So, I was trying to set up Google Pay on my phone. (Pretty much everywhere I go supports NFC payments, and the Samsung Pay app is really cluttered.) However, It said I was rooted or had altered my phone. Having a Snapdragon phone, I obviously haven't rooted it. I installed Magisk Manager to check my safetynet status, and it said i have a cts profile mismatch. How do I fix this?
Related
I just installed Google Pay in order to verify it still detects root and refuses to run, however, surprisingly, it works.
I have a magisk-rooted Droid Turbo with custom ROM and xposed framework, so it cant get any worse. Can anyone confirm this?
Google Pay Version is 2.75.214349949
https://i.imgur.com/ZQJbYIp.png
Google pay is easily fooled.
But i do no attempt in fooling it (i would not call it easy either), it still works.
It was not working for me for many days. I tried different OREO roms on my S7 Edge. (TGP 2.5 and Superman 3.0.1)
I used magisk 17.1 with magisk hide for Google Pay. I also used the magisk module (props config) to change the fingerprint.
That allowed me to add my cards but I was stock at "unable to verify card". When I pushed "verify card", the screen display briefly the little blue bank logo then returned to previous screen without error.
Even when I removed magisk completely, was unable to make "google pay" working...
But I just discovered your post and tried it then VOILA, it works this morning
So, Some days ago, out of the blue I was trying to pay with google pay and an error "you no longer can pay at store with google pay" came up.
Then I check payment methods, tried to change for other and found the error that google pay wont work on my phone since is "modified in some way"
I have 100% stock room, with magisk root. I did not installed anything recently, not even updated google pay app recently.
Anyway, I read some guides, found that my phone did not pass the SafetyNet Check. cleaned data from google play services and google play itself. run the test again and now it says true (pass) and my google play says device certified, but still no luck with google pay. I hided root for that app and other google apps just in case, cleaned data, but still says same error.
Any thought? Something that I could try?
thanks!
I had the same problem, ended up fixing it by switching to Magisk Canary release channel. AFAIK the fix has not been released in stable Magisk yet.
I can confirm that Magisk Canary Channel (v19003) fixed this issue for me on OP6.
So, just got my Nord 2T today and figured I could not get Google Wallet to work after unlocking bootloader and flashing Magisk.
I've tried:
Enabled Zygisk
Installed safetynet-fix
Added to Deny list: Google Wallet, Google play services, Google services Framework (even though Google services Framework seems very weird by losing the checkmark any chance it has)
Clear cache and storage for the above apps
Enabled Enforce deny-list (also tried without enabling)
Also tried with Shamiko and disabled Enforce deny-list option.
I have installed YASNAC safety net test application, and it says I am passing basic.
However, Wallet still tells me "Your phone doesn't meet security requirements".
Even the bloody IKEA app tells me that running a rooted device is unsafe, so this isn't just the Wallet being smart.
I see that Google has recently been rolling out their new Play Integrity API, which is supposedly going to replace the SafetyNet. I guess it could be related. https://forum.xda-developers.com/t/discussion-play-integrity-api.4479337/
Now the only thing I have not tried is MagiskHide Props Config. I am a bit hesitant using this because as far as I understand changing props can have serious side effects such as breaking fingerprint sensor etc.
Has anyone tried MagiskHide Props Config on Nord 2T?
If yes, which fingerprint you spoofed?
Edit: it occurred to me that I have not been fully clearing data. After clearing all data (not just cache) and rebooting, Google Wallet reverted to Google Pay. However, it still won't let me add a payment method.
Actually you not only need to pass basic, you need to get CTS Profile match to get banking apps to work. The safety net fix should actually fix this. Try removing the module via magisk and reinstalling it.
Tried https://forum.xda-developers.com/t/magisk-module-universal-safetynet-fix-2-3-1.4217823/post-87198517
This fork of USFN spoofs the fingerprint but only to Google play services and makes an effort not to break Oneplus functionality.
Wallet was then failing with some unspecific 'something went wrong' error many times. Tried reinstalling, clearing data etc. Then tried to disable Enforce deny list, rebooted, wallet failed again.
Then I tried once again may be after 5 min and it suddenly went through.
Seems like it is all set now.
For reference:
Zygisk is enabled
Enforce Denylist is disabled
Denylist includes:
Google play services, Google play store, google safety center resources (probably don't need this one), google services framework, google wallet
Modules: Universal safety net fix fork by Displax
PattasuBalu said:
Actually you not only need to pass basic, you need to get CTS Profile match to get banking apps to work. The safety net fix should actually fix this. Try removing the module via magisk and reinstalling it.
Click to expand...
Click to collapse
Yes, I was getting both Basic integrity pass and CTS pass with evaluation type: basic (which is still the case), yet the unforked safetynet fix was not enough.
I've also installed Integrity Checker and it was reporting that only MEETS_BASIC_INTEGRITY was achieved with unforked safetynet fix.
Now with the forked on, I am also getting MEETS_DEVICE_INTEGRITY, which seems the one required for Google Wallet now.
I am on security patch level 2022-08-05 and Android 12 btw. I suspect not everybody is having this problem _yet_.
Try Shamiko ! And if that's not working magisk Delta
I have tried shamiko with no joy. What did it for me was Safety Net Fix fork by Displax
Thanks
Google pay gives me the error "Cannot be used in this device", basically I have the bootloader unlocked...but I don't have root, as I had to remove it because it was giving me problems.
I tried to run Safetynet test and it gives me CTS profile match "fail" everything else is "success" as you can see from the screen.
Is there a solution without putting root to get CTS profile match "success" so I can pass the Safetynet test? I hope so because otherwise I am forced to give up Google Pay.
I'll preface this by saying that I haven't tried it to see if it actually doesn't work with payments but since I get that message ""It can't be used in this device" and the Safetynet check is fail I guess it's also useless to try..
Eventually if there is no solution I could lock the bootloader but at the same time I guess I would have to give up TWRP, if yes it is a solution to be discarded.
I hope someone can help me. Thank you.
Google CTS profile check adds no value. It prevents some stock firmware from running properly while rooted devices can easily get around it. Google should just drop this stupid design.
I have been using Google wallet all day today up until 45 minutes ago. I have just tried to pay for something in the shops and now my phone says in the wallet settings that 'I do not meet the requirements'
I have lsposed, latest magisk, shamiko, changed finger print sensor and fingerprint, I have xprivacy lua blocking wallet and Google services, I have configured deny list to include wallet.
All banking apps work fine.
I have run root beer and it shows SU BINARY not hidden 2ND SU BINARY CHECK not hidden ROOT VIA NATIVE CHECK not hidden and MAGISK SPECIFIC CHECKS not hidden.
YASNAC Pass Pass also.
I'm at a complete loss at the moment as I just can't figure it out?
Can anyone help?
Heey,
I have same problem with Pixel 3. Google Wallet stopped working last month out of the sudden, and all banking apps work perfectly, and SatefyNet check show no problem.
I get "not rooted" with root beer when I add it to DenyList in Magisk.
Have you figured it out?