From a45457dc989880967814263aa94e5a305d4fd8ba Mon Sep 17 00:00:00 2001
From: Wang Han <416810799@qq.com>
Date: Sun, 21 Jul 2024 21:17:38 +0800
Subject: [PATCH] Fallback to generating keypair automatically

---
 .../io/github/a13e300/tricky_store/Config.kt  | 30 ++++++++++++++++++-
 1 file changed, 29 insertions(+), 1 deletion(-)

diff --git a/service/src/main/java/io/github/a13e300/tricky_store/Config.kt b/service/src/main/java/io/github/a13e300/tricky_store/Config.kt
index 25e7467..ab434c2 100644
--- a/service/src/main/java/io/github/a13e300/tricky_store/Config.kt
+++ b/service/src/main/java/io/github/a13e300/tricky_store/Config.kt
@@ -3,12 +3,20 @@ package io.github.a13e300.tricky_store
 import android.content.pm.IPackageManager
 import android.os.FileObserver
 import android.os.ServiceManager
+import android.security.keystore.KeyGenParameterSpec
+import android.security.keystore.KeyProperties
+
 import io.github.a13e300.tricky_store.keystore.CertHack
+
 import java.io.File
+import java.security.KeyPairGenerator
+import java.security.spec.ECGenParameterSpec
+import java.util.Date
 
 object Config {
     private val hackPackages = mutableSetOf<String>()
     private val generatePackages = mutableSetOf<String>()
+    private var canHackLeaf: Boolean = true
 
     private fun updateTargetPackages(f: File?) = runCatching {
         hackPackages.clear()
@@ -16,7 +24,9 @@ object Config {
         f?.readLines()?.forEach {
             if (it.isNotBlank() && !it.startsWith("#")) {
                 val n = it.trim()
-                if (n.endsWith("!")) generatePackages.add(n.removeSuffix("!").trim())
+                if (!canHackLeaf || n.endsWith("!")) generatePackages.add(
+                    n.removeSuffix("!").trim()
+                )
                 else hackPackages.add(n)
             }
         }
@@ -25,6 +35,23 @@ object Config {
         Logger.e("failed to update target files", it)
     }
 
+    private fun canHackLeaf(): Boolean = runCatching {
+        val builder = KeyGenParameterSpec.Builder("TrickyStore", KeyProperties.PURPOSE_SIGN)
+            .setAlgorithmParameterSpec(ECGenParameterSpec("secp256r1"))
+            .setDigests(KeyProperties.DIGEST_SHA256)
+            .setCertificateNotBefore(Date())
+            .setAttestationChallenge(Date().toString().toByteArray())
+        val keyPairGenerator = KeyPairGenerator.getInstance(
+            KeyProperties.KEY_ALGORITHM_EC, "AndroidKeyStore"
+        )
+        keyPairGenerator.initialize(builder.build())
+        keyPairGenerator.generateKeyPair()
+        true
+    }.getOrElse {
+        Logger.i("cannot generate keypair, always generating it on our own")
+        false
+    }
+
     private fun updateKeyBox(f: File?) = runCatching {
         CertHack.readFromXml(f?.readText())
     }.onFailure {
@@ -52,6 +79,7 @@ object Config {
     }
 
     fun initialize() {
+        canHackLeaf = canHackLeaf()
         root.mkdirs()
         val scope = File(root, TARGET_FILE)
         if (scope.exists()) {