Hello everyone,
I switched Magisk to c3b4678f (25204)(34) tonight, as I am on the Canary versions. But unfortunately, I notice while using Yasnac that my Pixel 3a does not pass SafetyNet anymore. The evaluation type remains Basic but Basic Integrity and CTS profile are both set to False. I uninstalled the safetynet fix from kdrag0n before reinstalling it (after rebooting each time) but nothing works! I even did a flash of the boot.img patched by Magisk but nothing to do. Do others have the same problem? What can I do?
During this night, Magisk developers pushed an update because of a deny list issue. They fixed it in the new version a468fd94 (25205)(34). And right after the update, Safetynet passes again !
I worried too quickly !
Related
Hi,
Upgraded my Galaxy S7 (Exynos) to nougat (clean install).
ROM: https://forum.xda-developers.com/galaxy-s7/development/rom-android-nougat-7-0-beta-3-zpkk-odex-t3507499
Kernel: https://forum.xda-developers.com/galaxy-s7/development/kernel-superkernel-v1-0-t3389247
Used supersu with marshmellow before and stopped playing Pokemon Go when they blocked rooted phones. So I tried Magisk this time.
Installed ROM & Kernel, flashed Magisk-v11.1.zip and phh-superuser-magisk-r266-2.zip, enabled magisk-hide, added systemui, disabled USB-debugging. Everything worked, even safetynet check.
Today (two days after install), the safetynet check suddenly failed (CTS profile mismatch), and I was not able to get it working again. -> PGo did NOT work, root still did.
I tried to reinstall magisk, (flashed the uninstaller and reinstalled same way as I did the first time). Root still works, safetynet STILL fails. BUT somehow PGo works nontheless. (?!)
#1 Why did safetynet check start to fail in the first place? Only thing that changed were some app-updates. No system / security update I know of, OTA is disabled anyways.
#2 Why does PGo work atm after seemingly unsuccessful reinstall of magisk (safetynet still fails...)?
Thanks for your input.
just be happy about that u can play POGO
Hi. Recently my safteynet started failing. I don't remeber exactly what modifcations I did at the time to cause it. I flashed the latest OOS from OnePlus so I would have no root or mods, and safteynet continues to report failed.
I really don't feel like wiping my data. Does anyone have any suggestions?
The mods I have installed at some point via magisk are, edxposed, riru, and viper audio effects.
Thank You!
Nuzzlet said:
Hi. Recently my safteynet started failing. I don't remeber exactly what modifcations I did at the time to cause it. I flashed the latest OOS from OnePlus so I would have no root or mods, and safteynet continues to report failed.
I really don't feel like wiping my data. Does anyone have any suggestions?
The mods I have installed at some point via magisk are, edxposed, riru, and viper audio effects.
Thank You!
Click to expand...
Click to collapse
The safetynet fail during no root time is likely because of the still unlocked bootloader. Edxposed does no longer pass safetynet. Im currently running OOS 10.3.1 with magisk while passing safetynet
Having the same issue man.
Latest beta, with root, but failing safetynet.
not sure where to go from here. I remember having this same issue a while back but "safetypatcher" fixed me right up....but it's not on the magisk repo any more
Crom4rtie said:
The safetynet fail during no root time is likely because of the still unlocked bootloader. Edxposed does no longer pass safetynet. Im currently running OOS 10.3.1 with magisk while passing safetynet
Click to expand...
Click to collapse
How are you passing safteynet with root & unlocked bootloader?
turdbogls said:
Having the same issue man.
Latest beta, with root, but failing safetynet.
not sure where to go from here. I remember having this same issue a while back but "safetypatcher" fixed me right up....but it's not on the magisk repo any more
Click to expand...
Click to collapse
Just found this: https://github.com/kam821/safetypatch/releases/tag/v4.0.1
about to re root and flash with magisk hide. I'll update this thread. Might be worth a try for you as well.
Thanks for the idea!
Update. the SafteyPatcher above did not work. I am trying MagiskHidePropsConfig now, however I am failing BasicIntegrity and CTS, which I believe means theres probably something else going on. Not really sure what to do.
Edexposed does bypass safetynet I'm on oos 10.3.2
J0nhy said:
Edexposed does bypass safetynet I'm on oos 10.3.2
Click to expand...
Click to collapse
What did you do to make it pass? I already included GSF and Play Services from the blacklist.
All my problems resolved when i uninstall Magisk, and return to PIE....
is the manager hidden and play services in the hide list (should be by default)
also check that avb and preserve encryption are ticked on the front page. Normally these should allow you to pass.
If you are still failing then there is probably some mod/previous installation of root apps on the phone causing this to trip snet.
Sometime back John Wu (magisk creator) shared (https://twitter.com/topjohnwu/status/1277916173930164225) on twitter that Google is introducing hardware based safetynet or something (don't know the exact technicality) and it'd be next to impossible to pass safetynet once google roll out that feature.
However, My phone OP6 (10.3.1) still passes the safetynet and I'm afraid I'd loose that if I upgrade it to 10.3.5 or higher.
Is it true that it won't pass safetynet if I update? Is it passing for yours?
On 10.3.5 using latest cannary build
esteh said:
On 10.3.5 using latest cannary build
Click to expand...
Click to collapse
thanks for confirming, is that canary build of magisk and any particular reason for using canary over stable?
Safety check
I use nomaal magic I think it version 20.4 and I hide the magisk app in the settings than it changes to manager en always pass safety check !
Bytheway I am on 10.3.5 oxy !
Have you guys tried third party software to pass the safety net check?????
I'm able to pass safetynet. But bank apps are able to detect root
It works perfectly here.
tatsit said:
I'm able to pass safetynet. But bank apps are able to detect root
Click to expand...
Click to collapse
they detect the presence of some binaries like su on system. Also they look for installed apps matching a blacklist.
I've recently encountered a problem. I rooted My Pixel 3a when it had stock Android 10 and passed the SafetyNet checks.
I then upgraded to stock Android 11 (RP1A.201005.004, Oct 2020) and re-rooted. However, the Magisk SafetyNet check now reports as 'attestation failed'. basicIntegrity passes but ctsProfile now fails (evalType HARDWARE).
Can anyone help in identifying the problem and how to resolve it?
largeruk said:
I've recently encountered a problem. I rooted My Pixel 3a when it had stock Android 10 and passed the SafetyNet checks.
I then upgraded to stock Android 11 (RP1A.201005.004, Oct 2020) and re-rooted. However, the Magisk SafetyNet check now reports as 'attestation failed'. basicIntegrity passes but ctsProfile now fails (evalType HARDWARE).
Can anyone help in identifying the problem and how to resolve it?
Click to expand...
Click to collapse
Same, passed it about a week ago and failed it today - I've had the October update since release and it has been fine so something has changed in the last few days ?
Magisk 21005
Manager 311
Cananry update channel
captain sideways said:
Same, passed it about a week ago and failed it today - I've had the October update since release and it has been fine so something has changed in the last few days
Magisk 21005
Manager 311
Cananry update channel
Click to expand...
Click to collapse
You have to use magiskhide props module. See its XDA thread.
magjir said:
You have to use magiskhide props module. See its XDA thread.
Click to expand...
Click to collapse
Thanks very much for that - I did try that but it didn't work for me - went on a few searches and this module I found elsewhere on here did work.
I just flashed it and my cts profile passes - there some interesting posts round it as well:
https://forum.xda-developers.com/showpost.php?p=83028387&postcount=40655
Relevant: https://forum.xda-developers.com/showpost.php?p=83028387&postcount=40655
@largeruk @captain sideways
Hey, I hate to steal the thread, but I wanted to ask if either of you would please upload a copy of the Magisk patched boot image file that you used. The ones that I have been generating using MM 8.0.2 and the latest sargo factory boot image have consistently failed to boot for me and I would like an image that has been proven to work. I would greatly appreciate you help!
UPDATE
Thanks for the file! It worked for me.
captain sideways said:
Thanks very much for that - I did try that but it didn't work for me - went on a few searches and this module I found elsewhere on here did work.
I just flashed it and my cts profile passes - there some interesting posts round it as well:
https://forum.xda-developers.com/showpost.php?p=83028387&postcount=40655
Relevant: https://forum.xda-developers.com/showpost.php?p=83028387&postcount=40655
Click to expand...
Click to collapse
THANKS!!! I recently ran into this issue and have tried the modules and changes through terminal, unrooting, flashing complete stock, but the only thing that worked was locking the bootloader. Once I had my 3a wiped and back to stock, I kept experimenting and located your fix. Magisk (cts profile) still won't pass safety net, but GPay works again (at least I could re-add cards without an error message--haven't tried to use it at a pay terminal yet) which was the whole point. I hope it's long-lasting. I can't believe more people aren't running into this issue.
@largeruk @captain sideways
Just to clarify, this is not an Android 10 or 11 issue. Newer (starting around October 22) versions of Google Play Services changed how SafetyNet works and ctsProfile fails with evalType HARDWARE.
The "Hardware Off" module no longer fixes the ctsProfile failure. I have seen mention of a new module here, but I'm not sure I trust the source: https://droidholic.com/safetynet-cts-profile-failed-fix/
Anyone have updates on this issue with the latest February Android 11 release?
madmartian said:
The "Hardware Off" module no longer fixes the ctsProfile failure. I have seen mention of a new module here, but I'm not sure I trust the source: https://droidholic.com/safetynet-cts-profile-failed-fix/
Anyone have updates on this issue with the latest February Android 11 release?
Click to expand...
Click to collapse
https://forum.xda-developers.com/t/magisk-module-universal-safetynet-fix-1-1-0.4217823/ it does work.
Edit: there is also a link to the github in the thread so you can check the code if you wish.
Hi i flashed pixel experience on my moto g7 power and i cant get the cts profile match to not fail does anyone know how to do this
Hi everyone.
I have a rooted Poco F2 with magisk 21.2 and TWRP on stock MIUI rom 12.0.4.
I had passed SafetyNet by hiding magisk manager and enabling the magisk hide props module but literally one morning I woke up with a message from Google Pay saying the phone can't be used for transactions.
I checked SafetyNet again and it indeed failed. BasicIntegrity passed and evalType was set to BASIC but ctsProfile failed.
Since I've been trying to fix it by formatting the phone entirely, flashing the stock rom from scratch and re-applying everything but i still get the same issue. I've also tried several different fingerprints from the props module but ctsProfile check always fails.
Does anyone have any clue what might've happened? I didn't mess with any setting or allow any automatic updates when i got the fail message from Google Pay.
Thanks in advance!
moxalis said:
Hi everyone.
I have a rooted Poco F2 with magisk 21.2 and TWRP on stock MIUI rom 12.0.4.
I had passed SafetyNet by hiding magisk manager and enabling the magisk hide props module but literally one morning I woke up with a message from Google Pay saying the phone can't be used for transactions.
I checked SafetyNet again and it indeed failed. BasicIntegrity passed and evalType was set to BASIC but ctsProfile failed.
Since I've been trying to fix it by formatting the phone entirely, flashing the stock rom from scratch and re-applying everything but i still get the same issue. I've also tried several different fingerprints from the props module but ctsProfile check always fails.
Does anyone have any clue what might've happened? I didn't mess with any setting or allow any automatic updates when i got the fail message from Google Pay.
Thanks in advance!
Click to expand...
Click to collapse
That method doesn't work anymore.
try this https://github.com/kdrag0n/safetynet-fix/releases/tag/v1.1.0
Dadovvv said:
That method doesn't work anymore.
try this https://github.com/kdrag0n/safetynet-fix/releases/tag/v1.1.0
Click to expand...
Click to collapse
That seems to have fixed it! Thank you so much.
Is there a sub-forum somewhere where I could've been updated that the method I was using isn't working anymore?
[TUTORIAL] WORKING FIX FOR SAFETYNET / CTS PROFILE FAILED
Alright , here we go again . Steps to follow : 1. Open Magisk and select modules tab 2. Install Module for Android 11 - (https://t.me/XiaomiEUCloud/156) For Android 10 - (https://t.me/XiaomiEUCloud/158) from Storage 3. Reboot your Device Done . [emoji3544] UPDATE : NO NEED TO FLASH THIS ON...
xiaomi.eu