Fresh Project Using Insecure APIs (_sscanf, _strlen, _fopen, malloc) in Binary

Developer Tools & Services Xcode
This thread has been locked by a moderator; it no longer accepts new replies.
imran_hussain546 OP
Created 1w
Replies 1
Boosts 0
Views 99
Participants 2

Hello Apple Developer Community,

I recently created a fresh project with:

No dependencies

No additional written code

After generating the iOS build, I navigated to the build folder:

cd build/ios/iphoneos/Runner.app

Then, I ran the following commands to inspect the binary:

otool -Iv Runner | grep -w _strlen

otool -Iv Runner | grep -w _malloc

Surprisingly, I received positive results, meaning these functions are present in the binary.

My Questions:

Why is a fresh Flutter project (with no extra dependencies) including these APIs in the binary?

Answered by DTS Engineer in 827397022

Let’s focus this discussion on your other thread.

I’m hoping to be able to reply there later today.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Boost
Replies  1
Boosts  0
Views  99
Participants  2
DTS Engineer OP
Apple
5d
Accepted Answer
Recommended

Let’s focus this discussion on your other thread.

I’m hoping to be able to reply there later today.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

0
Fresh Project Using Insecure APIs (_sscanf, _strlen, _fopen, malloc) in Binary
First post date Last post date
 
 
Q