Magisk not passing Safetynet check after disabling fused position - Huawei P9 Lite Questions & Answers

Like the main title said, i've just installed magisk today (ver 16.7) and it worked fine.
After that i've installed a fake Gps App for mock my location. I've made it a system app and it worked fine, the only thing was that the position was unstable (the marker on Google Mpas "jumps" over the real and the mock position) so i decided to disable the fused position module via the Disable Service app (downloaded on the Google Play Store) for make the position stable, then i reboot my p9 lite. After that i got a bootloop, after 3 reboot a wipedata was performed on the phone. So i decided to reflash magisk but this time i'n not passing the SafetyNet check (both BasicIntegrity and ctsProfile are false).
I state that i've read the Magisk Issues and question and I didn't find nothing helpful. I've tried to install the magiskHide props module too and doing some thinkgs via terminal but nothing seems to work.
Any suggestion/help?

Related

Custom Rom - Magisk/microG - Magisk Stops Doing SafetyNet Check

I'm running AospExtended-5.8, no Gapps installed and Xposed/FakeGapps, with microG.
From what I've read Xposed needs to be either uninstalled or disabled, so I disabled it, unchecked FakeGapps, and rebooted.
SafetyNet is enabled in microG and 'Use Offical Server'.
When I try to do a SafetyNet check in Magisk, I get a popup saying Magisk has stopped.
I have two different model phones, and each one does the same thing, running different versions of Magisk and different ROMs. I don't know why Magisk keeps stopping running the SafetyNet check?
I hope someone knows how to work this out?
Thanks
DoR3M3 said:
I'm running AospExtended-5.8, no Gapps installed and Xposed/FakeGapps, with microG.
From what I've read Xposed needs to be either uninstalled or disabled, so I disabled it, unchecked FakeGapps, and rebooted.
SafetyNet is enabled in microG and 'Use Offical Server'.
When I try to do a SafetyNet check in Magisk, I get a popup saying Magisk has stopped.
I have two different model phones, and each one does the same thing, running different versions of Magisk and different ROMs. I don't know why Magisk keeps stopping running the SafetyNet check?
I hope someone knows how to work this out?
Thanks
Click to expand...
Click to collapse
Because of Google have changed the SafetyNet api
Old safetynet check won't work at the time of this comment.
topjohnwu already have fixed SN check u have to wait until new version of magisk release or u can install unofficial magisk version from this developer
Link : https://github.com/ianmacd/MagiskBuilds
Actually since I don't have Gapps installed, that means no Play Services, I was told that's the problem and Magisk should of given me a message saying this...

Google Pay stopped working

Hi,
im a little bit confused about this problem. From one day to another, G Pay stopped working with NFC. "This device cant be used because its rootet or modified."
I use Magisk with stock Rom severeal month now and gpay ran without any problems. The confusing thing is that I didnĀ“t changed anything what could cause this behaviour.
What I already tried:
-GPay: Delete cache, uninstalled updates. Tried many times to activate NFC payment.
-Erased Cache in TWRP
-Installed complete offline OTA. (Root and TWRP was gone and it still wont work)
-Tried Magisk Hide and random app name.
Does anybody have an idea? I dont want to reset the whole phone for this or lock the bootloader.
Thanks for your help!
Did you update the Gpay app? Mine still works but I never installed the update
I've got the latest Google Pay version and it's been working fine.
What version of Magisk are you using? Do the SafetyNet checks pass? Does Google Play Store show that the device is certified? I've had issues with Magisk 18 & 18.1 where Magisk Hide would stop working and SafetyNet checks failing.
If you're on Magisk 18.x & SafetyNet checks fail for you, try uninstalling Magisk & Magisk Manager. Install version 17.3. Install Magisk Manager 6.1.0. Enable Magisk Hide and hide Google Pay and Google Play Store. Clear storage on Google Play Store. See if SafetyNet checks pass. Check that the device is certified. Try Google Pay again.
I don't know for sure that this will fix the problem with Google Pay, but it's what I've done after having issues with Magisk.
sharksfan7 said:
I've got the latest Google Pay version and it's been working fine.
What version of Magisk are you using? Do the SafetyNet checks pass? Does Google Play Store show that the device is certified? I've had issues with Magisk 18 & 18.1 where Magisk Hide would stop working and SafetyNet checks failing.
If you're on Magisk 18.x & SafetyNet checks fail for you, try uninstalling Magisk & Magisk Manager. Install version 17.3. Install Magisk Manager 6.1.0. Enable Magisk Hide and hide Google Pay and Google Play Store. Clear storage on Google Play Store. See if SafetyNet checks pass. Check that the device is certified. Try Google Pay again.
I don't know for sure that this will fix the problem with Google Pay, but it's what I've done after having issues with Magisk.
Click to expand...
Click to collapse
Magisk: 18.1 (worked with this version), Safety Net is passing (Thats why im so confused about it)
Playstore is showing me that it is certified.
I never had a failed SN check.
Probably because having a rooted phone, especially if you are using to send/receive money, opens up a SECURITY HOLE, even if you are using something to "bypass" google.
NOTHING is 100% safe, but, I for one, will never root my phone, if I am using it to spend money.
The days of rooting will be over one of these days. Google is locking down things more and more.
hlzocker said:
Magisk: 18.1 (worked with this version), Safety Net is passing (Thats why im so confused about it)
Playstore is showing me that it is certified.
I never had a failed SN check.
Click to expand...
Click to collapse
Make sure you have hide enabled for pay.
I'm on 18.1 and I don't have issues.
I fought with the same problem.
latest Magisk Canary build was the solution that worked for me:
https://forum.xda-developers.com/showpost.php?p=78946079&postcount=31551
Coumodo said:
I fought with the same problem.
latest Magisk Canary build was the solution the worked for me:
https://forum.xda-developers.com/showpost.php?p=78946079&postcount=31551
Click to expand...
Click to collapse
Yes, that solved the problem for me. Now the activation was successfull. Thanks!

Google Play Protect Certification

Hello there. I have a question regarding getting my phone to be Google Play Protect certified again. I have unlocked the bootloader, which if I understand correctly is what breaks the certification, Flashed TWRP 3.0.4-1, and installed Magisk v20.4 via TWRP. I verified Root by using the app Root Checker on the play store (and also SU requests popped up after rebooting). I enabled MagiskHide inside Magisk Manager and performed a SafeyNet Check and both the ctsProfile and basicIntegrity returned as True (the first time I ran it cts failed so I enabled hide and rebooted). There are a few apps that I use that indicate my device is not compatible and it is because of this I am guessing (Chewy, Disney+ for example). Oddly, as I was typing this I tried again and looked in the "My Apps" list and I could install Disney+ from there (10 minutes ago I couldn't) but clicking on the app it still said that it was incompatible. Chewy, however, remains unable to be used.
Since I could only find references to this on this thread (https://forum.xda-developers.com/pixel-2-xl/help/play-certification-unlocked-bootloader-t3950857) and the second way to correct this problem, that thread says it doesn't resolve the ctsProfile) I figured I'd ask on here. I already soft-bricked it once and successfully used the MSM tool to bring it back so if I screwed something up I'll try again, but probably only once more :fingers-crossed:
*edit* I haven't activated my actual phone use yet since I want it to be stable first! Not sure if that makes a difference, I don't think it should.
*edit 2* I've since activated my phone. I can receive calls but no text messages. The plot thickens.
Thanks!

SM-A515F/DSN SafetyNet Pass (One UI 3.1), may work for other devices aswell!

EDIT: For anyone using A51, use this method instead to preserve rom stability:
[A515x] SafetyNET PASS [Android 10 - 11] [Magisk]
UNIVERSAL SafetyNet FIX (A515x Edition) ABOUT THIS: This is a universal fix for SafetyNet on devices with hardware attestation and unlocked bootloaders. It defeats both hardware attestation and the new SafetyNet CTS profile updates released on...
forum.xda-developers.com
Just this night, I managed to pass SafetyNet (mainly ctsProfile) and got a successful attestation result. When I first unlocked the bootloader and flashed Magisk, I was stuck with attestation failure, but basicIntegrity was already true, and only ctsProfile was false. This nighr I did some researching and came to a final way fixed SafetyNet fully.
EDIT: ENSURE YOU PASS basicIntegrity FIRST! I only tested this on my devicr which already passed basicIntegrity (but not ctsProfile)
Steps:
1. Enable MagiskHide and enable hiding for everything in Google Play Service.
2. You need to install MagiskHideProp, so install that first as a Magisk module, then go to a terminal, enter superuser mode, and type "props" without the quotes, now select "Edit device fingerprint", select Google, find and select "Pixel 3a", and then select Android 9, confirm the changes and then reboot. (This may cause the system to think that Android got updated, this behaviour is normal, if your wallpaper is black and nothing shows at the notification quick settings then wait several minutes)
3. Now install Universal SafetyNet Fix v1.1.1 as a Magisk module, and reboot again.
4. Finally, disable Google Play Store, use an app to fully force stop GPlay and Google Play Service, and then clear data for Google Play Store and Google Play Service, and then re-enable Google Play Store. (Required for device to pass "Play protect device certification")
5. Now check SafetyNet and see if attestation success and the type is basic.
SEVERAL NOTES:
- NETFLIX STILL DOES NOT WORK!! I was able to search Netflix in GPlay and update it, but when I try to play something I was stuck at the loading screen. (Using Magisk DRM Disabler causes Netflix to crash with error code 503 -1019 as the DRM library is gone)
- Changing the device fingerprint to Pixel 3a is required as it's the last device to use basic attestation
- You still need Universal SafetyNet Fix as GMS still uses hardware attestation despite reporting basic attestation, the Magisk module solves this problem.
Please pardon me for the bad English as my native language is not English.
I do not exactly know if this is only happening tk me, however do NOT try to do something intensive with the SystemUI (such as putting your phone to sleep mode, waking it up, and then repeating this multiple times), it will crash the SystemUI and force your phone into a soft reboot.
UPDATE: This fix can slowly destroy SystemUI/Zygote (frequent soft reboots, unable to get out from lockscreen), make sure to revert the changes as soon as possible if this happens to you. (my phone straight crashed 6 times just right now, I have reverted the changes and it seems to be fine)
This seems to happen with Samsung phones, but I can't be sure about that.
i have failed to understand your point of why use this method for A51
where as on the latest firmware may update one ui 3.1 Android 11 with hiding things from magisk hide on Magisk V23. I have safetynet working just fine posted in this thread by BlassGO here
[A515x] SafetyNET PASS [Android 10 - 11] [Magisk]
UNIVERSAL SafetyNet FIX (A515x Edition) ABOUT THIS: This is a universal fix for SafetyNet on devices with hardware attestation and unlocked bootloaders. It defeats both hardware attestation and the new SafetyNet CTS profile updates released on...
forum.xda-developers.com
And by the way i am using edxposed manager as well as Riru module and after hiding things in edxposed hide even then safety doesnot break for me
kingwicked said:
i have failed to understand your point of why use this method for A51
where as on the latest firmware may update one ui 3.1 Android 11 with hiding things from magisk hide on Magisk V23. I have safetynet working just fine posted in this thread by BlassGO here
[A515x] SafetyNET PASS [Android 10 - 11] [Magisk]
UNIVERSAL SafetyNet FIX (A515x Edition) ABOUT THIS: This is a universal fix for SafetyNet on devices with hardware attestation and unlocked bootloaders. It defeats both hardware attestation and the new SafetyNet CTS profile updates released on...
forum.xda-developers.com
And by the way i am using edxposed manager as well as Riru module and after hiding things in edxposed hide even then safety doesnot break for me
Click to expand...
Click to collapse
That module did not work for me at all before, however I will try again using it if you say it works, and I am using Riru EdXposed aswell and Magisk v23
kingwicked said:
i have failed to understand your point of why use this method for A51
where as on the latest firmware may update one ui 3.1 Android 11 with hiding things from magisk hide on Magisk V23. I have safetynet working just fine posted in this thread by BlassGO here
[A515x] SafetyNET PASS [Android 10 - 11] [Magisk]
UNIVERSAL SafetyNet FIX (A515x Edition) ABOUT THIS: This is a universal fix for SafetyNet on devices with hardware attestation and unlocked bootloaders. It defeats both hardware attestation and the new SafetyNet CTS profile updates released on...
forum.xda-developers.com
And by the way i am using edxposed manager as well as Riru module and after hiding things in edxposed hide even then safety doesnot break for me
Click to expand...
Click to collapse
Weird, it now works for me (I had to reboot 2 times), I'll update thread then. However this method still works if you're using GSM roms/Treble that normally has failed attestation aswell

Safetynet fails Basic Eval

device info:
Oneplus 8 Pro IN2025
Oxygen OS 11.0.99.IN11AA
Recently rooted and I was not passing SafetyNet basic Eval and I tried Riru Lxposed and still the same thing. Somewhere online I saw someone said to install Magisk Canary and it should have Denylist which should help hide apps from the root and I don't have to worry about Safetynet with Denylist. So right now I am using Zygisk with Denylist and even with that, some apps are not working like Amazon and eBay. Can't figure out any way to pass even the basic Eval for SafetyNet. I just want all my apps to work anyone figure out a way around safetynet checks or know how to make Denylist work on all apps?
Didn't think this would work but I just fixed it.
[2023 FIX] Fix Magisk CTS Profile False Error - Bypass Safetynet
Magisk CTS Profile False Error is now popping up on almost everyone's device since Google made some changes in March. To Bypass Safetynet...
droidholic.com
The Dec 23rd 2021 update was what fixed it for me. I downloaded the Zygisk fix and put it in my Magisk and was able to pass safetynet and all my apps were working!
Bump! Oddly enough I am passing safetynet but Huntington banking app is still detecting root and Amazon is not working again. Ebay app works though.
Amazon app was working but now I guess its not?
Edit: uninstalling and reinstalling the fix module lets amazon temporary for a couple minutes and then it stops working but huntington app still detects root too.
I'm still rocking a Pixel 2 XL running stock rooted 9.0.0. I've got Magisk 23.0 Stable installed and the following modules installed:
Busybox for Android NDK 1.34.1
Systemless Hosts 1.0
Riru 26.1.4.r552(etc)
Universal SafetyNet Fix 2.1.3
If it matters, I do still have TWRP installed.
I installed Riru, rebooted, installed Universal SafetyNet Fix, rebooted again, and when SafetyNet check failed, I toggled Magisk Hide off then on.
Does anyone know what might be wrong? Suggestions are very welcome!

Categories

Resources