feat: consider unsecure devcies that have unlocked bootloader

Author: jonathanklee

app/src/main/java/com/klee/sapio/data/DeviceConfiguration.kt

@@ -42,10 +42,15 @@ class DeviceConfiguration @Inject constructor(
     }
 
     fun isRisky(): Int {
-        return if (RootBeer(mContext).isRooted) {
+        return if (RootBeer(mContext).isRooted && !isBootloaderLocked()) {
             Label.RISKY
         } else {
             Label.SECURE
         }
     }
+
+    private fun isBootloaderLocked(): Boolean {
+        val verifiedBootState = SystemPropertyReader().read("ro.boot.verifiedbootstate")
+        return verifiedBootState == "yellow" || verifiedBootState == "green"
+    }
 }

app/src/main/java/com/klee/sapio/data/SystemPropertyReader.kt

@@ -0,0 +1,30 @@
+package com.klee.sapio.data
+
+import android.annotation.SuppressLint
+import android.util.Log
+
+@SuppressLint("PrivateApi")
+class SystemPropertyReader {
+
+    private val getMethod by lazy {
+        val clazz = Class.forName("android.os.SystemProperties")
+        clazz.getMethod("get", String::class.java, String::class.java)
+    }
+
+    fun read(propertyName: String): String {
+        return try {
+            val value = getMethod.invoke(null, propertyName, "") as String
+            value.trim()
+        } catch (exception: ReflectiveOperationException) {
+            Log.w(TAG, "Unable to read property $propertyName", exception)
+            ""
+        } catch (exception: IllegalArgumentException) {
+            Log.w(TAG, "Invalid arguments supplied for $propertyName", exception)
+            ""
+        }
+    }
+
+    private companion object {
+        private const val TAG = "SystemPropertyReader"
+    }
+}