Current ideas

[IlyaGulya]

Looks like Snet is actually Java class. It is downloaded from google servers in a compiled form. But if it runs in ART, I think we can hook into it.

First of all, I'm thinking about way to collect the same data which SafetyNet collects and SafetyNet Attestation result with this data to find out how Google decide to fail or not ctsProfile or basicIntegrity. It will also help to detect changes in future and react to them faster.

[xerta555]

Looks like Snet is actually Java class. It is downloaded from google servers in a compiled form. But if it runs in ART, I think we can hook into it.

About that, yeah it's about me just a question of time and researchs.

First of all, I'm thinking about way to collect the same data which SafetyNet collects and SafetyNet Attestation result with this data to find out how Google decide to fail or not ctsProfile or basicIntegrity. It will also help to detect changes in future and react to them faster.

As it's explained in the webpage u link on the README, there is a task who's managed on google's serverside, and of the little that i know about this task, it can make completly changing the result received on the user's phone by the SN app/API(s).

Globally i think that if we focus on the search for all possible results (in my opinion there are not a thousands and cents), i think we could go back on paper the different logics put in place for this system.

I don't have knowledges in JAVA, but i'm stay award of things created, maybe i could bring my efforts into a project, humbly..

[mofi345]

But, I think that's a problem with the API that Magisk uses for the Safetynet check, I am with a Motorola Z2 Play (albus) with the Resurrection Remix 8.1.0, stock system fingerprint (motorola/albus/albus:8.0.0/OPS27.76-12-25/26:user/release-keys) , and the Systemless xposed module and, the SafetyNet check return with the response is invalid I have a friend, that has a xiaomi redmi 5 with miui 9 stock and Magisk installed, the same issue as mine. Don't blame me, I'm a noob on Android developing world (and in general developing) so, if I said something wrong, tell me :D

[xerta555]

@mofi345 it happen because the API of the safetynet has been updated 1-2 weeks ago, Jhon have update the API on his git but havent got publish the Magisk Manager update yet. So we need to wait for the next version..

[mofi345]

@xerta555 So, if I want an instant fix, i have to build the magisksu and magisk manager by myself?

[xerta555]

So, if I want an instant fix, i have to build the magisksu and magisk manager by myself?

You must build Magisk Manager at least, but i'm not sure as Jhon have move his app as a component of Magisk now, idk if the Manager stay a main app that works with any Magisk version without causing issue(s).

You should wait that Jhon finish his major update.

[mofi345]

So, Jhon released Magisk v. 17 that fixed the no response error. I flash a clean version of the RR on my device, flashed the systemless xposed module and I can install and use apps like Netflix, but the safetynet check on magisk manager says that ctsProfile : false and basicIntegrity : false, so, now I guess, apps like Netflix work, now we have to find how to change this situation. I repeat, I'm a noob on this but, I want to help anyway.

[xerta555]

So, Jhon released Magisk v. 17 that fixed the no response error. I flash a clean version of the RR on my device, flashed the systemless xposed module and I can install and use apps like Netflix, but the safetynet check on magisk manager says that ctsProfile : false and basicIntegrity : false, so, now I guess, apps like Netflix work, now we have to find how to change this situation. I repeat, I'm a noob on this but, I want to help anyway.

Sorry for the late answer. Since the SN has been updated by Google, read updated docs: https://developer.android.com/training/safetynet/