Magisk/app/src/main/java/com/topjohnwu/magisk/utils/SafetyNetHelper.java

package com.topjohnwu.magisk.utils;

import android.os.Bundle;
import android.support.annotation.NonNull;
import android.support.annotation.Nullable;
import android.support.v4.app.FragmentActivity;
import android.util.Base64;

import com.google.android.gms.common.ConnectionResult;
import com.google.android.gms.common.api.GoogleApiClient;
import com.google.android.gms.common.api.Status;
import com.google.android.gms.safetynet.SafetyNet;
import com.topjohnwu.magisk.R;

import org.json.JSONException;
import org.json.JSONObject;

import java.security.SecureRandom;

public abstract class SafetyNetHelper
        implements GoogleApiClient.OnConnectionFailedListener, GoogleApiClient.ConnectionCallbacks {

    private static boolean isRunning = false;

    private GoogleApiClient mGoogleApiClient;
    private Result ret;
    protected FragmentActivity mActivity;

    public SafetyNetHelper(FragmentActivity activity) {
        ret = new Result();
        mActivity = activity;
    }

    // Entry point to start test
    public void requestTest() {
        if (isRunning)
            return;
        // Connect Google Service
        mGoogleApiClient = new GoogleApiClient.Builder(mActivity)
                .enableAutoManage(mActivity, this)
                .addApi(SafetyNet.API)
                .addConnectionCallbacks(this)
                .build();
        mGoogleApiClient.connect();
        isRunning = true;
    }

    @Override
    public void onConnectionFailed(@NonNull ConnectionResult result) {
        Logger.dev("SN: Google API fail");
        ret.errmsg = result.getErrorMessage();
        handleResults(ret);
    }

    @Override
    public void onConnectionSuspended(int i) {
        Logger.dev("SN: Google API Suspended");
        switch (i) {
            case CAUSE_NETWORK_LOST:
                ret.errmsg = mActivity.getString(R.string.safetyNet_network_loss);
                break;
            case CAUSE_SERVICE_DISCONNECTED:
                ret.errmsg = mActivity.getString(R.string.safetyNet_service_disconnected);
                break;
        }
        handleResults(ret);
    }

    @Override
    public void onConnected(@Nullable Bundle bundle) {
        Logger.dev("SN: Google API Connected");
        // Create nonce
        byte[] nonce = new byte[24];
        new SecureRandom().nextBytes(nonce);

        Logger.dev("SN: Check with nonce: " + Base64.encodeToString(nonce, Base64.DEFAULT));

        // Call SafetyNet
        SafetyNet.SafetyNetApi.attest(mGoogleApiClient, nonce)
                .setResultCallback(result -> {
                    Status status = result.getStatus();
                    if (status.isSuccess()) {
                        String json = new String(Base64.decode(result.getJwsResult().split("\\.")[1], Base64.DEFAULT));
                        Logger.dev("SN: Response: " + json);
                        try {
                            JSONObject decoded = new JSONObject(json);
                            ret.ctsProfile = decoded.getBoolean("ctsProfileMatch");
                            ret.basicIntegrity = decoded.getBoolean("basicIntegrity");
                            ret.failed = false;
                        } catch (JSONException e) {
                            ret.errmsg = mActivity.getString(R.string.safetyNet_res_invalid);
                        }
                    } else {
                        Logger.dev("SN: No response");
                        ret.errmsg = mActivity.getString(R.string.safetyNet_no_response);
                    }
                    // Disconnect
                    mGoogleApiClient.stopAutoManage(mActivity);
                    mGoogleApiClient.disconnect();
                    isRunning = false;
                    handleResults(ret);
                });
    }

    // Callback function to save the results
    public abstract void handleResults(Result result);

    public static class Result {
        public boolean failed = true;
        public String errmsg;
        public boolean ctsProfile = false;
        public boolean basicIntegrity = false;
    }
}
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`package com.topjohnwu.magisk.utils;`

			`import android.os.Bundle;`
			`import android.support.annotation.NonNull;`
			`import android.support.annotation.Nullable;`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`import android.support.v4.app.FragmentActivity;`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`import android.util.Base64;`

			`import com.google.android.gms.common.ConnectionResult;`
			`import com.google.android.gms.common.api.GoogleApiClient;`
			`import com.google.android.gms.common.api.Status;`
			`import com.google.android.gms.safetynet.SafetyNet;`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`import com.topjohnwu.magisk.R;`
Add SafetyNet check 2016-12-23 23:05:41 +08:00
			`import org.json.JSONException;`
			`import org.json.JSONObject;`

			`import java.security.SecureRandom;`

			`public abstract class SafetyNetHelper`
			`implements GoogleApiClient.OnConnectionFailedListener, GoogleApiClient.ConnectionCallbacks {`

Prevent crashing when requesting SN check while checking Fixed #208, fixed #212 2017-07-13 15:12:43 +08:00			`private static boolean isRunning = false;`

Add SafetyNet check 2016-12-23 23:05:41 +08:00			`private GoogleApiClient mGoogleApiClient;`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`private Result ret;`
			`protected FragmentActivity mActivity;`
Add SafetyNet check 2016-12-23 23:05:41 +08:00
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`public SafetyNetHelper(FragmentActivity activity) {`
			`ret = new Result();`
			`mActivity = activity;`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`}`

Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`// Entry point to start test`
			`public void requestTest() {`
Prevent crashing when requesting SN check while checking Fixed #208, fixed #212 2017-07-13 15:12:43 +08:00			`if (isRunning)`
			`return;`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`// Connect Google Service`
Prevent crashing when requesting SN check while checking Fixed #208, fixed #212 2017-07-13 15:12:43 +08:00			`mGoogleApiClient = new GoogleApiClient.Builder(mActivity)`
			`.enableAutoManage(mActivity, this)`
			`.addApi(SafetyNet.API)`
			`.addConnectionCallbacks(this)`
			`.build();`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`mGoogleApiClient.connect();`
Prevent crashing when requesting SN check while checking Fixed #208, fixed #212 2017-07-13 15:12:43 +08:00			`isRunning = true;`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`}`

			`@Override`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`public void onConnectionFailed(@NonNull ConnectionResult result) {`
			`Logger.dev("SN: Google API fail");`
			`ret.errmsg = result.getErrorMessage();`
			`handleResults(ret);`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`}`

			`@Override`
			`public void onConnectionSuspended(int i) {`
			`Logger.dev("SN: Google API Suspended");`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`switch (i) {`
			`case CAUSE_NETWORK_LOST:`
			`ret.errmsg = mActivity.getString(R.string.safetyNet_network_loss);`
			`break;`
			`case CAUSE_SERVICE_DISCONNECTED:`
			`ret.errmsg = mActivity.getString(R.string.safetyNet_service_disconnected);`
			`break;`
			`}`
			`handleResults(ret);`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`}`

Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`@Override`
			`public void onConnected(@Nullable Bundle bundle) {`
			`Logger.dev("SN: Google API Connected");`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`// Create nonce`
			`byte[] nonce = new byte[24];`
			`new SecureRandom().nextBytes(nonce);`

			`Logger.dev("SN: Check with nonce: " + Base64.encodeToString(nonce, Base64.DEFAULT));`

			`// Call SafetyNet`
			`SafetyNet.SafetyNetApi.attest(mGoogleApiClient, nonce)`
			`.setResultCallback(result -> {`
			`Status status = result.getStatus();`
			`if (status.isSuccess()) {`
			`String json = new String(Base64.decode(result.getJwsResult().split("\\.")[1], Base64.DEFAULT));`
			`Logger.dev("SN: Response: " + json);`
			`try {`
			`JSONObject decoded = new JSONObject(json);`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`ret.ctsProfile = decoded.getBoolean("ctsProfileMatch");`
			`ret.basicIntegrity = decoded.getBoolean("basicIntegrity");`
			`ret.failed = false;`
			`} catch (JSONException e) {`
			`ret.errmsg = mActivity.getString(R.string.safetyNet_res_invalid);`
			`}`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`} else {`
			`Logger.dev("SN: No response");`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`ret.errmsg = mActivity.getString(R.string.safetyNet_no_response);`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`}`
			`// Disconnect`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`mGoogleApiClient.stopAutoManage(mActivity);`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`mGoogleApiClient.disconnect();`
Prevent crashing when requesting SN check while checking Fixed #208, fixed #212 2017-07-13 15:12:43 +08:00			`isRunning = false;`
Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`handleResults(ret);`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`});`
			`}`

Update SafetyNet check UI 2017-05-20 03:04:14 +08:00			`// Callback function to save the results`
			`public abstract void handleResults(Result result);`

			`public static class Result {`
			`public boolean failed = true;`
			`public String errmsg;`
			`public boolean ctsProfile = false;`
			`public boolean basicIntegrity = false;`
			`}`
Add SafetyNet check 2016-12-23 23:05:41 +08:00			`}`