react-native-device-defense 1.1.0 → 1.1.2

package/android/src/main/cpp/device-security.cpp

@@ -242,28 +242,6 @@ static bool checkFridaInMaps() {
  * Check for SSL validation bypass in system properties
  */
 static bool checkSSLValidationBypass() {
-    const std::vector<std::string> propFiles = {
-        "/system/build.prop",
-        "/vendor/build.prop",
-        "/default.prop"
-    };
-
-    for (const auto& propFile : propFiles) {
-        if (!fileExists(propFile)) continue;
-
-        std::ifstream file(propFile);
-        std::string line;
-
-        while (std::getline(file, line)) {
-            // Check for SSL validation bypass indicators
-            if (line.find("ssl.untrusted=0") != std::string::npos) {
-                LOGD("Found SSL validation bypass in %s", propFile.c_str());
-                return true;
-            }
-
-        }
-    }
-
     return false;
 }
 
@@ -320,27 +298,6 @@ static bool checkSSLPinningBypass() {
  * Check for proxy configuration that could intercept SSL traffic
  */
 static bool checkProxyConfiguration() {
-    // Check for HTTP proxy in system properties
-    const std::vector<std::string> propFiles = {
-        "/system/build.prop",
-        "/vendor/build.prop"
-    };
-
-    for (const auto& propFile : propFiles) {
-        if (!fileExists(propFile)) continue;
-
-        std::ifstream file(propFile);
-        std::string line;
-
-        while (std::getline(file, line)) {
-            if (line.find("http.proxy") != std::string::npos ||
-                line.find("https.proxy") != std::string::npos) {
-                LOGD("Found proxy configuration in %s", propFile.c_str());
-                return true;
-            }
-        }
-    }
-
     // Check for proxy environment variables
     if (getenv("http_proxy") != nullptr || getenv("https_proxy") != nullptr) {
         LOGD("Found proxy environment variables");
@@ -361,8 +318,14 @@ static bool checkModifiedSSLLibraries() {
     const std::vector<std::string> trustedPaths = {
         "/system/lib/libssl",
         "/system/lib64/libssl",
-        "/apex/com.android.conscrypt/lib",
+        "/system/lib/libcrypto",
+        "/system/lib64/libcrypto",
+        "/apex/com.android.conscrypt/",
+        "/apex/com.android.runtime/",
         "/data/app/", // App's own lib path
+        "/data/data/", // App data directory
+        "/vendor/lib/", // Vendor directory
+        "/vendor/lib64/", // Vendor directory
         "/com.android.conscrypt"
     };
 
@@ -396,8 +359,7 @@ static bool checkModifiedSSLLibraries() {
 static bool checkCertificateTampering() {
     // Check for user-installed CA certificates
     const std::vector<std::string> certPaths = {
-        "/data/misc/keychain/cacerts-added",
-        "/system/etc/security/cacerts"
+        "/data/misc/keychain/cacerts-added"
     };
 
     for (const auto& certPath : certPaths) {
@@ -416,8 +378,8 @@ static bool checkCertificateTampering() {
                 closedir(dir);
 
                 // Too many user certificates might indicate tampering
-                if (certCount > 100) {
-                    LOGD("Suspicious number of certificates: %d", certCount);
+                if (certCount > 10) {
+                    LOGD("Suspicious number of user certificates: %d", certCount);
                     return true;
                 }
             }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "react-native-device-defense",
-  "version": "1.1.0",
+  "version": "1.1.2",
   "description": "Multi-layer device security detection for React Native (root, hook, debugger, emulator detection)",
   "main": "lib/commonjs/index.js",
   "module": "lib/module/index.js",