Natural time drift between RP and Google SafetyNet API is inevitable, even if it's just a few hundred milliseconds. Unfortunately the library is too strict on timing and will error out on a SafetyNet response that appears to be even a millisecond from the future.
This diff addresses this problem by checking that a SafetyNet response originated sometime between "now +/- 10 seconds".
Natural time drift between RP and Google SafetyNet API is inevitable, even if it's just a few hundred milliseconds. Unfortunately the library is too strict on timing and will error out on a SafetyNet response that appears to be even a millisecond from the future.
This diff addresses this problem by checking that a SafetyNet response originated sometime between "now +/- 10 seconds".
Addresses #106.