Alright, so I'm running open beta 11 and it's working fine! Passes safety net and all. But when I try and wipe data and cache (to wipe my phone and start over essentially) safety net fails..... How does wiping data and cache and starting over cause open beta 11 to fail safety net? ?
Edit: Restoring a backup I took before trying to wipe data and cache fixed safety net again, but I'm really just trying to wipe my phone. Am I gonna have to format it?
Found my answer through trial and error (lots of error). It's magisk 20.4! It makes OxygenOS fail safety net for me! Installing 20.3 causes issues. I'll bring this up in the Magisk thread.
Hiya,
So there's been a little ruffle in the water recently that was foreshadowed by Google's announcement that they would (at some point) be making server-side changes that included hardware-based key attestation and that this would supposedly break magisk/edxposed from being able to hide an unlocked bootloader state. I have a OnePlus 7 pro rooted with magisk and the latest Ed Xposed, and a buddy of mine has a OnePlus 6t with the same setup. We both just recently started failing a safety net check on the latest magisk (20.4) and I was very curious why. I did some research and found a few interesting comments on the Ed Xposed GitHub page that included quite a few people who also randomly started failing their safety net check. I would like to think that Google has started rolling out this new change for attestation to some devices based on certain parameters and that at some point passing safety net while simultaneously being rooted with magisk and using any kind of Ed Xposed module will simply no longer be feasible. Below is a link to the GitHub page where you can read comments on other users who have failed a safety-net check and the developer stating that he is no longer accepting feedback on issues relating to safety net. Have a great day.
Edit: forgive me if I'm wrong about any of this, just from the investigation I conducted!!
https://github.com/ElderDrivers/EdXposed/issues/435
Related
Hey everyone, I had ADT in my shop earlier today installing a security system. It comes with an app they call ADT Pulse which lets me arm/disarm/receive alerts/update profiles/all the usual stuff you'd expect. The problem is for some ridiculous reason it's checking for root and I don't know why but Magisk Hide isn't able to hide it.
Are there any other options I have on this one? (attached a couple screenshots)
Thanks everyone.
Does your phone pass safetynet? If so, it could be detecting magisk which you could repackage to a random name
Are you running a custom kernel with the unlocked bootloader flag patched ?
While you certainly can post for help here, you're probably better off posting in the Magisk General Support Discussion thread. The most basic of questions is whether you're passing SafetyNet.
krash2k said:
Hey everyone, I had ADT in my shop earlier today installing a security system. It comes with an app they call ADT Pulse which lets me arm/disarm/receive alerts/update profiles/all the usual stuff you'd expect. The problem is for some ridiculous reason it's checking for root and I don't know why but Magisk Hide isn't able to hide it.
Are there any other options I have on this one? (attached a couple screenshots)
Thanks everyone.
Click to expand...
Click to collapse
i had an app that magisk hide wasn't working with (i think it was concur or thinkorswim or an auth/2step app). also have patched kernel (flash 1.06) and passing safety net
i added the following to magisk hide and it started working. don't know which one did the trick, just added several to try, but haven't experienced any problems in over a month so i left em all added
android services library
android shared library
android_auto_generated_rro_....
chrome
come.google.android.gms.setup
device configuration
google connectivity services
google partner setup
google services framework
google support services
intent filter verification service
keep
key chain
Hey everyone sorry I wasn't getting alerts that there were responses here.
Magisk says:
SafetyNet Check Success
ctsProfile: true
basicIntegrity: true
I am not running a custom kernel.
Does your phone pass safetynet? If so, it could be detecting magisk which you could repackage to a random name
Click to expand...
Click to collapse
When I read this I remembered seeing a setting in Magisk to repackage itself so I went in and did that without expecting it to be that easy of a fix. Turned out that it was!
Problem solved, many thanks as always for the input here.
I installed the latest magisk apk and already flashed the zip file .
My phone is rooted properly but there is some error in safetynet checking it shows that: THE RESPONSE IS INVALID
The reason according to me is the empty payload
I have tried the beta version as well but still the error remains same
I want to play fortnite and use some banking apps but it doesn't allow me
I am using OnePlus 6
Any kind of help will be appreciated
Thanks!
Can someone help me out?
Please!!!
From what I read from the dev himself, Google Apps using the old API won't work so safetynet won't work with those apps anymore. Magisk is one of them. You'll have to wait for the devs to release a new version.
https://twitter.com/topjohnwu/status/1029239685338419200
Try this
I don't get that error message. I am running the stable version(v16.0) of Magisk on my OnePlus 6. I followed this guide to root my phone https://forum.xda-developers.com/oneplus-6/how-to/oneplus-6-unlock-bootloader-flash-twrp-t3792643
You should follow this guide from the start.
Or maybe try this module on Magisk first: MagiskHide Props Config
Please use the search function because this was already posted..... i know its hard to use the search but it keeps the forums nice and clean and people hate double posts
Hello I'm looking for information on what current magisk version that is available for Google pixel in the latest magisk manager any help thank you I'm trying to gain root and safety-net pass I tried googling but no real clear answers and I'm not locked down to a carrier on device it's all from Google just confused I flash rom and throw through twrp and I need root
I'd say just flash latest stable magisk, that's all I've ever done (not currently rooted) and it's usually worked perfectly. If in doubt it could be worth a look through the magisk discussion thread for any info. Last time I used it it had to be flashed after ROM and gapps and after you had first booted into system at least once, not sure on the safety test bit as it don't bother me but there are magisk modules or edits to the buildprop that can get round that.
Hope that's some help mate
Here what's going on and I'm looking for help
There are magisk modules that will resolve that, If I remember right it's a build fingerprint issue so if the ROM build fingerprint don't match what's on Google's approved list you get that occur.
Can't remember the module names but it's something along the lines of props config or safetynet pass or similar named modules
i want to say thank you for that push i know what you mean now and i really thank you
https://forum.xda-developers.com/apps/magisk/module-magiskhide-props-config-t3789228
My daughter got a new phone, after struggling with bootloops and magisk issues. Finally got everything working correctly.
But,
I got root to go fine, only thing is she has had location issues. Google maps, other GPS or location services did not work.
So I uninstalled xprivacylua and seems like services came back, looks like I wasn't hiding anything on it anyways. Or I don't remember what it was.
So instead of reinstalling xprivacylua I decided to look for different answers .
Maybe some other solutions.
Here is a list of apps and modules that are installed. I think some of them overlapped and are kind of messed up. To many that my head is spinning.
Magisk
23.0 (23000)
Magiskhide Props Config.
Riru
Riru LS exposed (Tried switching back and forth to edxposed)
Systemless Hosts
Universal Safetynet fix 1.1.2. (Tried different versions)
LS Esposed one module,
Hiddencore module (enabled Google services Framework and google play services)
Also cleared Data and Cache on google play store.
Rebooted every time
Always safety net failure.
I know its a lot to take in , and do appreciate any feedback or help on this issue.
Is it an 8T? Are you running stock OOS with magisk?
In that case all you need to pass safteynet should be Magisk 23 with magisk hide activated. No need to bother with Magisk hide propconfig, or edexposed or anything.
If you are running a custom rom it is a different matter
I have magisk 23 and magisk hide is active on all google play services, but it still fails.
Its 8t with stock rom.
I think this is why its a little confusing since on my stock 7 pro I have google play services and only android.gms, and android gms unstable hidden and it works fine.
There is not a custom recovery on either of these phones.
Magisk and magisk hide works fine for me, so don't know what to say.
Perhaps try to uninstall Riru and exposed to make sure that they aren't triggering safety net?
You have to get termux. Get su superuser permissions then type props a menu will load press 2 then select yes to change device name then y again to reboot then it should pass safety net
Screens of magisk hide props config
scottlam1 said:
You have to get termux. Get su superuser permissions then type props a menu will load press 2 then select yes to change device name then y again to reboot then it should pass safety net
Click to expand...
Click to collapse
Nope.. Terminal Emulator is actually recommended. With Termux, you are required to use root access for props to work.
with Terminal Emulator, you can just type:
props
and then it'll load. no "su" necessary. That's termux. I've had some issues that these people are talking about with my OnePlus 8T (KB2005, unlocked completely).. I'll try Termux just to rule this out, but this is highly doubtful as to whether or not safetynet passes based on this--it's attempting to modify the same values. Anyway, when I unlocked that bootloader on a stock rom, CTS Profile started showing as false. So I did get the stock on there correctly and it initially passed with a LOCKED bootloader. There's an alpha TWRP that you can actually flash if you want. There's a couple others where you can only boot it.. there's a lot of "only's" here.. and I couldn't get it going with any of the apps mentioned, including ditching EdXposed and deciding to try LSPosed, but that + XPrivacyLau didnt seem to help me. Maybe I'm doing something wrong. From what I can tell I've done everything right and I've got quite a bit of experience attempting/doing this. Sometimes Device SImulation and forced BASIC ATTESTATION can be a lifesaver.
On my OnePlus 6T, I don't have this problem.. then again it's on Android 10. I can't even get a proper root explorer for Android 11. I seriously can't stand what they did to Android 11.. it's so ridiculous how many apps are now incompatible. Root Explorer Pro was possibly the best Root File Manager I've ever used and I've used it since day 1.
Anyway, I'm gonna give all of this a shot in different order.. and this time I'll see if Magisk can do the trick (last time it was on some different firmware and i just now was able to get it going by flashing via Fastboot in Linux). It's the manual way (payload dumper) as opposed to MSMDownloadTool -- which could be used via a VM.. and maybe even better than using Windows tools where you literally have no idea what you're actually doing. I'm just saying. Android is a linux distro, technically.. and we're trying to use just basic root apps for Android 11, and they don't seem to work.. it's insane. They did something with the partitions and it's apparently having issues even mounting R/W even with Magisk giving it root permissions. Btw, Magisk Canary is now outdated, as far as I can tell? Or it's just nowhere to be found when it comes to versions. Either way, I have tried multiple. So I'll try again in a different order.
Sorry for the long post. I've just had it. I've been working on this for a WEEK non stop.. 5-6 days and this is the first sign of progress (reverting via fastboot via Linux, which is the same thing as the MSMDownloadTool ultimately... without the hassle of finding it)
Let me know if there's anything else.. cause I've tried just about everything out there. Remember, for me, so far... unlocked bootloader = CTS Profile failure.. but locked bootloader + stock rom? Passed. I don't know. Before it wasn't passing with a stock rom that came with it so that drove me nuts and made no sense, hence me saying "progress" ... heh. Anyway.. Please let me know if you guys do find anything that works for it. I'm at my wits end. There's basically almost zero support for the 8T but plenty for the 8 and 8 Pro. So that also gets on my nerves. Sorry, once again, for this really long post. Some of it is just venting and I'll update if I get somewhere with it.
.. and now this morning after installing magisk, by just booting twrp (not flashing, but booting) and then using LSPosed/XPrivacyLua (I installed MagiskProps too but I barely did anything aside from pick a fingerprint) --- and it passed? WHAT?
I'm gonna look into this, but I'm not complaining. Let's see if I can find good Android 11 apps for actually browsing the system and being able to r/w any elusive partitions -- wasn't working well with Android 11 before. Not sure if that's around with a simple design anymore. Root Explorer Pro was king of that. Then Android 11 stepped in. I still have to install Lucky Patcher, if it will even work as a module for LSPosed. (Yes, I'm one of those idiots) -- I fully expect it to fail with that but I might be pleasantly surprised. Who knows. So, we'll just call this mixed results. For now -- Passing somehow. I don't understand aside from LSPosed and XPrivLua.. maybe magiskprops. Not sure which one did what first to cause this to go the right direction.
All I can say is all I have is magisk props not the other 2 modules you speak of
Well this is super weird. I didnt see my daughter for 2 days and she said everything is working fine.
I did tons of reboots and other installs/uninstalls and nothing worked.
But now I do safety net check and it works fine.
I dont get it.
If I do have issues again I will post here and follow instructions.
Thank you for your time and help
eracet said:
Well this is super weird. I didnt see my daughter for 2 days and she said everything is working fine.
I did tons of reboots and other installs/uninstalls and nothing worked.
But now I do safety net check and it works fine.
I dont get it.
If I do have issues again I will post here and follow instructions.
Thank you for your time and help
Click to expand...
Click to collapse
Ok asked her what she did. Mentioned updated YouTube vanced. And not sure of anything else.
Mod Note
Closed upon OP request. Solution is in post #3.
Hello,
Ok so i have my Lenovo K33a42 with me, i have rooted it using magisk and installed Pixel Experience (right here). After installing the ROM, i saw i cant pass safety net (cts profile), i ignored it because i dont use any banking apps or such. When i tested safety net again today, i see a weird error saying "Can't access Google Play Services". Help me please. Thanks
Would you like to share your solution with us?
Ah sure,
So i couldnt pass CTS profile before Magisk 24 and after upgrading to Magisk 24 i couldnt pass safetynet at all. So i asked in android's discord and one guy asked me to enable Zygisk and install universal safetynet fix. I did it and i saw now i could pass basic integrity but not CTS profile (Note: my device does not use Hardware backed Attestation). Another guy there asked me to install MagiskHide Props Config module (after installing you have to do "su -c props" in a terminal emulator to do the next steps) and asked me to edit my device fingerprint according to my rom. As i am using Pixel Experience Android 9 i changed my fingerprint to Google Pixel 3 Android 9's. Before rebooting he asked me to enable Force Basic Key Attestation and then my phone automatically rebooted and then boom. I passed safetynet and to see if my device is certified or not i had to clear Google Play Services' data, i did it and after about some hours i checked Play Store and my device was certified. I still can't find Netflix on Play Store idk why. If you guys could help me out?
Thanks