From 6cf2668ec7cd00982717c65fbb5f26051c03c27f Mon Sep 17 00:00:00 2001
From: Daniel Micay <daniel.micay@grapheneos.org>
Date: Sun, 8 Sep 2024 02:47:21 -0400
Subject: [PATCH] drop support for earlier protocol versions

Protocol version 5 was introduced with app version 73 so that becomes
the new minimum app version.
---
 .../auditor/AttestationProtocol.java            |   8 ++++----
 app/src/main/res/raw/deflate_dictionary_3.bin   | Bin 10877 -> 0 bytes
 2 files changed, 4 insertions(+), 4 deletions(-)
 delete mode 100644 app/src/main/res/raw/deflate_dictionary_3.bin

diff --git a/app/src/main/java/app/attestation/auditor/AttestationProtocol.java b/app/src/main/java/app/attestation/auditor/AttestationProtocol.java
index e9b3bd283..20672e5be 100644
--- a/app/src/main/java/app/attestation/auditor/AttestationProtocol.java
+++ b/app/src/main/java/app/attestation/auditor/AttestationProtocol.java
@@ -191,7 +191,7 @@ class AttestationProtocol {
     // downgrade protection for the OS version/patch (bootloader/TEE enforced) and app version (OS
     // enforced) by keeping them updated.
     private static final byte PROTOCOL_VERSION = 5;
-    private static final byte PROTOCOL_VERSION_MINIMUM = 4;
+    private static final byte PROTOCOL_VERSION_MINIMUM = 5;
     // can become longer in the future, but this is the minimum length
     static final byte CHALLENGE_MESSAGE_LENGTH = 1 + CHALLENGE_LENGTH * 2;
     private static final int MAX_ENCODED_CHAIN_LENGTH = 5000;
@@ -233,7 +233,7 @@ class AttestationProtocol {
     private static final byte AUDITOR_APP_VARIANT_PLAY = 1;
     private static final byte AUDITOR_APP_VARIANT_DEBUG = 2;
 
-    private static final int AUDITOR_APP_MINIMUM_VERSION = 47;
+    private static final int AUDITOR_APP_MINIMUM_VERSION = 73;
     private static final int OS_VERSION_MINIMUM = 120000;
     private static final int OS_PATCH_LEVEL_MINIMUM = 202110;
     private static final int VENDOR_PATCH_LEVEL_MINIMUM = 20211005;
@@ -1246,7 +1246,7 @@ static VerificationResult verifySerialized(final Context context, final byte[] a
         deserializer.get(compressedChain);
 
         final Certificate[] certificates;
-        final int dictionary = version < 5 ? R.raw.deflate_dictionary_3 : R.raw.deflate_dictionary_4;
+        final int dictionary = R.raw.deflate_dictionary_4;
         certificates = decodeChain(readRawResource(context, dictionary), compressedChain);
 
         final byte[] fingerprint = new byte[FINGERPRINT_LENGTH];
@@ -1501,7 +1501,7 @@ static AttestationResult generateSerialized(final Context context, final byte[]
             serializer.put(version);
 
             final byte[] compressed;
-            final int dictionary = version < 5 ? R.raw.deflate_dictionary_3 : R.raw.deflate_dictionary_4;
+            final int dictionary = R.raw.deflate_dictionary_4;
             compressed = encodeChain(readRawResource(context, dictionary), attestationCertificates);
 
             if (compressed.length > Short.MAX_VALUE) {
diff --git a/app/src/main/res/raw/deflate_dictionary_3.bin b/app/src/main/res/raw/deflate_dictionary_3.bin
deleted file mode 100644
index 5febb7ec2b620e674863163e4696fc080c973670..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 10877
zcmeHN2UJt*mQEw|-bDlz5JBK1q@ncQ1O!AnB%w-gQbl@^qJp3TB1IGs1Qifa2q;DB
z1*IxQst8Cgf(jG7&Wzr5-*w*1x@*l_&t&D~?341J|9s!x|NizqKo}$*2!kNApb#(w
z0tN##a4L}~^-dWW6aq*g=*TwoG>nc8YN(=uI0_uuvnW{ku>cV%g+pTi8=NiDmOvm%
z+7fIfr3f}y6c%TLA_50E>9GKSAV0r8OgZUMxbIAW55WuY?EM*(l}*9b#?#HwhF{Cp
z-^<(0({^tMFacQMlwZ#T0{(VNP%tG_5d>r2-gNC0u2g;eR7de~KYrD_d^s`ZB^A0`
zpHcDPu|P%XdYx^%v=`iyT?OSgk6N|e33&XOZ{F!X%V)Kq$BOI7+%T{b5C)b57|7%E
zGJ?UoF!E$6L&(QO;WVOfFbv%14*@g7!oWP_W1JAM4GkFl`xXZG!n?RT+rmJAF)31p
z3IYd*^q^DbNs%h*FjYVqaRAs4<HWnWi{rh$ZN0ql-i~gr;&>k$NAkoVU@^oY82=3h
z*iw`h_p)xp+ezeRZt}{tdrYQ>>c<|?DvM|m8jb;>x3j4b@UM74bI7<rb75p?KzS4h
zvH>e3Z@{E*UkC+=6e&wK$Zzu6fF_Jz@dHmQTH;=h@T$(G&gmoP*4mEQy>$zl%Dc6u
zp>I!mMxH4R7zE?5d^23RK2X^zfm5e|3Bk8#lE)(;=#bHz;VoC6!=EBZkqQ(LD7dGN
z6sbtwfwB*iB6Z*p7#MZYgcPa!ZSQ-gK-EEj3gjTD(|`4n9L$a+l=(hZjx~O5w_H<A
zP;J&B_<i!^YSb$jgr7=Ub+CRYt|H^<MoD0PBVC(6_ddfhe7WYdJ;ejQ5<T(-UnRf%
zf9E3;Cc<X8x*)d>2gVn@N;!=Be$c<5CkBhg+Y+&OG>VA9*<x@u00ED};O)=|Bnm(g
zZT9GiL;x5B1|fx%LZZp^l-x5>-^{=G>z^|J9}{;yju{%!7*cfa!MYr4PMqX!OIm?a
z(jz58>ZJ*ayhtJ5OE<-@xhUSbuwc9OjO%Xw>sY;<1Jtf(m7R}fF2l=&bBO>R;N2rF
z1B?U42Jlk9E>=UObt|Z9=Ngpzsf?@b0DOBNABJ%O93gDzyAxMScXI~&SB`MDePqbV
zCso-3jC)^T-6K5(042Zu=miki_g5I|00L|wfJ~}+O>=`>ou$bOp+ujvQ@BbAr5w2+
z>X>WH$f@YplKx-LX%S>|Rixh}G6;3-4~HN?n}~|*&iPzAE_aO@^W^b0YqMrc=^xwH
zP_2k!fol`!&-Zs#f-4!i8w2B0m1m`I17Xl4GVB4r!_J7IW{x}J@v!mbrKw_>8E$|c
zPE8I4QJeH&Ff9cL;6ZQ$oaA|sBN3CG6cPZWY;kBw0)_yf&_6(n0e*mX&-@E$f6AJ3
z0MmcRBnr_`80Zj`0D>X1#G6!<^WGg?Xv+_IRf`EtP@aoDw3+oFQTyCW3a0B?uAphZ
zFhp{!y_H&4k-(s=%jtcE?vfRYMBc=RHlD?Z!j8g*;Y=e$dj{8FXg;wFr`=&FSAtpP
zs1-b>oo)07-2W8T?{UZA$3Q_b6x65Ul%3Uf_i4Ax>azSC_aCn@G>jZrQv70r7q9y(
zqHyEv{mH({-c_0H<sy}5jaw|JHN&aaj^U?5ER3mgYg=|*%uEKTHWV3So_Q33LCHFA
zgJZu?a+O36Nx$z+=p1M}ZF_Usn!^Src~BQ=yfeCF4JR?cX_B_D3p15OYSmRTb?};3
znZ!0Oh0J40g=WNq_ETLlRxdlfvRq)d%X%RiK0#|3oxcKz-vrTb9nxJ=G{38Qxh46U
z%Jw`hy@liH^kOk4(cABn8g`^qEeyKt<WbBLBd@KQIp1&B-`3cFuqrPjG(~sGfFz%1
zMjEx?rrn%Hrw(FWuUr{?{0SQv=d*R$pCMS-S1Hr)H7ko+(1~g{@BKY1S>~afg`}+#
zt`b9ojIF#*QAP-8q&)g~0NCE~g2Fz~g&X!Xb`n*q#eNy$a!cH0r&yjp!m>^Tvvvxt
zIhpt=caFWk8{w4GuOJe3qHHq?XP-YvZ`rt+qCKHnEuRyECtlypRu+{QjBKZtST>3R
zU1Kg{t4-W2$=I3WIJF~t;LZdem+42t=j#j_fpQm>IZr&TT-azZXp0!nKAytK%5;KB
zK&att*|3(=&~i|>x|qn7@$&gJymjG-WMh19{EIZoI``JX8!QSvhvIIYHQ(6y*sUXL
zAR)`P{!02)rL5-YnJ2n$6)m}|`;Qh|(-b|Zm0z~x2inTDU(2aNJb*BY{bbLC{qB|2
zpkBrmv)q-wNB^upBBT%qBoYZoV$rz0P>Vt!5V&vVUpsRc<k0tnfhj;_Vlslr84C?$
zkD(<M&0(Ss?t<q<%f#c_4LOMS7OzVnn=kkvpmf*twRo&%s6RD}6sYidOV^~iv7)^-
z^DKQgDvHqP1<q%d#1ziqjHGF-ra{||;H68SD!#BJ`{jse7i6f2spZ{5g4YzTweIf-
zJ}2>T9dW8+=i%-bQMbt*v!<HN=UO{dhi?{so=Ysx{~&t2Bg68z@8z*_HbsAgN#u3r
z;>?EyPBr~`LCFRC6+U+y>ATRk;ZaB%s*f+m>E`+?N2$Vw9}P5Y@n@%V7(H9o?CX*?
znuk-}fbBofowwtHk}o%^?(WLgH_kAavcOUjmRQ6WuSD_iFgR<6BzfPcdtX~uDSM)R
zOWLze!&<9Gf>mYum|UXJn|XMPn%!!>@Zp=fN-Wz0EV$^mPV?*b#wR|aO+$BPtGCj^
zUyRC%AVoggi!Sp&K(og=9PBIs(p?vPw_+qqxn5^8sPMsay?ZG`S52sn+CA}&OQyOi
zbp4$UZHEBiBKTQ5bc&Bw)=aa0ax}B#*2e9myFqN>F~X5xGsR=mfgzRg>FQ%AtOLqb
znh)>BD}P*h<xsVuPmf@;BxOd4^z&}yl3uD%oAeoY(_hP$z{IgG+VytjX}U^Sq`56B
zJ0PFhN2m!#@lnfkO|QyZ<fkevGM;p-Pz0U&QUz$(%VJU}LSA*Oed>y9j0jH=0ujk+
z3JCm%`1q&c?{A5ZI*2UumAE?=H6_`d{nU;N=J^V+;*o(|_-_|n7WA+d-j;(&Z4kxw
zcVaCIz06m3OnXI(&%b(TPMyhm`$}#{Pjp^UXS5wsTXT|#6FB?s@kND;ZB-X38d~~N
z7YZw=yQ=BNa(UiITppFvW+)hLnUVO!*e07<GticDBzEP20$-8Qizr3c$49Ldy)5z=
zn2S8DxVV11HKZe`i6x?W&I-u0Q{jb<yCP`E^600UXBJ`@hqb0+G_foRT;a5j)ST9i
z9ti7gI%{(^Ig?7A_ER0>`HS8?vR+=nwHApwjqHG!YOLdtkRc!3hu|wdwRov_CzXnE
zae&@#Z^4K@0Yr7Zj*r+VvvY|53e~o*Z8b+jM%xG#w!bmrq~T+!xGWZNJu`OmWY*ut
zT|Eba4;6B7OxKVM&yQ}&tYo6^oKUeE`^?aCI&^hy^U1`Mu<+E}fC+Y=u%}p?DnFXT
znV%Vbvd5<f6*}(~9T}bjkJm&Tgrv`+diO0jTOZ*yO_}SWU@xcx%M8$d44xID4SlZb
zkm&jVb#ZB6c7GAFsA^CyM{^fS6Y*lDbltH%g^HHH2wn8HY2Z!IMuac-shda@u-%;2
zvRUM1WxahPB}&Aw=UVI&<=RQpJdV#u%|a@%oTAdnZzjy&x=?*F2P2PVMF;Y-cpqQh
z?!C&8{S-1BOOB0@WbzC5r{YNt!9q?KzKSPm18+|^S9?V_zwaazfWe`Vb~qG)NWj|=
zY!Ffy6o4k!*<kP(NtBc=;qR1Clyxw7^ADa|6c#O?{Urm-+1(>-*ka6~D+nL-g?T2|
z8Bu9Z8cDcQ7t8zB_D++s*bLD(Zyjnwln7l;cMAII{#O!;tYOGP3i9U?DwX=*PC~`T
z|B!2IfB;ppg!+II+oW4`U9zMgRE`*~Y#{sGv?IHD-<1X&esk2|;2H8)?zCDW<XYUN
z0AF^mm6O2k`$3b}w}{Ym&($;ZB2}#^WJ;1(NO0sg4P}%j0Ip8L0qL*n;LnN#dA}bO
z_!&#>ByH>vQdk068WE)=QCK3@25+~wklPXgJ1LaZ*L0hlfbXs701}1TTi(eg`M~ey
zPY3v^8~kHEC3QV*#eZ^5-Uj5ssS?+eD|*t1!e+@V|G1Dc2o}YfY%A%p^3)Vq@0CrB
zBW!i(={Q=g>Q8n#YwAnKOuFx+|6$!YCE!|$XlAK!Z93L&e7S6dr}nVM4|>XVnt9Y+
zwf70iB|$6^j^)$$xOejBdG&V%6{sT!up_IZg;CSIqn)gIS@h^DX{vLb?cDc?39*#D
zGdXvplx!%=9<ATtof#6;y-ZzQ9GRIAP5w!>MJGak!xG(^Ps7X`pg0_m)mNtq-VD9>
zfuO5W9l=W6cV%Lu>ii9w(i8WjMBIqvwCx6&1EJqI0H=?28nVtimv=SrZLF0^?Dt94
z|432&7sN=!4-k{hpF;do4*dgN<*91zKmiNjr{v~JH99$T6!CThRcQTbpi-x)TzSz`
zB;v%Sg>#og@Vw{i{S0Eg+?KuAHZBC$Ppj)b*8<OI$ka8`iEPj#nzzdDZlubXK2>SO
zRI_D0^lW!_-dMKGCH?{bKZW;i$s2IO190NhVCkqrh^(*f?xc=+TIonSJSZ)}C}U{R
zu_lK0?31EM=|`)aZz@Ev#@baAolLQWY>RROF5?gDzR}&Un*;5QVTCh9_NdYXdY^<3
zMf9$ce5h;(H<mGvr!dMhyFI+aT=IghmOz*GF2y<0k>zPdiV>?u8o}+9>)q;aWNEC1
zK5vOADzIdlUOY})T_umI@$of1v%D=vb!aSFw+m7g=}c!JMf2<+i|iZ0HAcN9Cv0kQ
z(o4pVx|cgHRBGh;=}4KYaJCU?&mD7NIdr^DB4igv7bhuf#O`Wwn%j=QZU3i}I?{TN
zQqM5*uQVl@b_W}Is(z@r?aD$K5Yw0v#k#M2JuvV^f7-|fEaRmuG30`S;h=BPY#2P=
zD0>D%;od58bjgdxw82$9LTffoBQP{x(&n&VzlYAJ$#FTQ8Jhl~@W-g&XBMt<FG}`#
z6B@BHv!wC2bgZqyxiz-c3Y0WZSc|4#_+(ktnUD3;jse-{tAmX7$|rRp&-xXX)_d>T
zL_ZNPoQfMx@!{%;{`8xZvy)CgEN`=!@}}0~?%tOT?()(l3B%&^zcuZX)C<k4J)kGN
z4HgJEK<a69Q)M}qD_(q2Ci*inyNpQ~p|Gn<$7G{(&Wf$Ud1Cowd7gN`nogqZRGHeG
zmS%Gz9M-DYzV4W)YQmQM$~l{?tE|Zms{Wt4YG#|8$o6uZ>!0;X1i7GrBp0!eI5d*%
zmB>94_09aHtA6RK|EsPFy#s{iephk)JCqeT3XtC`N%Fy@04#vclFULxNjP|WyL%m%
zkih@m84$O3bF+80#k)Iti4)yiB)+SyOAtMsCH~+yUu#$VFP<l84HcZ>QH_t4*!3)I
z`ly`EtB}9s<^23SN1vigV(?W;nD(sHbR1>942c~&Y#v!t@~}?K%K44XcIc7OIM{NS
zFJr?yZ?g-Xh0!c&G2qU`^t!fGZ2C!|d@<llhD72Am-<?Xh>F<BK{mlSHm&Muf$V0u
z2dlUQoFhNt;qAWLZriaH5K{F39gC6&pV6GP(FXQK7Tf+t`Kv;4@zUq3u0ArS?{I#2
z@7e2}aeau4*eqS&bBEg8X$AGDjR#Y4X8p~;Lx+Zm`cF0jReW<bm2}3gA~Tryh~92$
z&YBz}&e$FYuVfU1xS*~P!-m#j<Ih8kq$YQ2{dZKP&rL`4==khr4rB*WCj^M6bA|8(
zlofdxpGR4=hg0`fi0CN>-06~OqqyOmT1{u+@%|v8j-xf=)~Xe~ev<`-wW-?b{VM?-
zVp~j$FOhaJCaxRlC)RfmhMV^*L$dBlXPvzItTUW*p-jed*EoCvv%aG7y6ARn5|$(s
zY_4<<GONrX0QEdEUFdiWUvodRhq{N@&=O<=*!nK4JoT}De1^R}<9t(46qVTHQ~4PH
z>KdWc?{H+a`EqU(hbzrQy%<(UOqWY_mCIXez`r~inZCqzFu<A4S74vI-z2&Y@NZLL
ziEZ>Hz~N~U3AP{Q$CUM>YX^Mq-4_^FMsp;bmY)0-V}I4I{uOFhzhdmK82c|AV}JDr
ze)R`_^#>s2zWJZ@Pk;3X{@wcnKlV?bI|V6M-RDC5fh&J4)xX}VLN2djk>p!cP<uLG
z5<@m6znOpi<6r&LU;Wenzx`7KRG;Nk+pU$D!fmwo#h#`PTf7FY6Q+S-ryc9p_s#XU
zchWpjJj%@G-|<SbGD<x8>=k_U#kA)iqu%?;Hca20^B)%@KqiToIG`hVFPUw3vr&u}
zZ5_BZRh(vygT^U9=lqT=W_75cH<I~UmE0@&U>YtXoGi~ORB-7Ws*~Cix|O})8=>WK
zEU84{>}S%IWprBVD!ML7H(G#Lz!V$spg4#lD+aP!%RNmjN9Uhm>FT;Ga-3ly)YAK|
zQA);|HRZx^c9`G@4X+GcsY9IY{1@Y0bYsLl;pfVw$lCV%R%fJ-$1@Byojv0YGsv_S
z=T?jPa9Sxsy4Bwxqx{S3m$zx_ByPT%cVfo)mDqQ44PmUcFlG&hXG4a9KFzLWBn4J$
z%u!NiS}NOXxO>H`eMp2h_sI9$u*wN*e;%mgovPOTep%++L!Tw+aLg_LG!;kfad+Ri
z4t=f1{cc>mJiL&Gi7^pjV+Ok~5m`G=XHX(8hUHHdZC>7d;9Q4(b+!JG&bvDmY0Czv
z;DBxs@uifcQtu0CD7tJHZ=+3~BRFJmcyr{$%||tr7e)MFA|kDm4{`z`>#d%ctjVaN
zm^Y+q-U!bF2kn(P&XBCF#^%sjKC}B!*0YBD+DhEY7<%(#cuncl+f1!g(hsq<Xgs+t
Ux5y?X$vH3dp*=N^M)CB20NbG(tpET3