feat: Support customize signing levels

Author: zjns

api/android/revanced-library.api

@@ -28,18 +28,21 @@ public final class app/revanced/library/ApkSigner$PrivateKeyCertificatePair {
 public final class app/revanced/library/ApkSigner$Signer {
 	public final fun signApk (Lcom/android/tools/build/apkzlib/zip/ZFile;)V
 	public final fun signApk (Ljava/io/File;)V
-	public final fun signApk (Ljava/io/File;Ljava/io/File;)V
+	public final fun signApk (Ljava/io/File;Ljava/io/File;Ljava/util/Set;)V
+	public static synthetic fun signApk$default (Lapp/revanced/library/ApkSigner$Signer;Ljava/io/File;Ljava/io/File;Ljava/util/Set;ILjava/lang/Object;)V
 }
 
 public final class app/revanced/library/ApkUtils {
 	public static final field INSTANCE Lapp/revanced/library/ApkUtils;
 	public final fun applyTo (Lapp/revanced/patcher/PatcherResult;Ljava/io/File;)V
 	public final fun newPrivateKeyCertificatePair (Lapp/revanced/library/ApkUtils$PrivateKeyCertificatePairDetails;Lapp/revanced/library/ApkUtils$KeyStoreDetails;)Lapp/revanced/library/ApkSigner$PrivateKeyCertificatePair;
 	public final fun readPrivateKeyCertificatePairFromKeyStore (Lapp/revanced/library/ApkUtils$KeyStoreDetails;)Lapp/revanced/library/ApkSigner$PrivateKeyCertificatePair;
+	public final fun readSigningLevels (Ljava/io/File;)Ljava/util/Set;
 	public final fun sign (Ljava/io/File;Lapp/revanced/library/ApkUtils$SigningOptions;)V
 	public final fun sign (Ljava/io/File;Ljava/io/File;Lapp/revanced/library/ApkUtils$SigningOptions;)V
 	public final fun sign (Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkSigner$PrivateKeyCertificatePair;)V
-	public final fun signApk (Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkUtils$KeyStoreDetails;)V
+	public final fun signApk (Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkUtils$KeyStoreDetails;Ljava/util/Set;)V
+	public static synthetic fun signApk$default (Lapp/revanced/library/ApkUtils;Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkUtils$KeyStoreDetails;Ljava/util/Set;ILjava/lang/Object;)V
 }
 
 public final class app/revanced/library/ApkUtils$KeyStoreDetails {

api/jvm/revanced-library.api

@@ -28,18 +28,21 @@ public final class app/revanced/library/ApkSigner$PrivateKeyCertificatePair {
 public final class app/revanced/library/ApkSigner$Signer {
 	public final fun signApk (Lcom/android/tools/build/apkzlib/zip/ZFile;)V
 	public final fun signApk (Ljava/io/File;)V
-	public final fun signApk (Ljava/io/File;Ljava/io/File;)V
+	public final fun signApk (Ljava/io/File;Ljava/io/File;Ljava/util/Set;)V
+	public static synthetic fun signApk$default (Lapp/revanced/library/ApkSigner$Signer;Ljava/io/File;Ljava/io/File;Ljava/util/Set;ILjava/lang/Object;)V
 }
 
 public final class app/revanced/library/ApkUtils {
 	public static final field INSTANCE Lapp/revanced/library/ApkUtils;
 	public final fun applyTo (Lapp/revanced/patcher/PatcherResult;Ljava/io/File;)V
 	public final fun newPrivateKeyCertificatePair (Lapp/revanced/library/ApkUtils$PrivateKeyCertificatePairDetails;Lapp/revanced/library/ApkUtils$KeyStoreDetails;)Lapp/revanced/library/ApkSigner$PrivateKeyCertificatePair;
 	public final fun readPrivateKeyCertificatePairFromKeyStore (Lapp/revanced/library/ApkUtils$KeyStoreDetails;)Lapp/revanced/library/ApkSigner$PrivateKeyCertificatePair;
+	public final fun readSigningLevels (Ljava/io/File;)Ljava/util/Set;
 	public final fun sign (Ljava/io/File;Lapp/revanced/library/ApkUtils$SigningOptions;)V
 	public final fun sign (Ljava/io/File;Ljava/io/File;Lapp/revanced/library/ApkUtils$SigningOptions;)V
 	public final fun sign (Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkSigner$PrivateKeyCertificatePair;)V
-	public final fun signApk (Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkUtils$KeyStoreDetails;)V
+	public final fun signApk (Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkUtils$KeyStoreDetails;Ljava/util/Set;)V
+	public static synthetic fun signApk$default (Lapp/revanced/library/ApkUtils;Ljava/io/File;Ljava/io/File;Ljava/lang/String;Lapp/revanced/library/ApkUtils$KeyStoreDetails;Ljava/util/Set;ILjava/lang/Object;)V
 }
 
 public final class app/revanced/library/ApkUtils$KeyStoreDetails {

src/commonMain/kotlin/app/revanced/library/ApkSigner.kt

@@ -331,9 +331,16 @@ object ApkSigner {
             signingExtension = null
         }
 
-        fun signApk(inputApkFile: File, outputApkFile: File) {
+        fun signApk(inputApkFile: File, outputApkFile: File, signingLevels: Set<Int> = setOf()) {
             logger.info("Signing APK")
 
+            if (signingLevels.isNotEmpty() && signerBuilder != null) {
+                signerBuilder.setV1SigningEnabled(signingLevels.contains(1))
+                signerBuilder.setV2SigningEnabled(signingLevels.contains(2))
+                signerBuilder.setV3SigningEnabled(signingLevels.contains(3))
+                signerBuilder.setV4SigningEnabled(signingLevels.contains(4))
+            }
+
             signerBuilder?.setInputApk(inputApkFile)?.setOutputApk(outputApkFile)?.build()?.sign()
         }
 

src/commonMain/kotlin/app/revanced/library/ApkUtils.kt

@@ -2,6 +2,7 @@ package app.revanced.library
 
 import app.revanced.library.ApkSigner.newPrivateKeyCertificatePair
 import app.revanced.patcher.PatcherResult
+import com.android.apksig.ApkVerifier
 import com.android.tools.build.apkzlib.zip.AlignmentRules
 import com.android.tools.build.apkzlib.zip.StoredEntry
 import com.android.tools.build.apkzlib.zip.ZFile
@@ -153,20 +154,22 @@ object ApkUtils {
      * @param outputApkFile The file to save the signed apk to.
      * @param signer The name of the signer.
      * @param keyStoreDetails The details for the keystore.
+     * @param signingLevels Signature levels, empty to default.
      */
     fun signApk(
         inputApkFile: File,
         outputApkFile: File,
         signer: String,
         keyStoreDetails: KeyStoreDetails,
+        signingLevels: Set<Int> = setOf(),
     ) = ApkSigner.newApkSigner(
         signer,
         if (keyStoreDetails.keyStore.exists()) {
             readPrivateKeyCertificatePairFromKeyStore(keyStoreDetails)
         } else {
             newPrivateKeyCertificatePair(PrivateKeyCertificatePairDetails(), keyStoreDetails)
         },
-    ).signApk(inputApkFile, outputApkFile)
+    ).signApk(inputApkFile, outputApkFile, signingLevels)
 
     @Deprecated("This method will be removed in the future.")
     private fun readOrNewPrivateKeyCertificatePair(
@@ -235,6 +238,27 @@ object ApkUtils {
         readOrNewPrivateKeyCertificatePair(signingOptions),
     )
 
+    /**
+     * Read apk signature levels.
+     *
+     * Note: a well-signed apk is required.
+     */
+    fun readSigningLevels(apkFile: File): Set<Int> {
+        val verify = ApkVerifier.Builder(apkFile).build().verify()
+        if (!verify.isVerified)
+            return setOf()
+        val result = mutableSetOf<Int>()
+        if (verify.v1SchemeSigners.isNotEmpty())
+            result.add(1)
+        if (verify.v2SchemeSigners.isNotEmpty())
+            result.add(2)
+        if (verify.v3SchemeSigners.isNotEmpty())
+            result.add(3)
+        if (verify.v4SchemeSigners.isNotEmpty())
+            result.add(4)
+        return result
+    }
+
     /**
      * Options for signing an apk.
      *