Danny Lin
Danny Lin
Seems like a good idea then, thanks for checking. Ideally we'd recalculate existing results to reflect this change as results.json contains all the data needed to do that, but it's...
Apps aren't normally supposed to be able to read cmdline, so why not `chmod 640 /proc/cmdline` for permissive users?
> > Apps aren't normally supposed to be able to read cmdline, so why not `chmod 640 /proc/cmdline` for permissive users? > > Both are OK. Which do you think...
Please get logs from a computer by running `adb logcat > issue.log` and uploading the file here. Personal/private information may be present in the log, so feel free to redact...
Nice solution, thanks for looking into this. Have you noticed any features acting up with the old fingerprint? Ideally, I think this should be scoped to Play Integrity code by...
For example, the existing attestation hook could probably be used as a begin or end hook, depending on when Play Integrity calls it. We'd have to find another hook that...
Random thought: maybe the "delete key" method on the existing security provider could serve as an end hook. GMS generates a new keypair for each attestation so it probably deletes...
As I explained at the beginning of this thread, I don't plan to merge this solution because it can cause issues like devices showing up as "Nexus 6P" and some...
I did try this suggestion from @Displax though: > @kdrag0n Some theoretical thought... Can we simulate device with broken keystore (like some zenfone, oneplus models)? Reported that they pass STRONG_INTEGRITY...
I did actually look at this briefly in July but I was passing Play Integrity (excl. strong, of course) out-of-the-box with the last stable version of the module, so I...