@capgo/capacitor-updater 7.40.5 → 7.42.3

package/ios/Sources/CapacitorUpdaterPlugin/CryptoCipher.swift

@@ -63,13 +63,21 @@ public struct CryptoCipher {
                 detectedFormat = "base64"
             }
             // swiftlint:disable:next line_length
-            logger.debug("Received encrypted checksum format: \(detectedFormat) (length: \(checksum.count) chars, \(checksumBytes.count) bytes)")
+            logger.debug("Received checksum format: \(detectedFormat) (length: \(checksum.count) chars, \(checksumBytes.count) bytes)")
 
             if checksumBytes.isEmpty {
                 logger.error("Decoded checksum is empty")
                 throw CustomError.cannotDecode
             }
 
+            // RSA-2048 encrypted data must be exactly 256 bytes
+            // If the checksum is not 256 bytes, the bundle was not encrypted properly
+            if checksumBytes.count != 256 {
+                // swiftlint:disable:next line_length
+                logger.error("Checksum is not RSA encrypted (size: \(checksumBytes.count) bytes, expected 256 for RSA-2048). Bundle must be uploaded with encryption when public key is configured.")
+                throw CustomError.cannotDecode
+            }
+
             guard let rsaPublicKey = RSAPublicKey.load(rsaPublicKey: publicKey) else {
                 logger.error("The public key is not a valid RSA Public key")
                 throw CustomError.cannotDecode
@@ -278,8 +286,10 @@ public struct CryptoCipher {
         }
     }
 
-    /// Get first 4 characters of the public key for identification
-    /// Returns 4-character string or empty string if key is invalid/empty
+    /// Get first 20 characters of the public key for identification
+    /// Returns 20-character string or empty string if key is invalid/empty
+    /// The first 12 chars are always "MIIBCgKCAQEA" for RSA 2048-bit keys,
+    /// so the unique part starts at character 13
     public static func calcKeyId(publicKey: String) -> String {
         if publicKey.isEmpty {
             return ""
@@ -293,7 +303,7 @@ public struct CryptoCipher {
             .replacingOccurrences(of: "\r", with: "")
             .replacingOccurrences(of: " ", with: "")
 
-        // Return first 4 characters of the base64-encoded key
-        return String(cleanedKey.prefix(4))
+        // Return first 20 characters of the base64-encoded key
+        return String(cleanedKey.prefix(20))
     }
 }

package/ios/Sources/CapacitorUpdaterPlugin/InternalUtils.swift

@@ -135,6 +135,28 @@ struct InfoObject: Codable {
 }
 // swiftlint:enable identifier_name
 
+// swiftlint:disable identifier_name
+struct StatsEvent: Codable {
+    let platform: String?
+    let device_id: String?
+    let app_id: String?
+    let custom_id: String?
+    let version_build: String?
+    let version_code: String?
+    let version_os: String?
+    let version_name: String?
+    let old_version_name: String?
+    let plugin_version: String?
+    let is_emulator: Bool?
+    let is_prod: Bool?
+    let action: String?
+    let channel: String?
+    let defaultChannel: String?
+    let key_id: String?
+    let timestamp: Int64
+}
+// swiftlint:enable identifier_name
+
 // swiftlint:disable identifier_name
 public struct ManifestEntry: Codable {
     let file_name: String?
@@ -263,6 +285,7 @@ enum CustomError: Error {
     case cannotDeleteDirectory
     case cannotDecryptSessionKey
     case invalidBase64
+    case insufficientDiskSpace
 
     // Throw in all other cases
     case unexpected(code: Int)
@@ -316,6 +339,53 @@ extension CustomError: LocalizedError {
                 "Decrypting the base64 failed",
                 comment: "Invalid checksum key"
             )
+        case .insufficientDiskSpace:
+            return NSLocalizedString(
+                "Insufficient disk space for download",
+                comment: "Not enough storage"
+            )
+        }
+    }
+}
+
+/// Thread-safe atomic counter for concurrent operations
+final class AtomicCounter {
+    private var value: Int = 0
+    private let lock = NSLock()
+
+    func increment() -> Int {
+        lock.lock()
+        defer { lock.unlock() }
+        value += 1
+        return value
+    }
+
+    var current: Int {
+        lock.lock()
+        defer { lock.unlock() }
+        return value
+    }
+}
+
+/// Thread-safe atomic boolean for concurrent operations
+final class AtomicBool {
+    private var _value: Bool
+    private let lock = NSLock()
+
+    init(initialValue: Bool = false) {
+        _value = initialValue
+    }
+
+    var value: Bool {
+        get {
+            lock.lock()
+            defer { lock.unlock() }
+            return _value
+        }
+        set {
+            lock.lock()
+            defer { lock.unlock() }
+            _value = newValue
         }
     }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@capgo/capacitor-updater",
-  "version": "7.40.5",
+  "version": "7.42.3",
   "license": "MPL-2.0",
   "description": "Live update for capacitor apps",
   "main": "dist/plugin.cjs.js",