PSA: FYI Android users, Bootloader unlock will cause SafetyNet to fail.

Skripka

[H]F Junkie
Joined
Feb 5, 2012
Messages
10,792
For you all out there who like to mess with your phones...Google has changed SafetyNet. Now simply unlocking your bootloader is enough to cause failure to validate your device. This results in breakage of:

-Android Pay, ofc.
-Games like PokemonGo that use SafetyNet.
-Your corporate email account, if they use SafetyNet.
-SnapChat too evidently.

Send all middle-finger-based gestures to Google.
 
Last edited:

CEpeep

Supreme [H]ardness
Joined
Oct 23, 2004
Messages
6,061
Surprised it took so long for Google to do this. If your bootloader is unlocked, SafetyNet can be compromised with relative ease. If Google is serious about eliminating exploits that silently unlock the loader and then burrow into the filesystem, this is a natural step. It's a bummer that it makes it so difficult for developers, but if you have an unlocked bootloader anyway, you should be able to build your own ROM with custom SafetyNet.

Really the worst loss here is that you won't be able to use Android Pay on your development device anymore, which sucks for anyone using their dev phone as a daily driver.
 

Bandalo

2[H]4U
Joined
Dec 15, 2010
Messages
2,660
Do you want security or do you want usability/flexibility? Regardless of platform, system or OS, you can't have both.
 

Vermillion

Supreme [H]ardness
Joined
Apr 5, 2007
Messages
4,183
I don't get why this is a surprise to anybody. We knew this was coming. Hell Chainfire even said as much when he released suhide. Hiding root: a losing game - rant du jour - Post #2

Bottom line is the writing has been on the wall for awhile. Every new Android version makes it harder to root. OEMs are locking down hard. This was the only logical conclusion and honestly I don't really give a shit.

That said there still is a chance this is just a bug. Some of the new comments on the reddit thread said they waited, rebooted their device, and everything was back to normal.
 

Skripka

[H]F Junkie
Joined
Feb 5, 2012
Messages
10,792
Surprised it took so long for Google to do this. If your bootloader is unlocked, SafetyNet can be compromised with relative ease. If Google is serious about eliminating exploits that silently unlock the loader and then burrow into the filesystem, this is a natural step. It's a bummer that it makes it so difficult for developers, but if you have an unlocked bootloader anyway, you should be able to build your own ROM with custom SafetyNet.

Really the worst loss here is that you won't be able to use Android Pay on your development device anymore, which sucks for anyone using their dev phone as a daily driver.
Actually no...the worst loss is your ability to access your corporate email. As said in OP.
 

CEpeep

Supreme [H]ardness
Joined
Oct 23, 2004
Messages
6,061
Actually no...the worst loss is your ability to access your corporate email. As said in OP.
Roll your own ROM and you can get around it. The only restriction you will not be able to get around at this time is the loss of Android Pay since it cannot be used without a Google-signed SafetyNet.
 
Top