Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

FIX Timeout for ANDROID_SAFETYNET_ATTESTATION #52

Merged
merged 1 commit into from
Nov 4, 2024
Merged

FIX Timeout for ANDROID_SAFETYNET_ATTESTATION #52

merged 1 commit into from
Nov 4, 2024

Conversation

nic
Copy link
Contributor

@nic nic commented May 13, 2024
edited
Loading

What is this PR for?

This pull request is intended to fix a critical issue in the timestamp validation logic used in the SafetyNet attestation process for Android devices. The adjustment ensures the validity period check is accurate and compliant with security standards.

Overview or reasons

The existing code used to validate the timestamp in SafetyNet attestation had an error in the multiplication factor, resulting in a shorter threshold than intended. Specifically, the condition mistakenly used 60 * 100 milliseconds (6 seconds), whereas it should be 60 * 1000 milliseconds (60 seconds or 1 minute). This discrepancy could lead to premature rejection of valid attestations.

Tasks

Code Correction: Modified the multiplier in the timestamp validation from 100 to 1000, correcting the threshold from 6000 milliseconds to 60000 milliseconds.

Result

The correction to the timestamp validation logic now ensures that the threshold is set correctly at 60000 milliseconds (1 minute). This fix aligns the implementation with the intended security specifications and prevents the erroneous rejection of valid SafetyNet attestations.

@CLAassistant
Copy link

CLAassistant commented May 13, 2024
edited
Loading

CLA assistant check
All committers have signed the CLA.

@kj84park
Copy link
Member

kj84park commented Nov 1, 2024

@nic
Thank you very much for your help. However, there is a conflict, so please check this part.

@nic nic closed this Nov 1, 2024
@nic nic reopened this Nov 1, 2024
@nic
Copy link
Contributor Author

nic commented Nov 1, 2024

@kj84park solved!

@kj84park kj84park self-requested a review November 4, 2024 00:29
kj84park
kj84park approved these changes Nov 4, 2024
View reviewed changes
Copy link
Member

@kj84park kj84park left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes look great, approved!

@kj84park kj84park merged commit c9b3338 into line:main Nov 4, 2024
5 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kj84park kj84park kj84park approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@nic @CLAassistant @kj84park