displax / safetynet-fix Goto Github PK

I updated my Google pixel to the latest version of Android 14 and now play integrity fails. I tried clearing app data but that did not do anything. Safety net passes when checked with an app but play integrity does not.

Describe the bug
Hellooo, nothing works except for Basic Attestation & Basic Integrity + CTS Profile.
I thought we would be able to at least attain Device Integrity and Strong Attestation, is this not possible ?

Expected behavior
I was expecting to pass Device Integrity and Strong Integrity - but I got s**t instead ?

Google Pay also doesn't work

Screenshots

Device info
Device model: Nexus 6P
Android version: Android 8.1.0
ROM name/version: Stock ROM + Magisk 26.1 + magiskhide + universal fix, your mod (this repo)

Logs
issue.log

Additional context

Checklist

• All information is present
• Logs are attached
• [] I have tried installing and configuring MagiskHide Props Config

Is this possible - how can I pass SafetyNet's Hardware Attestation or Play Integrity's STRONG_ATTESTATION ??

Describe the bug
A clear and concise description of what the bug is.

To reproduce
Steps to reproduce the behavior:

1. Go to '...'
2. Click on '....'
3. Scroll down to '....'
4. See error

Expected behavior
A clear and concise description of what you expected to happen.

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: https://play.google.com/store/apps/details?id=rikka.safetynetchecker
Testing Play Integrity API: https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck

Device info
Device model: Xperia Pro-I
Android version:13
ROM name/version:13

Logs
Connect your phone to a computer and run adb logcat > issue.log then run SafetyNet & Play Integrity API tests. Stop log by Ctrl + C combination. Attach the log file to this issue.

Additional context
Add any other context about the problem here.

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

The module by kdrag0x also fix the video enhancement but safetynet pass failed for months so I try this mod package by you
Hope you can fix it in the next version

Not work on Xiaomi Mix fold 3。
Android 13
Miui 14.1.5
KernelSu 0.6.7

But v2.4.0_mod 1.3 works well。

Describe the bug
A clear and concise description of what the bug is.

To reproduce
Steps to reproduce the behavior:

1. Go to '...'
2. Click on '....'
3. Scroll down to '....'
4. See error

Expected behavior
A clear and concise description of what you expected to happen.

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: https://play.google.com/store/apps/details?id=rikka.safetynetchecker
Testing Play Integrity API: https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck

Device info
Device model:
Android version:
ROM name/version:

Logs
Connect your phone to a computer and run adb logcat > issue.log then run SafetyNet & Play Integrity API tests. Stop log by Ctrl + C combination. Attach the log file to this issue.

Additional context
Add any other context about the problem here.

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

Describe the bug
It doesn't work on Windows Subsystem for Android. Nothing passes. I tried clearing data of Google Play Services, Play Store and Services Framework.

To reproduce
Just install the module and restart and try to pass Play Protect Certification

Expected behavior
A clear and concise description of what you expected to happen.

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: doesn't work, it crashes after starting the test
Testing Play Integrity API:

Device info
Device model: Windows Subsystem for Android
Android version: 2308.40000.3.0 (Android 13)

Logs
issue.txt

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

I'm using KernelSU and currently it works BEST! Like 99% apps can not detect root. When I install Zygisk for KSU, KernelSU looses its hidden root mechanism.

Can you make Safetynet Fix to work on KernelSU without Zygisk?

Before the update, when I used the STRONG version 2.4.0 MOD 2.0, I had Device Integrity and Strong Integrity green.
Now after the update, only Basic Integrity is green. When I use the normal version and not the STRONG version, I have Device and Basic Integrity green but not strong integrity.

Not only does the last release v2.4.0-MOD_1.3 fix the recurring problem of "CTS Profile failed" I had on my Google Pixel 4a 5G, but it also raised my Device Integrity from "BASIC" to "DEVICE" !
I hope it will do as well for other devices...
Many, many thanks for your incredible work !

Hello, I downloaded SafeTyNet Bypass and all worked but it say autorisation error all times I open magisk and in other app.

Here a picture :

Describe the bug

• All check are passed except selinux flag.

To reproduce
Steps to reproduce the behavior:

1. Got to rootbear sample app GitHub
2. Install app
3. Check status for root.
4. Shows se linux flag enable. Root detected.

Expected behavior
It should pass all test

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: https://play.google.com/store/apps/details?id=rikka.safetynetchecker
Testing Play Integrity API: https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck

Device info
Device model: S21 Ultra
Android version: 13
ROM name/version: Stock

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present

Describe the bug
A clear and concise description of what the bug is.

To reproduce
Steps to reproduce the behavior:

1. Go to '...'
2. Click on '....'
3. Scroll down to '....'
4. See error

Expected behavior
A clear and concise description of what you expected to happen.

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: https://play.google.com/store/apps/details?id=rikka.safetynetchecker
Testing Play Integrity API: https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck

Device info
Device model:
Android version:
ROM name/version:

Logs
Connect your phone to a computer and run adb logcat > issue.log then run SafetyNet & Play Integrity API tests. Stop log by Ctrl + C combination. Attach the log file to this issue.

Additional context
Add any other context about the problem here.

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

just to preface this is on rooted graphene os i understand if you dont want to assist since im a % of a %. Before anyone else says ik you shouldn't root graphene and i don't really care, i care more about my privacy and aslong as i am actually careful with which app i provide root too its security isnt as compromised

cant seem to get it working on graphene at all attempted 2.0, 2.0 strong, and 1.3 none of them worked

Testing SafetyNet:

Testing Play Integrity API:

Device model: pixel 7 pro
Android version: 13
ROM name/version: grapheneos 2023071100

issue.log

Checklist

• [ ✅] I confirm that the SELinux status is Enforcing on my device.
• [ ✅] All information is present
• [ ✅] Screenshots are attached
• [ ✅] Logs are attached

Describe the bug:
Not passing the CTS integrity check on my Xiaomi MI 11 Lite 5g (renoir)
Device id: M2101K9G (GLOBAL Hardware)

Software:

Xiaomi.eu [12.5.8 stable] (RKICNXM) Android 11.
To reproduce

Install the module and enable Zygisk
Cleared all GMS data
Configure deny list, Google play store, and Google Play services
Reboot
Check YASNAC
Failing safetynet CTS Profile (showing "hardware backed" instead of Basic)
Expected behavior
Expecting my device to pass CTS profile SafetyNet

Device info
Device model: M2101K9G (GLOBAL Hardware)
Android version: Android 11
ROM name/version: Xiaomi.eu [12.5.8 stable] (RKICNXM) Android 11

Additional info: Tested mod 1.3 and mod 2.0 without success.

Describe the bug
Having this module enabled causes most apps to hang on startup, or crash shortly after opening.

To reproduce
Steps to reproduce the behavior:

1. Install latest Lineage OTA update (August 15th 2023)
2. Install Magisk (necessary after OTA update) with this module
3. Open Google Keep, it will hang on startup. Open Youtube, it will crash after a few seconds. This seems to be common for apps using GPS.
4. Disable this module, reboot
5. Apps start normally

Expected behavior
Apps should start and run without crashing.

Screenshots of SafetyNet & Play Integrity API tests result
Not relevant to this bug.

Device info
Device model: OnePlus 9 pro LE2123
Android version: 13
ROM name/version: LineageOS 20 update 15 August 2023

Logs
YSNAC sits in infinite loading state.
issue.log

Additional context
The behaviour has been occurring since the 15.8.2023 LineageOS 20 update.
Screen recording

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

Describe the bug
The 2.4.0_MOD_2.0 doesn't pass CTS and shows HARDWARE attestation level.
The 2.4.0_MOD_1.3 do pass CTS and shows BASIC attestation level.

Looks like a regression. I'm sticking with MOD_1.3 for now.

To reproduce
Steps to reproduce the behavior:

1. Install 2.4.0_MOD_2.0 on a BL8000
2. Run YASNAC, notice HARDWARE attestation and failure to pass CTS
3. Install 2.4.0_MOD_1.3 on the same phone
4. Run YASNAC, notice BASIC attestation and success to pass CTS

Expected behavior
The same behaviour on MOD_2.0 is expected as in MOD_1.3

Device info
Device model: Blackview BL8000
Android version: 13
ROM name/version: BL8000_S1_20240108V10

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

i'm on galaxy S23+ OneUI 5.1 with Magisk Delta 26.1 and saftynet fix v2.4.0 with mod 2.0 - GPay working.

but as soon as i activate the Magisk Hide feature with the Enforce SUlist (after reset phone) - without configuring anything in the list - the wallet is stuck when loading also chrome and gmail etc.. (again this happen only after phone reset so the hide will take effect)

when turning off the Mgisk Hide (and reset again) - everything return back to normal

How to build, I run sh build.sh and I end up with a very small zip file size

I found this tip on Reddit and decided to share it here because it worked with all the apps I tested. It basically consists of installing an alternative version of Magisk Alpha.
Steps:
1 - Install this version through TWRP (you need to rename it to .zip) http://tinyurl.com/5n7c5e4v
2 - Start Magisk and apply updates
3 - Enable Zgisk, install Safetynet fix 2.0 (https://github.com/Displax/safetynet-fix/releases/tag/v2.4.0-MOD_2.0), apply DenyList and add the apps you want to hide root in menu "Configure Denylist"
4 – Restart and use the app normally.

The Play Integrity API Checker still shows the error warning on "Meets_strong_integrity". However, the apps work normally.

App tested C6 Bank: https://play.google.com/store/apps/details?id=com.c6bank.app&hl=pt_BR

• Before adding the app to the block list: https://ibb.co/pb66CGk
• After including the application in the Denylist: https://ibb.co/v171bRs

Describe the bug
if i start the pixel 7 pro - i pass both basic integrity and CTS. After some seconds if i test it again i fail both.

Screenshots of SafetyNet & Play Integrity API tests result

Device info
Device model: Pixel 7 Pro
Android version: 13
ROM name/version: 13.0.0 (TQ2A.230505.002, Mai 2023)

Hi, the new version, it will be only zygisk? or will be and for riru etc? because i have Magisk Delta with magiskhide and riru, because of this written by @HuskyDG

Sorry... Deleting the template. But my report is so simple. As the title says, 2.0 doesn't work on OnePlus 11 running OOS 13, but older version 1.3 works fine.

Device is a CPH2451 On stock OOS 13.

I can use first API level=33 on android 10, or what API it's recommended to bypass strong integrity on android 10?

Describe the bug
v2.3.1-MOD_3.0 works on an OnePlus 6T with LineageOS 20, next versions do not work

To reproduce
Steps to reproduce the behavior:

• OnePlus 6T
• LineageOS 20-20230704-microG-fajita
• Magisk 26.1 with zygisk enabled + MagiskHide Props Config 6.1.2-v137
• device fingerprint set to OnePlus6T:11
• if I install safetynet-fix v2.3.1-MOD_3.0 all checks pass (with BASIC auth, even if I didn't force it via props)
• If I install latest version I get "Basic Integrity" and "CTS Profile does not match" errors (it tries HARDWARE_BACKED, even if I force BASIC auth via props)
• if I reinstall v2.3.1-MOD_3.0 all checks pass again

Expected behavior
Also latest version works

Screenshots of SafetyNet & Play Integrity API tests result

Testing SafetyNet:

Screenshot_YASNAC_failure_with_v2.4.0-MOD_1 3	Screenshot_YASNAC_success_with_v2.3.1-MOD_3 0

Testing Play Integrity API: I don't have Google Play store installed

Device info
Device model: OnePlus 6T
Android version: 13
ROM name/version: LineageOS 20-20230704-microG-fajita

Logs

issue.log

Additional context

n/a

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

Hey
I install your module and run zygisk on android 13 (samsung a135f) but because I connect to a private network I place private security certificates in system/etc/security/cacerts,
And without the module everything works fine, but after installing the module the system does not trust the certificates at all,
Could it be because of the difference with the keystore?

I must point out that I have no way to really check if the device passes Yasnac's test, because there are no certificates, so the application fails to connect to Google's servers to get information...

隐藏bl失效

Describe the bug
Play Integrity Check is failing (all three red) on Realme X7 max (RMX3031), Android 13 (RealmeUI 4.0). But passing safetyNet on YASNC.
Note that, this device was originally Realme GT Neo FE (RMX3350). It had chinese version of the RealmeUI installed. I switched it to global ROM which is known as X7 Max.

To reproduce

1. Removed all the conflicting modules as suggested and installed this module with Zygisk enabled.
2. Cleared all GMS data.
3. Rebooted the device.
4. Ran the check and all of them cane out negative.

Expected behavior
I was expecting my device to pass play integrity.

Device info
Device model: RMX3031
Android version: 13
ROM name/version: RealmeUI 4.0 (F13)

Logs
issue.log

Checklist

• [✅] I confirm that the SELinux status is Enforcing on my device.
• [✅] All information is present
• [✅] Screenshots are attached
• [✅] Logs are attached

刷入内核后微信以及酷安打开图片模糊，下载原图也变模糊，微信视频摄像头时有时无，打开蓝牙状态栏不显示图标

Describe the bug & To reproduce
Open Google One and phone is shown as Pixel XL. Ask a Google assistant device to find your phone and it says Pixel XL

Expected behavior
Phone should be seen as Pixel 7 Pro.

Device info
Device model: Pixel 7 Pro
Android version: 13
ROM name/version: June 2023

EDIT: Removed log due to personal info on it.

Here are magisk modules I'm using. I don't think they would cause this.

Let me know if you need anything else.

Hey there, is there any reason you are not kdrag0n's original repository?

Hey there,
Thanks for your work!
I found that latest release (2.4.0-MOD1.3) fails to pass safety net (both CTS and basic integrity) while version 2.3.1-MOD3.0 do successfully the job.
Is there any particular reason?
Thanks !

Hello just would like to ask if this will work on Android 14 and pixel 7pro if not are you working on a fix.
Thank you for your time

New version isn't working with MicroG.
Both from standard and STRONG build.

Describe the bug
A clear and concise description of what the bug is.
pixel 7 using hardware back assetention and failing meets_device_integerty and cts profile match
To reproduce
Steps to reproduce the behavior:

1. flash safteynet module with fix
2. reboot
3. open intergrity checker and safetynet cheker
4. error doesn't pass checks

Expected behavior
A clear and concise description of what you expected to happen.
for it to pass all seftynet checks and fail strong integrity
Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: https://play.google.com/store/apps/details?id=rikka.safetynetchecker
Testing Play Integrity API: https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck

Device info
Device model:pixel 7
Android version: 14
ROM name/version: stock pixel rom

Logs
Connect your phone to a computer and run adb logcat > issue.log then run SafetyNet & Play Integrity API tests. Stop log by Ctrl + C combination. Attach the log file to this issue.
issue.txt

Additional context
Add any other context about the problem here.
it was working until i had to redo my bamk card as i briefly changed it to a different device it refused i ran the checks and it failed
i am using magisk delta but magisk hide isnt enabled
i tried standard magisk with shamiko and no difference
Checklist

• [ y] I confirm that the SELinux status is Enforcing on my device.
• [ y] All information is present
• [y ] Screenshots are attached
• [ y] Logs are attached

Describe the bug
Hi there, MEET_STRONG_INTEGRITY is fail while MEET_BASIC_INTEGRITY and MEET_DEVICE_INTEGRITY both pass.

Expected behavior
MEET_STRONG_INTEGRITY pass

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet
Testing Play Integrity API

Device info
Device model: Redmi k50 ultra/ Xiaomi 12T Pro (diting)
Android version: 13
ROM name/version: V14.0.10.0.TLFCNXM

Additional context
Since I saw you have said MEET_STRONG_INTEGRITY has been fixed in last week Release. I think I should pass MEET_STRONG_INTEGRITY as well? Thanks for your work!

Checklist

• [√] I confirm that the SELinux status is Enforcing on my device.
• [√] All information is present
• [√] Screenshots are attached

Describe the bug
While everything seemed perfect for a while under Magisk canady 26103, upon updating to 26104, today, Google One VPN stopped working again, even with safetynet fix v2.4.0-MOD_2.0. MEETS_Strong_Integrity failed again. The miracle lasted under a week.

To reproduce
Steps to reproduce the behavior:

1. Go to Play Integrity API Checker
2. Click on check
3. Scroll down to N/A
4. See error

Expected behavior
That it should have continued to rock and pass Meets_Strong_Intregity

Screenshots of SafetyNet & Play Integrity API tests result
Testing SafetyNet: https://play.google.com/store/apps/details?id=rikka.safetynetchecker
Testing Play Integrity API: https://play.google.com/store/apps/details?id=gr.nikolasspyr.integritycheck

Device info
Device model: Google Pixel 7 Pro
Android version: 13 (20230705)
ROM name/version: Google One VPN

Logs
Connect your phone to a computer and run adb logcat > issue.log then run SafetyNet & Play Integrity API tests. Stop log by Ctrl + C combination. Attach the log file to this issue.

Additional context
Add any other context about the problem here.

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached

Now Google pay cannot pass device security detection.

Deleted (Fixed)

Version 1.3 works fine

OnePlus 7T Pro Mclaren OOS12 Rooted
Fingerprint scanner barely working like once per 20 unlocks. Yesterday updated from unmoded 2.4.0 (CTS broken) to modded 2.0 downgraded to modded 1.3 still happens. CTS working fine on modded finally.
On 2.3.0(?) unmodded don't remember which version OnePlus devices had it before.

Describe the bug
Not passing the CTS integrity check on my Xiaomi 13 Pro
Device id: 2210132G (GLOBAL Hardware)

Software:

• Official running MIUI Global [14.0.24] (TMBEUXM) Android 13.

To reproduce

1. Install the module and enable Zygisk
2. Cleared all GMS date
3. Configure deny list, Google play store and Google play services
4. Reboot
5. Check YASNIC
6. Failing safetynet CTS Profile

Expected behavior
Expecting my device to pass CTS profile safetynet

Device info
Device model: Xiaomi 13 pro - 2210132G (GLOBAL Hardware)
Android version: Android 13
ROM name/version: MIUI GLOBAL 14.0.24

Additional context
Add any other context about the problem here.

Checklist

• I confirm that the SELinux status is Enforcing on my device.
• All information is present
• Screenshots are attached
• Logs are attached