mirror of https://github.com/flutter/flutter.git synced 2025-06-03 00:51:18 +00:00

History

Chris Bracken 68f375fe38 [macOS] support secure restorable state by default (#151605 ) By default, Flutter apps only do default AppKit app serialisation of Window location etc. and by default, state serialisation in AppKit apps is compatible with `NSSecureCoding`. AppKit apps generated since Xcode 13.2 include this method in the app delegate generated by the default app template. Background ========== This method was added to opt into having [de]serialization require a coder implementing the `NSSecureCoding` protocol. Apple wasn't able to force this across the board, because `NSSecureCoding` limits certain behaviours during deserialisation, which some third-party apps have have previously relied on. Specific background on the sorts of vulnerabilities that `NSSecureCoding` was designed to prevent are described in the `NSSecureCoding` documentation: https://developer.apple.com/documentation/foundation/nssecurecoding?language=objc A demonstration of a root privilege escalation and SIP bypass vulnerability is described in the following blog post: https://sector7.computest.nl/post/2022-08-process-injection-breaking-all-macos-security-layers-with-a-single-vulnerability/ Fixes: https://github.com/flutter/flutter/issues/150062 ## Pre-launch Checklist - [X] I read the [Contributor Guide] and followed the process outlined there for submitting PRs. - [X] I read the [Tree Hygiene] wiki page, which explains my responsibilities. - [X] I read and followed the [Flutter Style Guide], including [Features we expect every widget to implement]. - [X] I signed the [CLA]. - [X] I listed at least one issue that this PR fixes in the description above. - [X] I updated/added relevant documentation (doc comments with `///`). - [ ] I added new tests to check the change I am making, or this PR is [test-exempt]. - [X] I followed the [breaking change policy] and added [Data Driven Fixes] where supported. - [X] All existing and new tests are passing. If you need help, consider asking for advice on the #hackers-new channel on [Discord]. <!-- Links --> [Contributor Guide]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#overview [Tree Hygiene]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md [test-exempt]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#tests [Flutter Style Guide]: https://github.com/flutter/flutter/blob/main/docs/contributing/Style-guide-for-Flutter-repo.md [Features we expect every widget to implement]: https://github.com/flutter/flutter/blob/main/docs/contributing/Style-guide-for-Flutter-repo.md#features-we-expect-every-widget-to-implement [CLA]: https://cla.developers.google.com/ [flutter/tests]: https://github.com/flutter/tests [breaking change policy]: https://github.com/flutter/flutter/blob/main/docs/contributing/Tree-hygiene.md#handling-breaking-changes [Discord]: https://github.com/flutter/flutter/blob/main/docs/contributing/Chat.md [Data Driven Fixes]: https://github.com/flutter/flutter/blob/main/docs/contributing/Data-driven-Fixes.md		2024-07-12 11:08:26 -07:00
..
api	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
flutter_view	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
hello_world	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
image_list	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
layers	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
platform_channel	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
platform_channel_swift	Roll pub packages (#151492 )	2024-07-09 22:47:35 +00:00
platform_view	[macOS] support secure restorable state by default (#151605 )	2024-07-12 11:08:26 -07:00
splash	Roll pub packages (#151492 )	2024-07-09 22:47:35 +00:00
texture	Roll pub packages (#151492 )	2024-07-09 22:47:35 +00:00
.clang-format	Implement Linux part of examples (#108068 )	2022-12-08 08:44:11 +13:00
flutter_gallery.readme	Move flutter_gallery to the testing folder (#52532 )	2020-03-16 10:31:42 +01:00
README.md	Update flutter.dev links from misc packages to more permanent destinations (#150532 )	2024-06-20 23:09:08 +00:00

README.md

Flutter Examples

This directory contains several examples of using Flutter. To run an example, use flutter run inside that example's directory. See the getting started guide to install the flutter tool.

For additional samples, see the flutter/samples repo.

Available examples include:

Hello, world The hello world app is a minimal Flutter app that shows the text "Hello, world!"
Flutter gallery The flutter gallery app no longer lives in this repo. Please see the gallery repo.
Layers The layers vignettes show how to use the various layers in the Flutter framework. For details, see the layers README.
Platform Channel The platform channel app demonstrates how to connect a Flutter app to platform-specific APIs. For documentation, see https://flutter.dev/to/platform-channels/.
Platform Channel Swift The platform channel swift app is the same as platform channel but the iOS version is in Swift and there is no Android version.

Notes

Note on Gradle wrapper files in .gitignore:

Gradle wrapper files should normally be checked into source control. The example projects don't do that to avoid having several copies of the wrapper binary in the Flutter repo. Instead, the Gradle wrapper is injected by Flutter tooling, and the wrapper files are .gitignore'd to avoid making the Flutter repository dirty as a side effect of running the examples.