Max 2 fails SafetyNet, does it have malware? - LeEco Le Max 2 Questions & Answers

So I got a Max 2 x829 which came with a case. It's running Android 6.0.1. It fails SafetyNet CTS and Basic Integrity, so does not run Pokemon Go. Is this expected, or did a reseller add malware on the device?

Mine suffers from the same problem. Where did you buy yours?

I wouldn't put much stock in safety net.

castuis said:
I wouldn't put much stock in safety net.
Click to expand...
Click to collapse
What do you mean? Not passing SafetyNet means not being able to play/download some of the best games on the PlayStore. I think it's relevant.

Same here. I'm using cuoco92 ROM. I tried safety net that comes with magisk manager, but it doesn't work. I really doubt that there is malware installed, but I've no idea why it fails...maybe because ROM is rooted?!

Let me think about this... Most people have buy this device from a international reseller shop instead of the official Leeco store or online shop. Makes sense cause I'm pretty sure that most of the users here on the board are not living in China or India.
Every online shop is installing a custom ROM to make sure that as many languages as possible are supported. The most installed "Shop-Rom" is couco92...
As far as we know every Android device that is able to run a custom ROM needs an opened bootloader and especially couco92 comes with the ability to run SuperSU and Root!
If you just search Google for "SafetyNet" you find an official statement why it's not possible to run Banking or
Pay-Apps and why there's no possibility to run games like Pokemon go on rooted devices!!!
So let me think again about this...
Sorry guys but I also don't understand why the hell this device isn't able to pass the SafteyNet check! It must be because of malware or something like this!!!
Sorry for being so damn ironic! Hopefully it's self explaining why I wrote a post like this and you are able to get the informations you are looking for from the text...

Thanks for the answer, albeit the unnecessary sarcasm. Assuming that's true (which sounds quite reasonable) would the original ROM fix the problem? is the original ROM maybe supporting english language? And could anyone confirm such ROM does indeed pass SafetyNet checks? Thanks!

So ended up flashing the last Indian stock ROM. That solved the "basic integrity" check and now I can download from Play Store apps not previously visible. However, still does not pass the CTS check.

I believe such checks are over exaggerated, hackers can hack strongly locked iPhones or anything similar, so it doesn't matter CTS pass or fail as long as you keep your phone fully scanned with reasonable antivirus/security apps.

I think thats because your phone has bootloader unlocked.

This is the reason:
Devices that ship with Google's Play Store and other apps installed must pass Google's Android “Compatibility Test Suite”. Rooting a device or installing a custom ROM prevents a device from being “CTS Compatible”. This is how the SafetyNet API can tell if you're rooted–it merely checks for CTS compatibility. Similarly, if you get an Android device that never came with Google's apps–like one of those $20 tablets shipped direct from a factory in China–it won't be considered “CTS compatible” at all, even if you haven't rooted it.
Click to expand...
Click to collapse
Source

Heyyo, use the official LineageOS MM ROM. It passes safety net. There's some other ROMs but I'm not sure. I'll try it on Mokee MM build and report back.
RR N fails Safety Net as it is pre rooted and some other tweaks that cause it to fail.
Oh, another reason why it can fail safety net is modem firmware. You might have to revert to a Chinese or Indian or international modem firmware. I don't think developer firmware works for SafetyNet

ThE_MarD said:
Heyyo, use the official LineageOS MM ROM. It passes safety net. There's some other ROMs but I'm not sure. I'll try it on Mokee MM build and report back.
RR N fails Safety Net as it is pre rooted and some other tweaks that cause it to fail.
Oh, another reason why it can fail safety net is modem firmware. You might have to revert to a Chinese or Indian or international modem firmware. I don't think developer firmware works for SafetyNet
Click to expand...
Click to collapse
I can't pass SafetyNet with latest (04/29) LineageOS 13 nightly. I tried with Chinese 23S modem, wipe everything except Internal Storage, and install Open GApps Pico. I still get CTS Profile Mismatch. I tried with it as my Internal ROM under MultiROM, which I believe should be OK. I think it's expected to fail if installed as a Secondary. In any case, I have no particular reason I need to pass SafetyNet, I just thought I'd try. I've read that on newer Android devices, an unlocked bootloader can cause SafetyNet to fail (unless kernel is patched). I didn't try re-locking my bootloader so that could be it.

Heyyo, hmm well I tried ASOP based DU rom but it failed too but then again I'm using MultiRom as well so I'm unsure if that messes with it since it's a custom boot.img which I think is part of the SafetyNet check...

Related

Pokemon GO on rooted device

Hey guys,
Since latest update (v0.37.0) of Pokemon Go, rooted devices users are blocked from entering the game. See this article on xda-dev.
The only (known) solution to bypass this is to follow this guide : http://www.androidpolice.com/2016/09/11/guide-play-pokemon-go-0-37-rooted-android-magisk/
BUT...
It seems that flashing Magisk-v6 modifies kernel or something because on Mokee's CM13 ROM, i don't have GPS or internet data anymore.
If i restore boot from TWRP, GPS and internet are working again, but not Magisk.
Is there a CM13 ROM for Kenzo (usable as a daily driver) that works with Magisk?
There is another alternative by chainfire, but need the latest systemless supersu v2.78 SR1!
It is experimental and may not work for everyone.
Also I don't think it works with xposed!
See here
corkiejp said:
There is another alternative by chainfire, but need the latest systemless supersu v2.78 SR1!
It is experimental and may not work for everyone.
Also I don't think it works with xposed!
See here
Click to expand...
Click to collapse
Thanks for your help! Since it won't work with Xposed, i will wait for a stable release.
It's good to see that Chainfire is involved.
That's good news. will give it a shot sometime. If anyone tries it before please let me know what you did and how it went
If this gets a stable release I might give it a try. I'm running official CM13.0 btw.
Okay, latest stable release of CM13 official works perfectly with Magisk-v6 on my Kenzo.
But to play Pokemon Go 0.39, systemless Xposed need to be disabled (so a reboot is needed).
Plus, SafetyNet Helper app returns "false" to the "CTS profile match" test. So i guess Android Pay won't work.
i just stoped playing since they forced me the update
no harse feeling. wasnt fun anymore anyway
was lvl32 and used pokemon go controls to get to the nearest city 25km from my house since there is nothing around me.
i played once a day toke gyms back if they where taken thats all .
anyway i dont miss it to much trouble to get it working no worth it

Pokémon Go isn't working on LeEco LeMax2

Hi, everyone.
I have not been able to play Pokémon Go on my LeMax2 (X829).
I'm using Cuoco92 (28S_M18.4).
Magisk (v.16.0) and Magisk Manager (5.7.0) are up to date. And the Pokémon Go is marked in the Magisk Hide.
But, despite all this, the game does not open on my smartphone. What could be happening?
Another choice
Marcello_Lobo said:
Hi, everyone.
I have not been able to play Pokémon Go on my LeMax2 (X829).
I'm using Cuoco92 (28S_M18.4).
Magisk (v.16.0) and Magisk Manager (5.7.0) are up to date. And the Pokémon Go is marked in the Magisk Hide.
But, despite all this, the game does not open on my smartphone. What could be happening?
Click to expand...
Click to collapse
I was using cuoco92 too, so I decided to change my ROM to a new one, I installed Pixar with Android Oreo 8.1 and after it Magisk Manager. Hiding Pokemon GO with magisk was working ok, but this new ROM was not focusing the camera...
hkbemil said:
The reason is that the selinux mode of stock bootloader(boot.img) is in permissive, so you could not play Pokemon Go.
I tried to solve the same problem for a few months ago.
I tried several ways in various ways and eventually succeeded.
You can pass the basic integrity of the safetynet test by disassembling the bootloader and adding "enforcing=1" to the cmd_line.
The selinux mode will change to be enforcing and you could play Pokemon Go without Magisk.
I am an x820 user, I think that x829 has same problem.
I tested on 26s and 28s rom of X820, not test on 30s yet.
Click to expand...
Click to collapse
Heyyo, the reason. Why 26s, 28s and 30s struggle is they are Chinese ROMs which were never Google SafetyNet certified so they will never pass without attempting Magisk.
Only North American, Indian and Russian (afaik anyways) builds of EUI ROM are SafetyNet certified.
It also requires bootloader to be locked.
Otherwise? You will need a ROM that exploits SafetyNet via the kernel with a greenlight hack. LineageOS Pro, DU12, Pixel Experience and tbh I'm unsure which other ones have it. I do remember that OmniROM Nougat official builds had it as well.
Please note I said LineageOS Pro by GalaticStryder and not official LineageOS since LineageOS team is against exploiting SafetyNet as to abide by what Google wants custom ROMs to do. That's also why they dropped user builds for userdebug builds.
Hope this makes sense.
You need to back for 19s Indian stock.
ThE_MarD said:
Heyyo, the reason. Why 26s, 28s and 30s struggle is they are Chinese ROMs which were never Google SafetyNet certified so they will never pass without attempting Magisk.
Only North American, Indian and Russian (afaik anyways) builds of EUI ROM are SafetyNet certified.
It also requires bootloader to be locked.
Otherwise? You will need a ROM that exploits SafetyNet via the kernel with a greenlight hack. LineageOS Pro, DU12, Pixel Experience and tbh I'm unsure which other ones have it. I do remember that OmniROM Nougat official builds had it as well.
Please note I said LineageOS Pro by GalaticStryder and not official LineageOS since LineageOS team is against exploiting SafetyNet as to abide by what Google wants custom ROMs to do. That's also why they dropped user builds for userdebug builds.
Hope this makes sense.
Click to expand...
Click to collapse
i ve instaled stock american x829 20s and still not passing safetynet
jorgeffonte said:
i ve instaled stock american x829 20s and still not passing safetynet
Click to expand...
Click to collapse
Heyyo jorgeffonte, have you tried relocking your bootloader in developer options and then rebooting?
If that doesn't work? Maybe you will need the EUI ROM x821 19s as it definitely passes SafetyNet.
Otherwise? After a bunch of changes on LineageOS 15.1? We do pass SafetyNet without any hacks... But the issue for Nintendo games is it will detect bootloader unlocked and that it's a userdebug build, so Pokémon Go wouldn't work unless you used Magisk...
It's quite the bummer that Nintendo are very anti-custom ROM...
I'm on revengos with magisk with the hide module and it works fine.

Huawei device "ptrace" implementation issue

Being a no good dirty cheater, I'm a big fan of Game Guardian and I use it with great success on my HTC U11 phone. I recently discovered that it can be used without root, by using a virtualization environment such as Parallel Space or VirtualXposed. As I haven't rooted my M5 (SHT-09), I downloaded Parallel Space and GG and got it all running. However, I've found that I cannot make any edits to game memory space from within GG.
The are a number of posts on the GG forum suggesting that there is a bug (or security feature) in many Huawei device cores / firmware that relates to the implementation of the ptrace system function call. Something in the firmware seems to prevent the GG process from modifying the child process memory space using PTRACE_POKETEXT or PTRACE_POKEDATA.
The suggestion of the developer of GG is to "change the firmware so that there the ptrace system call works normally".
Anyone aware of this "feature" of Huawei device firmwares? Is there / could there be a solution to modify the firmware to "fix" this behaviour?
I saw you posted on my thread. Thanks for that. I wanted to see whether flashing a different kernel like Serenity would help. But i doubt it. Might be worth a try. Would have loved to know that beforehand. :/ Any other ideas? What I am seeing is that it needs a competent developer to recode the Kernel. I would then flash that patch. Other than that it is defined as unfixable. That we'd have to change the device. :/
It's the main reason that I haven't rooted / unlocked the bootloader, as running GG is pretty much all I use root for on other devicxes. And the fact that rooting / boot unlock kills Widevine level 1 support, which is madness on a 2k device like the M5. Wouldn't want Netflix streaming SD content only.
From what I understand, which isn't much, the issue is buried deep down in the kernel. Not sure if a custom kernel would solve the problem or not. Knowing XDA, I'm sure someone will be crazy enough to try it at some point in the future!
mroshaw said:
It's the main reason that I haven't rooted / unlocked the bootloader, as running GG is pretty much all I use root for on other devicxes. And the fact that rooting / boot unlock kills Widevine level 1 support, which is madness on a 2k device like the M5. Wouldn't want Netflix streaming SD content only.
From what I understand, which isn't much, the issue is buried deep down in the kernel. Not sure if a custom kernel would solve the problem or not. Knowing XDA, I'm sure someone will be crazy enough to try it at some point in the future!
Click to expand...
Click to collapse
Yeah I get that, but some games dont have a cloud feature. Making parallel space useless. Plus I appreciate some other root features. I have a note 8 which should work GG without root, but I'll see how it goes. Oh really, I'm a big time stream fan. I havent tried Netflix with root yet . Should still work tho. I think. Hmm well, problem is all kernels are made for devices like the mate 10 or the P20. Not sure if they will work with the M5, wouldn't want to brick after all the trouble. [Edit, found the nextflix module apk. Can flash that with Magisk. Makes it work again ]
mroshaw said:
Being a no good dirty cheater, I'm a big fan of Game Guardian and I use it with great success on my HTC U11 phone. I recently discovered that it can be used without root, by using a virtualization environment such as Parallel Space or VirtualXposed. As I haven't rooted my M5 (SHT-09), I downloaded Parallel Space and GG and got it all running. However, I've found that I cannot make any edits to game memory space from within GG.
The are a number of posts on the GG forum suggesting that there is a bug (or security feature) in many Huawei device cores / firmware that relates to the implementation of the ptrace system function call. Something in the firmware seems to prevent the GG process from modifying the child process memory space using PTRACE_POKETEXT or PTRACE_POKEDATA.
The suggestion of the developer of GG is to "change the firmware so that there the ptrace system call works normally".
Anyone aware of this "feature" of Huawei device firmwares? Is there / could there be a solution to modify the firmware to "fix" this behaviour?
Click to expand...
Click to collapse
Alright guys, I found this out today (I'm also Kr1msonReaper on GG forums);
Huawei kernel prevents GG from working in Android Oreo HOWEVER-- If you downgrade to Android Nougat, I find that it works perfectly. Hope this helps!
Just a note, when you are, of course, debloating Nougat, make sure to disable Huawei system update app so you don't find yourself in Oreo the next day.
Kr1msonReaper said:
Alright guys, I found this out today (I'm also Kr1msonReaper on GG forums);
Huawei kernel prevents GG from working in Android Oreo HOWEVER-- If you downgrade to Android Nougat, I find that it works perfectly. Hope this helps!
Just a note, when you are, of course, debloating Nougat, make sure to disable Huawei system update app so you don't find yourself in Oreo the next day.
Click to expand...
Click to collapse
How do you downgrade to nougat? Any reason not to do it? And will I retain root ?
I actually like Nougat more than Oreo as it fixes issues such as the ptrace error and seems to have more battery optimization. It's been a long time since I downgraded to Nougat and since then I got a new phone but here's the tutorial I followed. @mrmazak has helped me out of se sticky situations and his tutorials have never failed me. https://forum.xda-developers.com/honor-7x/how-to/guide-honor-7x-flash-oreo-update-t3781649/amp/
I believe you will lose root but you can easily flash magisk again after installing the downgrade package.
Hope this helped!
Kr1msonReaper said:
I actually like Nougat more than Oreo as it fixes issues such as the ptrace error and seems to have more battery optimization. It's been a long time since I downgraded to Nougat and since then I got a new phone but here's the tutorial I followed. @mrmazak has helped me out of se sticky situations and his tutorials have never failed me. https://forum.xda-developers.com/honor-7x/how-to/guide-honor-7x-flash-oreo-update-t3781649/amp/
I believe you will lose root but you can easily flash magisk again after installing the downgrade package.
Hope this helped!
Click to expand...
Click to collapse
I am not sure this would work on the Huawei mediapad m5 tablet. As far as I can tell it never had a nougat firmware to rollback too. I looked for sht-w09 and the all the files appear to be for Android 8 and none for 7 nougat. Unless I am missing something??
Other than they locked out ptrace stuff and that it appears unlikely to get Android 9 in the US for my mode l its a pretty good tablet. Maybe I should just sell it and move on to a tab s6 that can be rooted.
paths said:
I am not sure this would work on the Huawei mediapad m5 tablet. As far as I can tell it never had a nougat firmware to rollback too. I looked for sht-w09 and the all the files appear to be for Android 8 and none for 7 nougat. Unless I am missing something??
Other than they locked out ptrace stuff and that it appears unlikely to get Android 9 in the US for my mode l its a pretty good tablet. Maybe I should just sell it and move on to a tab s6 that can be rooted.
Click to expand...
Click to collapse
Hey! You're right I couldn't seem to find a nougat downgrade. On the bright side, I did find a Pie update for your model. Who knows, maybe ptrace will be fixed in that version?
https://www.getdroidtips.com/mediapad-m5-8-android-9-0-pie/
Good luck!

How to remove root completely from Poco F1 installed with Android 9 based custom roms

Dear All,
I have bought POCO F1 in the first sale and I am very happy with its performance. Once there were Android Pie based custom roms, I have enthusiastically tried some of them. I have to thank all developers here for their relentless efforts in bringing the most updated features to our beloved POCO F1. I just have a small problem, I rely a lot on banking apps and all of them complaint that my device is rooted on Android 9 roms. I know that I can hide root by using Magisk but I dont want to use it. I want to know how to remove the root completely rather than hide it. So, Kindly give me some information as to how Android 9 based rom can be completely unrooted.
Unistall Magisk
I have the same issue......my ROM came prerooted.....is there to remove root completely....
You'll have to try different ROMs until you find one that works for you (i'd Start from Pixel experience)
I never had this problem so i have a feeling that you might have missed a step.
(Did you wipe system,data, davlik before flashing?)
(Did you flash an encryption disabler? because you shouldn't)
Just flash a stock Fastboot package. That's the only true reliable way to "unroot" a device.
If your ROM came pre-rooted, it's either a crap ROM or is still being built in userdebug mode for dev purposes. If it's the latter, unrooting is a bad idea and probably won't solve anything anyway. So either accept it, or use a different ROM.

MicroG on LG30 - anyone successful?

I wasn't able to find any MicroG thread with V30 so here we go.
I am after the point of rooting the device and now trying to figure out best ROM option.
Ideally I would like to use MicroG as I like the idea of maneuverability and full control over Gapps - seems to be better option than AOSP + Gapps as Gapps going to send out mobile info with or without Google account anyway.
I have h931 on oreo so as I understand I should use Joan version of Lineage I want to flash but it's not on the list on official LineageOS with MicroG page.
Have anyone tried to flash any of those ROMs
https://download.lineage.microg.org/
or installed MicroG after Lineage and is successful so far?
Goal is to install and use Banking app when it's needed and then switch off all Google functionality.
Thanks
Most ROMs support MicroG.
I randomly searched in the ROM forum here and this was in the OP of one:
https://forum.xda-developers.com/lg-v30/development/rom-cosp-pie-t3930546
"Also, we provide the option to go completely without GApps using MicroG support."
Best to go down to the ROMs, find one you like and read their OP, then ask questions.
If you want Lineage specifically see bottom part of this post:
https://forum.xda-developers.com/showpost.php?p=78011047&postcount=521
I'm on COSP with an H932 and am considering making the jump to microg once I have had the time to understand the process pretty well. As @ChazzMatt said there are a few threads on XDA dealing with this. Do a search and you'll find what you need. I also found this site useful "https://gitlab.com/Nanolx/NanoDroid/blob/master/README.md#installation-process"
It gives a lot of info on the install side, but also some on the after install. Once I have the time to give this a try I'll post my results.
Sent from my LG-H932 using Tapatalk
I hope for you this will be useful.
Im on Oreo V22j, with fully functional MicroG.
On the previously version V22h(?) I had MicroG only ever y second boot working.
I installed the ROM complete clean, delete all Google Apps, from ROM, patched the service.jar to support signature spoofing and push the apks witch I get from micro g site in /priv-app Folder.
Since it works perfectly.
The YouTube Vanced thread has a modified microG that works well along regular pre-installed GApps.
conbak49 said:
I'm on COSP with an H932 and am considering making the jump to microg once I have had the time to understand the process pretty well. As @ChazzMatt said there are a few threads on XDA dealing with this. Do a search and you'll find what you need. I also found this site useful "https://gitlab.com/Nanolx/NanoDroid/blob/master/README.md#installation-process"
Click to expand...
Click to collapse
That's actaully useful info. Thanks
Nemeziz 56th said:
Im on Oreo V22j, with fully functional MicroG.
On the previously version V22h(?) I had MicroG only ever y second boot working.
I installed the ROM complete clean, delete all Google Apps, from ROM, patched the service.jar to support signature spoofing and push the apks witch I get from micro g site in /priv-app Folder..
Click to expand...
Click to collapse
It has to be the most wicked thing I've read in a while.
You basically binned whole Gapps folder
I am probabaly doing terrible job searching the forum but couldn't find Oreo 22j I hope you just flash it after h and it's all good.
I still have doubts that somehow after removing whole Gapps there is some part of LG bloatware coded inside ROM rejoicefully sending data about mu phone usage.
I was going to go for your solution but this came to my mind.
Anyways @Nemeziz 56th can you please provide more details about the process? Where is it from?
Thanks
techski886 said:
I am probabaly doing terrible job searching the forum but couldn't find Oreo 22j
Click to expand...
Click to collapse
His EU H930 22j = US998 22h. You would be using US998 22h, unless Pie comes for US998 this week.
Different V30 variants are on slightly different Oreo firmware number/letter combinations. The latest Oreo US998 is 22h, while the last Oreo for EU H930 is 22j. (Yes, they have Pie 30b now, but let's keep the discussion to Oreo.) It doesn't mean they are more advanced than US998 (on Oreo) -- it's just H930 Oreo launched before North American variants got Oreo last year -- so they had a couple extra security update releases before US998 20a hit. While the numbering is slightly different, the features are the same.
The only V30 variant that is different at this point in time on Oreo firmware is the Canada H933. For some reason they never got the DTS 3D stereo framework everyone else got in the late 2018/early 2019 Oreo firmware updates.
Ended up without MicroG for now as I will try to install it on another device.
Thank you for your input all.
techski886 said:
That's actaully useful info. Thanks
It has to be the most wicked thing I've read in a while.
You basically binned whole Gapps folder
I am probabaly doing terrible job searching the forum but couldn't find Oreo 22j I hope you just flash it after h and it's all good.
I still have doubts that somehow after removing whole Gapps there is some part of LG bloatware coded inside ROM rejoicefully sending data about mu phone usage.
I was going to go for your solution but this came to my mind.
Anyways @Nemeziz 56th can you please provide more details about the process? Where is it from?
Thanks
Click to expand...
Click to collapse
My Problem was, I delete to much things, where I thought it was bloatware. At the end my Google Keep,QuickMemo Notes and some other stuff was not able to work.
It took me 2-4x of reflashes to find out that Google Chrome was the App which force close Google Keep, when I delete it(Only freezing it is safe)
I did a clean flash (Wiping everything in TWRP) then put the V22J which I get from here (https://forum.xda-developers.com/lg-v30/development/rom-fw-lg-v30-joan-h930-eu-21h-twrp-t3864728)
I root the device with magisk (it shouldn't be a problem to find the right zip.) and flash the nano patcher zip which patch the service.jar to support signature spoofing (https://downloads.nanolx.org/NanoDroid/Stable/)
Let it boot first time and then starting to remove bloatware with Solid Explorer. (Important to know not to delete the bloatware from the twrp recovery before the device did his first boot, because you will get System UI force close. It was a experience that I get.
I delete Google Play Market, Google GMS and the Play Record Service (which show you your achievement in games), YouTube nearly everything. I will attach some screenshots.
Then I freeze and delete LG Apps. I recommend to freeze the LDB apk not to remove because the system could start massive wakelock.(I get some on older version)
Then just put these all apks: https://microg.org/download.html in PRIV-APP and set the permission to 777
Boot to Recovery wipe cache.
And now I was able normal to set up my phone.
When you delete apps and you don't know are these apps important just serach for there name in Google.

Categories

Resources