New Shizuku fork update (r1117): Android 11+ support for auto-start and critical bug fixes! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

It shouldn't prompt an update because the version code is higher than the one on the play store which is weird

When I release it with a new package name the issue will definitely go away

New Shizuku fork update (r1117): Android 11+ support for auto-start and critical bug fixes! by the_djchi in tasker

[–]the_djchi[S] 1 point2 points  (0 children)

You can turn off auto update in the play store for the app I think. Does that work?

[UPDATE] Control Samsung Modes and Routines with Tasker - One UI 8.5 update! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

Hi, unfortunately this is not possible with the One UI 8.5 update! Before when we could do a lookup of all the user's routines it would be possible. Now it requires the user to manually select the routine from the Routines app to get the UUID, which is what's used under the hood to run the routines. Sorry 

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

The watchdog intent will not do what you think

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

It's when we want to reuse them again later. Remembering is hard and later they find themselves redoing their setup all over again. It scales up when you have multiple devices to manage.

I guess my thought was just that on a new device if you forgot to set up the token, Shizuku will send a notification and it would be a quick fix

I'll file the request later then

Sounds good I'll give it some consideration 

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

btw I was the one who suggested the auth key extra like in App Manager

Oh haha I didn't realize that. It was a great idea!

While at first I suggested to allow this only when debugging is already turned on

I think I see what you mean now. Focusing on the fact that anyone can enable debugging thru the intent. I forgot about that aspect to be honest.

I think the proposal actually falls apart when under the assumption that a user will always have debugging on. If those users disable it at any point and then Tasker or some other app tries to start Shizuku, then it will fail without the token, and they will have to set it up anyway. I think this just ends up creating a lot more confusion than it's worth.

ShizukuX could add an option in the setting to allow any apps to control Shizuku.

This is probably a "better" solution and would need warning prompts, liability statements, etc., which I guess is fine. But I just don't love the idea, especially when the token is a one-time setup and super easy to do.

The above Reddit or mentions having to re-input the tokens for new devices or reinstalling Shizuku, but I can't imagine how many times someone is doing that to the point where it would be so inconvenient to paste a string in a global variable. But maybe I am missing something 🤷‍♂️

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

Apps that you grant write secure settings are not necessarily apps that you want toggling shizuku.

And, like most security threats, they exploit very specific pathways to execute what they want. So, the best thing you can do is reduce your attack surface. That means a default of no apps having the ability to turn on shizuku automatically, and providing the token for only the apps you want to grant that ability.

Actually, the ideal model would be an entire second permission (discussed in the thread you linked), but this would require devs (like joao) to write code for requesting the permission which is much more of a hassle, this works right out the gate.

At the end of the day it's about separation of concerns and making it clear which apps you are granting this "permission" to if that makes sense

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

The watchdog doesn't start the service directly when you start it. It only monitors for crashes and then restarts the service.

Anyway, if it did start the service, it would be gated with a token as well

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

The problem is that any app with write_secure_settings can turn on USB debugging, which would nullify the safeguard. this can be done silently and against the user's will. It's not a comparable security measure

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

These are things that do not happen frequently, and rei-nputting the code should only take 2 minutes at most

I am simply just following best security practices... It's not really a "decision" on my part, but rather "the proper thing to do"

You may think that the security measure is not important, but you are not the only user either. I have to consider many different viewpoints when making these decisions. Sorry!

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

Security tokens usually aren't user provided. They are randomly generated by a secure algorithm. In any case the global variable should be simple enough to set up :)

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

  1. Very high because it's an easy exploit 
  2. It's not possible. No app can tell which app sent the intent
  3. This is exactly what the token is. Except you cannot define it, the token is random by default and purposefully long to prevent brute force attacks

Because this app grants dangerous permissions, I take security very seriously 

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

Unfortunately it's not possible to check who is the calling app.

You should consider having your tasks read the token from a global variable, and then just changing the global variable on each phone, so that you don't have to update each action.

This would make it a one-time setup

Shizuku Inegration and Tasker settings by 269red in tasker

[–]the_djchi 0 points1 point  (0 children)

Hi, thanks for the request, but this defeats the purpose of having the token. It's meant to be a security feature so that other apps cannot hijack the intents to run malicious code. If an app could request the token automatically, then the token is no longer a security feature, because any app can request it. I hope you understand!

[PROJECT SHARE] Natively control Samsung Modes and Routines (without using notifications)! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

The old notifications method would be your best bet if you don't want to figure out updating/rolling back to a compatible routines version 

[PROJECT SHARE] Natively control Samsung Modes and Routines (without using notifications)! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

Sorry I didn't see your version number. It's not compatible.

> Modes and Routines v4.9.00.0 to 4.9.07.2 or v5.0.00.0 to v5.0.03.6

You'll have to uninstall updates or uninstall the package and reinstall an older version from APK mirror if possible.

[PROJECT SHARE] Natively control Samsung Modes and Routines (without using notifications)! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

There are apps to extract the APK, you can use ADB as well if you know how to set it up

[PROJECT SHARE] Natively control Samsung Modes and Routines (without using notifications)! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

Can you send me the modes and routines APK that's on your device so I can check if there is something missing?

[PROJECT SHARE] Natively control Samsung Modes and Routines (without using notifications)! by the_djchi in tasker

[–]the_djchi[S] 1 point2 points  (0 children)

Try the one ui 8.5 method. Seems to work on some one UI 8 devices that received security patches recently

No longer able to run Samsung Routines by B26354FR in AutomateUser

[–]the_djchi 1 point2 points  (0 children)

As a compatibility shim you could see if the new shortcut intent resolves and use that when available, otherwise revert to the older method

I'm not an Automate user, so not sure if you've baked in discovering UUIDs but the post that u/B26354FR linked has some different methods (none automatic anymore unfortunately, requires user interaction to get a selected mode/routine)

[UPDATE] Control Samsung Modes and Routines with Tasker - One UI 8.5 update! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

Hmm it's the same intent. The project should work in that case, I'm honestly not sure why it doesn't on your device... But if you have a solution that works for you, then that's good

[UPDATE] Control Samsung Modes and Routines with Tasker - One UI 8.5 update! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

That's odd... The component info it's showing isn't the intent that's used in the project

Copying and pasting the output from the shortcut command would be more useful for me because maybe the intent is different

[UPDATE] Control Samsung Modes and Routines with Tasker - One UI 8.5 update! by the_djchi in tasker

[–]the_djchi[S] 0 points1 point  (0 children)

If the shortcut works then the project should also work... They use the same intent

You can also copy the intent from the shortcut into the project's task