We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
前一段时间做 RSA 加密,使用了这个库,上线后出现大量解密失败的数据,整了这么大个坑,年终奖都要泡汤了,心里哇凉哇凉的。。。
+[RSA addPublicKey:], +[RSA addPrivateKey:]这两个方法线程不安全,并发读写 Keychain 数据时,会出现获取密钥失败的情况,导致加密失败
+[RSA addPublicKey:]
+[RSA addPrivateKey:]
读写 Keychain 数据时,用了一个默认的标记 tag RSAUtil_PubKey 、RSAUtil_PrivKey ,许多 SDK 都使用了这个库,而且没有修改 tag,如果不修改 tag,并发环境下,有可能读到其他 SDK 的密钥,导致加密数据错乱
RSAUtil_PubKey
RSAUtil_PrivKey
The text was updated successfully, but these errors were encountered:
No branches or pull requests
前一段时间做 RSA 加密,使用了这个库,上线后出现大量解密失败的数据,整了这么大个坑,年终奖都要泡汤了,心里哇凉哇凉的。。。
+[RSA addPublicKey:],+[RSA addPrivateKey:]这两个方法线程不安全,并发读写 Keychain 数据时,会出现获取密钥失败的情况,导致加密失败读写 Keychain 数据时,用了一个默认的标记 tag
RSAUtil_PubKey、RSAUtil_PrivKey,许多 SDK 都使用了这个库,而且没有修改 tag,如果不修改 tag,并发环境下,有可能读到其他 SDK 的密钥,导致加密数据错乱The text was updated successfully, but these errors were encountered: