2. Convert raw data to SymmetricKey
+     // 3. Return the key object or nil if not found
+ }

Committable suggestion skipped: line range outside the PR's diff.

0 CleverTapSDK/CTAES.h → CleverTapSDK/Encryption/CTAES.h
View file
Open in desktop
File renamed without changes.
62 changes: 16 additions & 46 deletions CleverTapSDK/CTAES.m → CleverTapSDK/Encryption/CTAES.m
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,9 @@
#import "CTConstants.h"
#import "CTPreferences.h"
#import "CTUtils.h"
#import "AESCrypt.h"
#import "CTEncryptor.h"


NSString *const kENCRYPTION_KEY = @"CLTAP_ENCRYPTION_KEY";
NSString *const kCRYPT_KEY_PREFIX = @"Lq3fz";
Expand Down Expand Up @@ -129,53 +132,20 @@ - (NSString *)getDecryptedString:(NSString *)identifier {

- (NSData *)convertData:(NSData *)data
withOperation:(CCOperation)operation {
NSData *outputData = [self AES128WithOperation:operation
key:[self generateKeyPassword]
identifier:CLTAP_ENCRYPTION_IV
data:data];
return outputData;
}

- (NSData *)AES128WithOperation:(CCOperation)operation
key:(NSString *)key
identifier:(NSString *)identifier
data:(NSData *)data {
// Note: The key will be 0's but we intentionally are keeping it this way to maintain
// compatibility. The correct code is:
// char keyPtr[[key length] + 1];
char keyCString[kCCKeySizeAES128 + 1];
memset(keyCString, 0, sizeof(keyCString));
[key getCString:keyCString maxLength:sizeof(keyCString) encoding:NSUTF8StringEncoding];

char identifierCString[kCCBlockSizeAES128 + 1];
memset(identifierCString, 0, sizeof(identifierCString));
[identifier getCString:identifierCString
maxLength:sizeof(identifierCString)
encoding:NSUTF8StringEncoding];

size_t outputAvailableSize = [data length] + kCCBlockSizeAES128;
void *output = malloc(outputAvailableSize);

size_t outputMovedSize = 0;
CCCryptorStatus cryptStatus = CCCrypt(operation,
kCCAlgorithmAES128,
kCCOptionPKCS7Padding,
keyCString,
kCCBlockSizeAES128,
identifierCString,
[data bytes],
[data length],
output,
outputAvailableSize,
&outputMovedSize);

if (cryptStatus != kCCSuccess) {
CleverTapLogStaticInternal(@"Failed to encode/deocde the string with error code: %d", cryptStatus);
free(output);
return nil;
// NSData *outputData = [AESCrypt AES128WithOperation:operation
// key:[self generateKeyPassword]
// identifier:CLTAP_ENCRYPTION_IV
// data:data];
NSError *error = nil;
BOOL keyGenerated = [CTEncryptor generateKeyWithError:&error];
if (!keyGenerated) {
NSLog(@"Error generating key: %@", error);
}
NSData *outputData = [CTEncryptor performCryptOperation:data error:&error];
if (error) {
NSLog(@"Encryption failed: %@", error.localizedDescription);
Comment on lines +140 to +146
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

⚠️ Potential issue

Pass CCOperation to CTEncryptor or handle encryption/decryption paths.
This method now ignores the operation parameter (kCCEncrypt or kCCDecrypt). Ensure that CTEncryptor has a way to differentiate encryption from decryption to avoid unexpected behavior.

 NSData *outputData = nil;
 NSError *error = nil;
 BOOL keyGenerated = [CTEncryptor generateKeyWithError:&error];
 if (!keyGenerated) {
     NSLog(@"Error generating key: %@", error);
 }
- outputData = [CTEncryptor performCryptOperation:data error:&error];
+ outputData = [CTEncryptor performCryptOperation:data operation:operation error:&error];
 if (error) {
     NSLog(@"Encryption failed: %@", error.localizedDescription);
 }
 return outputData;

Also applies to: 148-148

}

return [NSData dataWithBytesNoCopy:output length:outputMovedSize];
return outputData;
}

- (NSString *)getCachedKey:(NSString *)value {
Expand Down
23 changes: 23 additions & 0 deletions CleverTapSDK/Encryption/CTEncryptor.h
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
//
// EncryptionBridge.h
// Pods
//
// Created by Kushagra Mishra on 29/01/25.
//
#import <Foundation/Foundation.h>
#import <CommonCrypto/CommonCrypto.h>

NS_ASSUME_NONNULL_BEGIN

@interface CTEncryptor : NSObject

// Key Management
+ (BOOL)generateKeyWithError:(NSError **)error;
+ (BOOL)deleteKeyWithError:(NSError **)error;

// Encryption/Decryption
+ (NSString * _Nullable)performCryptOperation:(NSString *)string error:(NSError **)error;

@end

NS_ASSUME_NONNULL_END
Loading
Loading