Hi, I had unlocked the bootloader of my Poco F1 and had been using custom ROMs but since they had bugs, I went back to MIUI through fastboot method but didn’t let its bootloader get locked again. My device is having neither ROOT, nor TWRP.
And I also haven’t updated the MIUI to the latest version. (Because the latest version drains battery)
But the question is, why does my phone not pass SafetyNet check and not having play store device certification? Is it because the bootloader is unlocked? And is it safe to continue using this?
You device is uncertified most probably because it does not pass SafetyNet either ctsProfile or both. If your device is already UB just flash magisk use magisk module to fix that. I got same problem on unlocked poco running latest miui, I had to use magisk to solve it to use any banking app.
1) Setup your fingerprint
2) Install Busybox for Android NDK on magisk module
3) Install MagiskHide Props Coonfig on magisk module
4) Run terminal emulator android and type the command
su (to grant terminal emulator access to root)
props
5) Select number 1 to edit device fingerprint
6) Then enter f to pick a certified fingerprint
7) Choose your device by selecting Xiaomi and Pocophone on next selection
8) Once done reboot, you will have your SafetyNet passed
didn’t let its bootloader get locked again
Click to expand...
Click to collapse
That is the problem. Phone with unlocked bootloader will always fail the checks.
Install magisk.
MFAR198 said:
You device is uncertified most probably because it does not pass SafetyNet either ctsProfile or both. If your device is already UB just flash magisk use magisk module to fix that. I got same problem on unlocked poco running latest miui, I had to use magisk to solve it to use any banking app.
1) Setup your fingerprint
2) Install Busybox for Android NDK on magisk module
3) Install MagiskHide Props Coonfig on magisk module
4) Run terminal emulator android and type the command
su (to grant terminal emulator access to root)
props
5) Select number 1 to edit device fingerprint
6) Then enter f to pick a certified fingerprint
7) Choose your device by selecting Xiaomi and Pocophone on next selection
8) Once done reboot, you will have your SafetyNet passed
Click to expand...
Click to collapse
Got it.
Ya_SG said:
Got it.
Click to expand...
Click to collapse
To specifically know your problem, it is ctsProfile that's failed and this is due to the Device's fingerprint is not matched to your device (commonly happening to Custom Roms and MIUI Stock Rom with Magisk installed) that's why it MagiskHide Props is effective to this problem. It uses the latest and updated ro.device.fingerprint to perfectly matches the device (Pocophone F1) you are using.
Next time you occur this problem, MagiskHide Props to the rescue.
Related
I tested it and this works:
Bought N950F DS.
Instaled TWRP as in this guide:
https://forum.xda-developers.com/showpost.php?p=73817280&postcount=3
Part 3 - Magisk.
I did not flash custom rom, i wanted to stay on stock. (no system format)
Flashed Magisk 14.5
https://forum.xda-developers.com/apps/magisk/beta-magisk-v13-0-0980cb6-t3618589
Boot into system, configure in Magisk
install xposed (api 25),
finally you will have after few reboots xposed v89.
(Install some modules, but remember to backup in TWRP before every module installation.
For me, some of them caused TouchWiz to not show on start, had to do few reboots (bixby + power + volume down long press).
For example do not install firefdskit.
GravityBox is working fine for me now.
Also Kmod for whatsapp.)
In this state Android Pay wont work.
To get it working there is currently only one option i know:
Install this:
RootSwitch 1-3-3-16
https://www.asus.com/zentalk/tw/for...5MjEyfDVlYzZhYzljfDE1MTM3NDk3NzN8MHwxNzM1NDI=
After installing DO NOT TOUCH TOP ROOT SECTION.
Only use xposed section:
Switch xposed to off, soft reboot, install Android Pay, add card.
Whenever you need to pay in shop you have to do it (turn xposed off), later you can switch on, soft reboot and use modules.
Waiting for better way....but everyone says that Android Pay will never work with xposed so this is currently only option for me since phone without xposed is unusable.
You can also just install Xposed with magisk, and then you can enable/disable the xposed module whenever you need safetynet
Interceptor777 said:
You can also just install Xposed with magisk, and then you can enable/disable the xposed module whenever you need safetynet
Click to expand...
Click to collapse
in xposed settings?
I did that but SN wont allow for that, fail.
xtam said:
in xposed settings?
I did that but SN wont allow for that, fail.
Click to expand...
Click to collapse
No, you disable the Xposed module in magisk. That basically.uninstalls Xposed on next boot. And you can re-enable it.
Interceptor777 said:
You can also just install Xposed with magisk, and then you can enable/disable the xposed module whenever you need safetynet
Click to expand...
Click to collapse
Interceptor777 said:
No, you disable the Xposed module in magisk. That basically.uninstalls Xposed on next boot. And you can re-enable it.
Click to expand...
Click to collapse
no, in magisk 14.5 i have few modules installed, but there is no xposed, when i was installing xposed magisk told me to download xpsed apk installer, so xposed is separated, not as uncheckable module.
Hi all?
Can someone confirm that we can be on stock rom while using magisk and twrp?
I mean replace stock recvery by twrp, root with magisk and continue to use stock rom instead of flashing custom rom.
I m on iron man rom (custom) wich is very nice. I want to try the lastest samsug rom (lastest firmware BQKG) with twrp, magisk and xposed?
Do you think it s possible without any issue like popup error windows or other problems?
Thank for your help
What cpu?
Does this work for snapdragon orrr...?
@RyleyDyck
RyleyDyck said:
Does this work for snapdragon orrr...?
Click to expand...
Click to collapse
Depends.
Definitely check the Snapdragon root section and check your Bootloader version, how to is described in the SamFail thread.
@jkr192
jkr192 said:
Hi all?
Can someone confirm that we can be on stock rom while using magisk and twrp?
I mean replace stock recvery by twrp, root with magisk and continue to use stock rom instead of flashing custom rom.
I m on iron man rom (custom) wich is very nice. I want to try the lastest samsug rom (lastest firmware BQKG) with twrp, magisk and xposed?
Do you think it s possible without any issue like popup error windows or other problems?
Thank for your help
Click to expand...
Click to collapse
You could, yes. There's no rule to must have a custom rom in order to use Magisk/ have root. Just be sure to check the "How-To root" thread for simple instructions.
@xtam
xtam said:
no, in magisk 14.5 i have few modules installed, but there is no xposed, when i was installing xposed magisk told me to download xpsed apk installer, so xposed is separated, not as uncheckable module.
Click to expand...
Click to collapse
Not sure how that is, but you installed Magisk first and then Xposed with Magisk.
It's by that definition a Module of Magisk, which you can just disable inside Magisk regardless what Xposed's actual status is (ON or OFF).
No need to worry, just toggle it OFF inside Magisk. Your Xposed apps may FC, but that's the tradeoff for being able to use SafetyNet at will.
I just noticed that my kenzo bypasses safetynet on lineage os 15.1 20180323 build by lokmansiu. I can install Netflix from playstore, run super Mario run and pokemon go without any problems, also tested on safetynet test app. But I cant understand how is this possible provided I didnt even install magisk.
though I have not rooted the rom,
my bootloader is locked(used edl mode to flash twrp and then the rom)
can anyone plz tell if this is even normal??
@[email protected] said:
I just noticed that my kenzo bypasses safetynet on lineage os 15.1 20180323 build by lokmansiu. I can install Netflix from playstore, run super Mario run and pokemon go without any problems, also tested on safetynet test app. But I cant understand how is this possible provided I didnt even install magisk.
though I have not rooted the rom,
my bootloader is locked(used edl mode to flash twrp and then the rom)
can anyone plz tell if this is even normal??
Click to expand...
Click to collapse
No root = no problem.
You only fail SafetyNet if you use SuperSU to root your phone or forget to use Magisk Hide when rooting using Magisk.
SafetyNet also fails if you use Xposed Framework
Noter2017 said:
No root = no problem.
You only fail SafetyNet if you use SuperSU to root your phone or forget to use Magisk Hide when rooting using Magisk.
SafetyNet also fails if you use Xposed Framework
Click to expand...
Click to collapse
But i always use custom ROMs without root and still the safetynet test still always failed
The only difference between this and previous scenario is that my bootloader is locked and the selinux in this ROM is hopefully enforcing...are they the reason?
how did you install twrp in edl mode with bootloader locked?
arnabbandopadhyay said:
how did you install twrp in edl mode with bootloader locked?
Click to expand...
Click to collapse
Follow the instruction from this video:
https://www.youtube.com/watch?v=xExKvog5RP4
Tip: You can install twrp version of your choice. Just download twrp of your choice and rename it to recovery.img and place it in TWRP_ZCX/images folder (delete existing recovery.img file inside the image folder).
This method doesnot unlock the bootloader.
Nabin Pokhrel said:
Follow the instruction from this video:
Tip: You can install twrp version of your choice. Just download twrp of your choice and rename it to recovery.img and place it in TWRP_ZCX/images folder (delete existing recovery.img file inside the image folder).
This method doesnot unlock the bootloader.
Click to expand...
Click to collapse
I don't know why but it didn't work for me. Still uncertified.
I recommend you flash Magisk to enable root access. Then use it with its "hide detection" feature (it is the default setting). It will mask your root access and unlocked bootloader from SafetyNet detection. Have a try.
@[email protected] said:
I just noticed that my kenzo bypasses safetynet on lineage os 15.1 20180323 build by lokmansiu. I can install Netflix from playstore, run super Mario run and pokemon go without any problems, also tested on safetynet test app. But I cant understand how is this possible provided I didnt even install magisk.
though I have not rooted the rom,
my bootloader is locked(used edl mode to flash twrp and then the rom)
can anyone plz tell if this is even normal??
Click to expand...
Click to collapse
Because selinux is finally set as enforcing. Probably next updates of other roms will be enforcing too
arnabbandopadhyay said:
I don't know why but it didn't work for me. Still uncertified.
Click to expand...
Click to collapse
Because new build comes with selinux = enforcing
That means you are good to go
If that is permissive then you'll get error in bypassing safety net without magisk.
May I ask if use this method and later on want to revert back to a completely stock Miui ROM how do I do that on my kenzo device. Do I just use the mi flash tool and flash the original stock ROM back?
Hello all!
Code:
Standard disclaimer, don't blame me if your house catches fire, you're choosing to mod your device.
Device must (obviously) be bootloader-unlocked.
Steps (do them in order):
Magisk 19.3
Download magisk and flash in TWRP, then reboot.
riru-core 19.5
Download riru-core and either flash from Magisk Manager or flash in recovery, and then reboot again.
EdXposed 0.4.6.0 and EdXposed Manager
This version of EdXposed is the only one that supports Android Q, even the beta doesn't yet. So you have to use this specific version. Install the manager apk, then flash the zip in either magisk or TWRP. Reboot to apply changes.
Now you can use any xposed module that you wish.
https://forum.xda-developers.com/Mi-9/help/edxposed-xiaomi-eu-9-8-29-android-q-t3963437
safety net passing?
gryffynmp said:
Hello all!
Device must (obviously) be bootloader-unlocked.
Steps (do them in order):
Magisk 19.3
Download magisk and flash in TWRP, then reboot.
riru-core 19.5
Download riru-core and either flash from Magisk Manager or flash in recovery, and then reboot again.
EdXposed 0.4.6.0 and EdXposed Manager
This version of EdXposed is the only one that supports Android Q, even the beta doesn't yet. So you have to use this specific version. Install the manager apk, then flash the zip in either magisk or TWRP. Reboot to apply changes.
Now you can use any xposed module that you wish.
Click to expand...
Click to collapse
Why magisk 19 3? 19.4 not working?
smohanv said:
safety net passing?
Click to expand...
Click to collapse
SafetyPatch-v3.zip, it's a magisk module.
g_seva said:
SafetyPatch-v3.zip, it's a magisk module.
Click to expand...
Click to collapse
Hi, Thank you so much.
I was trying MagiskHide Prop (https://forum.xda-developers.com/apps/magisk/module-magiskhide-props-config-t3789228) and failed flashing on my Android Q (Xiaomi Mi 9, MIUI 11 running). I flashed the patch you shared here. I flashed in Magisk and it passed safety net (CTS Profile pass).
I am now able to use Google Pay.
After clean flashing my ROM today I just can not get cts check-in Magisk to pass. Tried different ROMs (Xiaomi.eu, crDroid etc), Magisk Canary, Magisk Stable, manually selected Poco fingerprint with MagiskHide Props Config
Any ideas?
Currently on Xiaomi.eu 11.0.6 with the stock kernel
dustojnikhummer said:
After clean flashing my ROM today I just can not get cts check-in Magisk to pass. Tried different ROMs (Xiaomi.eu, crDroid etc), Magisk Canary, Magisk Stable, manually selected Poco fingerprint with MagiskHide Props Config
Any ideas?
Currently on Xiaomi.eu 11.0.6 with the stock kernel
Click to expand...
Click to collapse
Yep having the same problem....... don't know what is going on........
Yep having the same problem
Users who have not even unlocked bootloader ever will also fail safety net test
As this is an issue from Google and we all are waiting for a fix from their side
I tried this from other post and it worked. running miui 11.0.6. with lawrun kernel, be magisk hide off, selinux permissive and usb debugging on.
1. From your magisk, install these 2 modules: Riru - Core, and Riru - EdXposed (Sandbox or Yahfa is okay]
2. Reboot your device to activate both modules.
3. Install Xposed Installer APK by DVDandroid.
4. Reboot to activate the Xposed Installer app
5. Inside Xposed Installer app, go to downloads and install the HiddenCore Module.
6. Reboot and go back to Magisk and test the SafetyNet.
How can I bypass this?
I would recommend to flash a custom ROM and flash Magisk, then enable Magisk's hide feature to pass SafetyNet certification again.
Not sure if Magisk can also be flashed on top of stock MIUI, maybe some expert can answer this.