release: freeRASP 6.4.0 (#101)

* chore(docs): update note about Xcode version

* fix(deps): change namespace from "talsec" to "freerasp"

* build(deps): bump flutter_plugin_android_lifecycle to 2.0.11

* chore(docs): update CHANGELOG.md

* chore(deps): bump plugin version

* chore(deps): bump talsec ios framework

* feat: Update packages

Author: yardexx

CHANGELOG.md

@@ -1,13 +1,24 @@
+# freeRASP 6.4.0
+Minor fixes and improvements
+
+## What's new in 6.4.0?
+- ⚡ Improved reaction obfuscation
+- ⚡ Improved obfuscation of the iOS SDK
+- ⚡ Fixed ProviderException on Android
+- ⚡ Fixed typo in namespace which caused incompatibility with AGP 8.0
+- 📄 Fixed information about Xcode version
+- ❗ Raised supported Xcode version to 14.3.1
+
 # freeRASP 6.3.0
 Improved logging of the Android SDK and minor bug fixes
 
 ## What's new in 6.3.0?
 - 📄 Documentation updates and improvements
-- ✔️ updated CA bundle for logging pinning
-- ✔️ added error logging of network issues within the logging process
-- ✔️ added retry politics for logging
-- ⚡ fixed issue with DeadObjectException on Android 5 and 6 caused by excessive PackageManager.queryIntentActivities() usage
-- ⚡ improved root detection capabilities
+- ✔️ Updated CA bundle for logging pinning
+- ✔️ Added error logging of network issues within the logging process
+- ✔️ Added retry politics for logging
+- ⚡ Fixed issue with DeadObjectException on Android 5 and 6 caused by excessive PackageManager.queryIntentActivities() usage
+- ⚡ Improved root detection capabilities
 
 # freeRASP 6.2.0
 Minor fixes and added support for AGP 8.0

README.md

@@ -95,7 +95,7 @@ and integration script from your project:
 
 **Otherwise, no further setup is required.**
 
-**Note: You need Xcode 13 to be able to build the application.**
+**Note: You need Xcode 14.3.1 to be able to build the application.**
 
 ### Android setup
 

android/build.gradle

@@ -1,3 +1,5 @@
+package android
+
 group 'com.aheaditec.freerasp'
 version '1.0-SNAPSHOT'
 
@@ -28,8 +30,9 @@ apply plugin: 'kotlin-android'
 
 android {
     if (project.android.hasProperty("namespace")) {
-        namespace("com.aheaditec.talsec")
+        namespace("com.aheaditec.freerasp")
     }
+
     compileSdkVersion 33
 
     compileOptions {
@@ -55,5 +58,5 @@ dependencies {
     implementation "org.jetbrains.kotlin:kotlin-stdlib-jdk7:$kotlin_version"
 
     // Talsec SDK
-    implementation 'com.aheaditec.talsec.security:TalsecSecurity-Community-Flutter:8.3.0'
+    implementation 'com.aheaditec.talsec.security:TalsecSecurity-Community-Flutter:9.0.0'
 }

android/settings.gradle

@@ -1 +1,3 @@
+package android
+
 rootProject.name = 'freerasp'

android/src/main/kotlin/com/aheaditec/freerasp/Threat.kt

@@ -1,14 +1,30 @@
 package com.aheaditec.freerasp
 
-internal enum class Threat(val value: String) {
-    DEBUG("debug"),
-    HOOKS("hooks"),
-    PASSCODE("passcode"),
-    SIMULATOR("simulator"),
-    APP_INTEGRITY("appIntegrity"),
-    OBFUSCATION_ISSUES("obfuscationIssues"),
-    DEVICE_BINDING("deviceBinding"),
-    UNOFFICIAL_STORE("unofficialStore"),
-    PRIVILEGED_ACCESS("privilegedAccess"),
-    SECURE_HARDWARE_NOT_AVAILABLE("secureHardwareNotAvailable"),
+/**
+ * Sealed class to represent the error codes.
+ *
+ * Sealed classes are used because of obfuscation - enums classes are not obfuscated well enough.
+ *
+ * @property value integer value of the error code.
+ */
+internal sealed class Threat(val value: Int) {
+    object Debug : Threat(1268968002)
+
+    object Hooks : Threat(209533833)
+
+    object Passcode : Threat(1293399086)
+
+    object Simulator : Threat(477190884)
+
+    object AppIntegrity : Threat(1115787534)
+
+    object ObfuscationIssues : Threat(1001443554)
+
+    object DeviceBinding : Threat(1806586319)
+
+    object UnofficialStore : Threat(629780916)
+
+    object PrivilegedAccess : Threat(44506749)
+
+    object SecureHardwareNotAvailable : Threat(1564314755)
 }

android/src/main/kotlin/com/aheaditec/freerasp/handlers/PluginThreatHandler.kt

@@ -26,43 +26,43 @@ internal object PluginThreatHandler : ThreatDetected, DeviceState {
     }
 
     override fun onRootDetected() {
-        notify(Threat.PRIVILEGED_ACCESS)
+        notify(Threat.PrivilegedAccess)
     }
 
     override fun onDebuggerDetected() {
-        notify(Threat.DEBUG)
+        notify(Threat.Debug)
     }
 
     override fun onEmulatorDetected() {
-        notify(Threat.SIMULATOR)
+        notify(Threat.Simulator)
     }
 
     override fun onTamperDetected() {
-        notify(Threat.APP_INTEGRITY)
+        notify(Threat.AppIntegrity)
     }
 
     override fun onUntrustedInstallationSourceDetected() {
-        notify(Threat.UNOFFICIAL_STORE)
+        notify(Threat.UnofficialStore)
     }
 
     override fun onHookDetected() {
-        notify(Threat.HOOKS)
+        notify(Threat.Hooks)
     }
 
     override fun onDeviceBindingDetected() {
-        notify(Threat.DEVICE_BINDING)
+        notify(Threat.DeviceBinding)
     }
 
     override fun onObfuscationIssuesDetected() {
-        notify(Threat.OBFUSCATION_ISSUES)
+        notify(Threat.ObfuscationIssues)
     }
 
     override fun onUnlockedDeviceDetected() {
-        notify(Threat.PASSCODE)
+        notify(Threat.Passcode)
     }
 
     override fun onHardwareBackedKeystoreNotAvailableDetected() {
-        notify(Threat.SECURE_HARDWARE_NOT_AVAILABLE)
+        notify(Threat.SecureHardwareNotAvailable)
     }
 
     private fun notify(threat: Threat) {

example/ios/Runner.xcodeproj/project.pbxproj

@@ -155,7 +155,7 @@
 		97C146E61CF9000F007C117D /* Project object */ = {
 			isa = PBXProject;
 			attributes = {
-				LastUpgradeCheck = 1300;
+				LastUpgradeCheck = 1430;
 				ORGANIZATIONNAME = "";
 				TargetAttributes = {
 					97C146ED1CF9000F007C117D = {

example/ios/Runner.xcodeproj/xcshareddata/xcschemes/Runner.xcscheme

@@ -1,6 +1,6 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <Scheme
-   LastUpgradeVersion = "1300"
+   LastUpgradeVersion = "1430"
    version = "1.3">
    <BuildAction
       parallelizeBuildables = "YES"

ios/Classes/TalsecHandlers.swift

@@ -1,5 +1,17 @@
 import TalsecRuntime
 
+private let unknownValue = -1
+private let signatureValue = 1115787534
+private let jailbreakValue = 44506749
+private let debuggerValue = 1268968002
+private let runtimeManipulationValue = 209533833
+private let passcodeValue = 1293399086
+private let simulatorValue = 477190884
+private let missingSecureEnclaveValue = 1564314755
+private let deviceChangeValue = 1806586319
+private let deviceIDValue =  1514211414
+private let unofficialStoreValue = 629780916
+
 /// Extension with submits events to plugin
 extension SecurityThreatCenter: SecurityThreatHandler {
 
@@ -10,32 +22,32 @@ extension SecurityThreatCenter: SecurityThreatHandler {
 
 /// An extension to unify callback names with Flutter ones.
 extension SecurityThreat {
-    var callbackIdentifier: String {
+    var callbackIdentifier: Int {
         switch self {
         case .signature:
-            return "appIntegrity"
+            return signatureValue
         case .jailbreak:
-            return "privilegedAccess"
+            return jailbreakValue
         case .debugger:
-            return "debug"
+            return debuggerValue
         case .runtimeManipulation:
-            return "hooks"
+            return runtimeManipulationValue
         case .passcode:
-            return "passcode"
+            return passcodeValue
         case .passcodeChange:
-            return "passcodeChange"
+            return unknownValue
         case .simulator:
-            return "simulator"
+            return simulatorValue
         case .missingSecureEnclave:
-            return "secureHardwareNotAvailable"
+            return missingSecureEnclaveValue
         case .deviceChange:
-            return "deviceBinding"
+            return deviceChangeValue
         case .deviceID:
-            return "deviceId"
+            return deviceIDValue
         case .unofficialStore:
-            return "unofficialStore"
+            return unofficialStoreValue
         @unknown default:
-            return "unknown"
+            return unknownValue
         }
     }
 }

ios/TalsecRuntime.xcframework/ios-arm64/TalsecRuntime.framework/Headers/CurlWrapper.h

@@ -16,7 +16,7 @@
 #include <unistd.h>
 #include <string.h>
 
-struct kBbxcmydgpEs {
+struct aTgpGSDJLteG {
     char *memory;
     size_t size;
     CURLcode ret;