Android TV compatibility

[dimitar71]

Please consider an Android TV compatible client.

There is no easy solution to debug an Android TV app:

• Android Studio Network profiler is useless - never works
• OkHttp Profiler - plugin fails badly - https://github.com/itkacher/OkHttpProfiler/issues/42
• Facebook Stetho + Chrome DevToos - used to work, but recent Chrome/Brave/Edge updates broke DevTools, i.e. inspect#devices does not show anymore Android apps
• Facebook Flipper - well, does not work, just like all above
• Charles Proxy / Proxyman - very cumbersome approach, but the only one working currently

Your approach may look feasible to solve thie annoying Android TV pain.

[pimterry]

Hi @dimitar71, thanks for your feedback (I saw the message via the contact form too - I'll reply here).

You mentioned in your other message that the HTTP Toolkit Android app "is not compatible and cannot be run on Android TV". Can you explain what you mean? Any idea why the app isn't compatible? As far as I'm aware, everything the app does should work equally well on Android TV. Unfortunately I don't have one myself for testing.

As an alternative, if you can run Frida on the TV (requires root) then you could use https://github.com/httptoolkit/frida-interception-and-unpinning - these Frida scripts fully implement interception, so you don't need the VPN app or anything else. Integration of that into HTTP Toolkit is a work-in-progress, but those are intended to provide the base for a future single-app targeted interception option on rooted devices.

[dimitar71]

Hey @pimterry Thanks for your quick reply!

There are several things which are causing AndroidTV to fail:

• just make your activity tv one - https://developer.android.com/training/tv/start/start#tv-activity, which will allow the app
  • to be visible in Google Play Store ran from Android TV box/set - thus to be installed
  • app to be added in Apps tray of the Home screen of the box
  • app to run rather crash right away
• QR scanner
  • please provide if possible text fields with values which normally a QA scan hides - this will help to manually add whatever needs to be added for your TV vpn client to have the values to connect with a desktop app (Mac, Win, blah)

For Frida and alike, root is not an option for us, sadly.

[pimterry]

just make your activity tv one...

Would you be open to making a PR for this? The app is here: https://github.com/httptoolkit/httptoolkit-android/. That way you can test the changes directly to confirm they work for your case. I'd be very happy to accept changes there to make that TV-compatible.

QR scanner

That's more challenging - the text within is quite complicated since it includes the certificate data and potentially large numbers of network addresses, all then currently encoded as a long base64 string, so it'd be quite fiddly to enter manually.

Can you use ADB? There's generally preferable, as it will automatically handle setup, solves some connectivity problems, and doesn't rely on awkward camera scanning etc.

[dimitar71]

OK, let me take a look at all this somewhere next weeks. A bit busy lately.

One way or another, I am personally interested this to be resolved, in order to help our team. Will let you know how it goes in time.

[dimitar71]

Hey @pimterry Spent some time looking at the code.

Is there an option, in the Mac/Win app, Android Device via QR code, to show the whole link below in a text view? Or a button Copy which will copy the data link in memory.

This way we can use adb shell input text for for Android app, from Mac, to paste the link directly into MainActivity and do the connection.

[pimterry]

If you can use ADB, is there a reason you don't want to use the ADB-based interception option, instead of the QR code?

That basically does exactly what you're describing already - it just passes the QR code data to the VPN app via ADB.

[dimitar71]

I can't read the value from the Mac app as-is. If you can provide that one as a simple string, then I can use adb to pass it to the TV app. Let me explain:

• Mac app has the QR picture, which holds the data url
• it can be read and seen only via a QR scanner
• TV boxes don't have QR scanners, and can't use such media to pass the data url
• hence we need this one as a string in the Mac/Win app; only then I can copy it from the desktop app, and then will use adb to pass the text value to the TV app
• also, I will need to tweak a bit MainActivity of the Android app to pass, read and call the data url when passed this way

The 1st step would be the whole text of the QR image below it in the desktop app - visually if possible.

[pimterry]

Ignore the QR code option. Why can't you use the existing ADB option?

[dimitar71]

I can't, the devices are not rooted. And we are not using an emulator.

You can use adb as a regular communication between device and your machine. And then you can use it for more advanced commands ONLY if device is rooted or an emulator.

Our devices are user-based (not rooted), hence we use adb just to pass some commads text from machine(s) to Android app(s).

[dimitar71]

Here is what may help, a simple Copy to Clipboard button in the QA area, which will copy the same data url. And then I will tweak a bit the Android app to have the ability to accept that string via adb and execute it.

[pimterry]

And then I will tweak a bit the Android app to have the ability to accept that string via adb and execute it.

The Android app already has this - that's exactly what the ADB option does!

I can't, the devices are not rooted. And we are not using an emulator.

The ADB option doesn't require the device to be rooted, and it works for non emulators. If you can connect to ADB you should be able to use this, and if you can't then that's a bug and we should fix that.

You're getting distracted by the QR code here. I think it's very unlikely that changing that is the right option.

The ADB option already does exactly what you're describing doing manually. It takes the same data as the QR code and sends it to the app via ADB as an intent. It doesn't use any advanced commands to do this, and that works on normal OEM unrooted devices.

From the screenshot, it looks like the ADB option isn't enabled. Is that the issue? If so, can you please run adb devices on your computer and share the output?

[dimitar71]

As I've mentioned, this is Android TV we are talking. It does not have preinstalled Chrome, hence you can't upload and install ANY certificates.

This part is not existing in any Android TV device.

[pimterry]

Chrome isn't required to install certificates. It's not related to Android's certificate management at all - it's just an application like any other that reads the certificates later.

That error message is correct - note that you would see the exact same thing with the QR code setup too, the process from this point is identical.

On all modern Android devices, installing CA certificates without root is a manual process, that should approximately follow the steps in that message. Of course, I can imagine that Android TVs might behave differently there... Do you have the Settings app installed, and do you see the sections as described in that message above? Is there a specific point in those steps where you get stuck?

If there is no way to install certificates then you're out of luck, and device-level interception will be impossible with any tool. Because of how the Android internals work though, I strongly suspect this is merely awkward & more difficult, not impossible. Let me know more detail about where you run into issues and I can help explain the available workarounds.

[dimitar71]

Yeah, I tested it after using an online qa decoder and calling

adb shell am start -n tech.httptoolkit.android.v1/tech.httptoolkit.android.MainActivity -a tech.httptoolkit.android.ACTIVATE -d "https://android.httptoolkit.tech/connect/?data=eyJhZGRyZXNzZXMiOlsiMTkyLjE2OC4wLjI0NyIsIjEwMC42NC4xMDAuNiJdLCJwb3J0Ijo4MDAwLCJjZXJ0RmluZ2VycHJpbnQiOiJGRTF1em9VZXB5QlBTcnhLT1EvMkVzUUo5V2tFWTVjV2JzSWhydGQ0QUljPSJ9"

Ends up same place, to install the certificate.

So... no luck. The only viable option with Android TV is https://zahidrasheed.medium.com/charles-proxy-with-androidtv-fedc863e7039.

Such a PITA.

Well... please close this issue, it can't be done.

[dimitar71]

Closing it since can't be done. Requires SSL certificate install just like using Charles Proxy and Proxyman. Which requires manual addition in Android TV apps.