Related
Will the widevine update keep if I install a custom OS?
Phone came back today within the 5 day turn around advertized.
I will be flashing Lineage OS and don't want to be surprised the L1 is all gone. I could not find any clear answer.
Is the Widevine API in a separate chip?
Widevine L1 is in the DRM partition so it is unaffected by flashing or wiping.
Macusercom said:
Widevine L1 is in the DRM partition so it is unaffected by flashing or wiping.
Click to expand...
Click to collapse
I got this device yesterday, with stock ROM it has widevine l1,
flashed LOS, now it shows widevine l3.
why is that and how to fix this?
thanks in advance
Hello,
So the title saif it all... How can I secure my data after installing a custom rom (e.g after unlocking the bootloader, root the phone, (when I install my extendedui rom(really great rom by the way) I had to desable enforcing encryption, is that mean that my data in not encrypted by android right now?)
Any suggestions, informations, explanation would be appreciated.
Have a nice day
Don't expect securing your phone if you've unlocked your bootloader, rooted your phone and installed a custom ROM.
Unlocked bootloader means if you lose the device, someone can just flash it and use it as their own or they can reach all your data on the phone as it is unencrypted.
Rooted software means some apps might do shady stuff in the background, if you accidentally allow them.
Custom ROM means you have to trust the dev of the ROM, no one can guarantee the security of your device, which is CLEARLY stated on the thread of every ROM.
So, if you want security, encryption etc. you need stock firmware on the latest update and a locked bootloader. That way, at least if something happens, Xiaomi or Google could be held accountable.
marstonpear said:
Don't expect securing your phone if you've unlocked your bootloader, rooted your phone and installed a custom ROM.
Unlocked bootloader means if you lose the device, someone can just flash it and use it as their own or they can reach all your data on the phone as it is unencrypted.
Rooted software means some apps might do shady stuff in the background, if you accidentally allow them.
Custom ROM means you have to trust the dev of the ROM, no one can guarantee the security of your device, which is CLEARLY stated on the thread of every ROM.
So, if you want security, encryption etc. you need stock firmware on the latest update and a locked bootloader. That way, at least if something happens, Xiaomi or Google could be held accountable.
Click to expand...
Click to collapse
Thanks for your answer, Is there any trick/manœuvre I can do to encrypte my data at least?
marstonpear said:
Don't expect securing your phone if you've unlocked your bootloader, rooted your phone and installed a custom ROM.
Unlocked bootloader means if you lose the device, someone can just flash it and use it as their own or they can reach all your data on the phone as it is unencrypted.
Rooted software means some apps might do shady stuff in the background, if you accidentally allow them.
Custom ROM means you have to trust the dev of the ROM, no one can guarantee the security of your device, which is CLEARLY stated on the thread of every ROM.
So, if you want security, encryption etc. you need stock firmware on the latest update and a locked bootloader. That way, at least if something happens, Xiaomi or Google could be held accountable.
Click to expand...
Click to collapse
The fragment about encryption is incorrect, your data can be and IS encrypted if you choose to, on any custom ROM that supports encryption.
The truth is, you need to trust developers responsible for the code.
For that reason, with your personal sensitive data it is only reasonable to trust big projects, like official LineageOS builds.
general.nie7 said:
The fragment about encryption is incorrect, your data can be and IS encrypted if you choose to, on any custom ROM that supports encryption.
The truth is, you need to trust developers responsible for the code.
For that reason, with your personal sensitive data it is only reasonable to trust big projects, like official LineageOS builds.
Click to expand...
Click to collapse
Oops, my bad. Encryption is possible on custom ROMs but if someone stole your device, I believe it won't be to steal your data but rather to format and sell/use the device; with an unlocked bootloader that is quite easy to do. I also agree with the big projects part, but still, if anything happens to your device, you won't be able to hold anyone responsible for it. Cheers.
I have the HD1900 OnePlus 7T
Unlocked bootloader and Magisk
So i have Netflix installed. I go to magisk hide list and Netflix is not in the list of apps to hide!!!
Just wondering why I can't see the Netflix app in magisk hide??????
Thanks
wugga3 said:
I have the HD1900 OnePlus 7T
Unlocked bootloader and Magisk
So i have Netflix installed. I go to magisk hide list and Netflix is not in the list of apps to hide!!!
Just wondering why I can't see the Netflix app in magisk hide??????
Thanks
Click to expand...
Click to collapse
Shows up here just fine.
nagi_007pk said:
Shows up here just fine.
Click to expand...
Click to collapse
It don't show up in my Magisk Hide list no matter how many times I disable/enable or delete/clear cashe...
Press the magnifying glass in the botton right corner
and make sure show system apps in enabled as well as os apps. Maybe Netflix is installed as a system app on your phone.
nagi_007pk said:
Press the magnifying glass in the botton right cornerView attachment 5331917 and make sure show system apps in enabled as well as os apps. Maybe Netflix is installed as a system app on your phone.
Click to expand...
Click to collapse
Yes you are correct!!!!!! How awesome is that!!! I finally learned something today yay!!! It's their just like you said just like magic. Still not used to this device coming from many prior Samsung devices using Magisk. Your the best Thanks.
Thanks so very much for your help... I feel like an idiot after using Magisk For years and years on this device and many other Samsung devices without issue... On the other hand... I've never encountered this specific issue as everything's always functioned... Thanks for the education is appreciated greatly. I'm intrigued what else I can utilize our accomplish with this information. You're the best.
Don't know why I didn't know that by now lol...
Thanks for teaching me something new today. I'm greatful for you assistance. Cheers
Oh well was hoping hiding Netflix would may be fix my Widevine L3 and restore it back to L1. But, knew it wouldn't and it didn't but at least I now know and at least was able to finally figure out how to try. Thanks again
What oxygen os version are you running if I may ask? If you upgrade to Stock OOS11 you can get widevine L1 with unlocked bootloader and magisk installed. It also works with Amazon video and other encrypted video playback apps very nicely!
nagi_007pk said:
What oxygen os version are you running if I may ask? If you upgrade to Stock OOS11 you can get widevine L1 with unlocked bootloader and magisk installed. It also works with Amazon video and other encrypted video playback apps very nicely!
Click to expand...
Click to collapse
Thanks for letting me know cause I can't find a solid answer to my Widevine issue . Any trick to accomplishing widevine L1? Cause if their is any specific method to L1 then I haven't figured it out.... Thanks
wugga3 said:
Thanks for letting me know cause I can't find a solid answer to my Widevine issue . Any trick to accomplishing widevine L1? Cause if their is any specific method to L1 then I haven't figured it out.... Thanks
Click to expand...
Click to collapse
Upgrade to OOS 11. L1 will be completely fixed even with an unlocked bootloadee
Great to know thanks... But how does OOS11 performance? I'm hearing all kinds of problems...(?) that I'd rather not have since widevine is the only real problem (since I've had this device at it's release).
I've tried almost everything to fix this L3 issue and failed.... Plus, I'm stubborn so failure ain't an option even if failure is the ultimate solution LOL!
The biggest concern is the lack of a working TWRP for the 7T. My Samsung with TWRP was so fun to play with (back up, play with... break... restore... Breath again all good).
Thanks for the information cause it's finally nice to have a reliable source on the matter.
nagi_007pk said:
What oxygen os version are you running if I may ask? If you upgrade to Stock OOS11 you can get widevine L1 with unlocked bootloader and magisk installed. It also works with Amazon video and other encrypted video playback apps very nicely!
Click to expand...
Click to collapse
Well I uninstalled Netflix and did OOS 11.01.1 update...
Still Play Store device certified and Safetynet passed in Magisk Manager
Still L3 and no L1 so I don't know now...
So I can't yet figure this out...
Not sure if you can help get this back to L1 cause I'm don't know what else I'm missing unless it's hide the Magisk app (while Magisk hide is enabled) and/or hiding Netflix (now that I know how to)
No issue here though. Running the global 7T update with OOS 11.0.1.1. I have proper L1 support with an unlocked bootloader and Magisk. You could factory reset your phone and check that way. I did restore my phone completely after updating to Android 11
nagi_007pk said:
No issue here though. Running the global 7T update with OOS 11.0.1.1. I have proper L1 support with an unlocked bootloader and Magisk. You could factory reset your phone and check that way. I did restore my phone completely after updating to Android 11
Click to expand...
Click to collapse
Yikes
The reset is yes my complete last resort.
Cause, the OnePlus back up/restore will make a successful back up - but, when I try to transfer it to my computer it causes an error and quits. So the back file sizes are significantly different between the phone and the computer. Having said that, I believe I was successful to transfer the back up data to a USB storage. So, I'm hoping that I can restore from that after device reset.... Thanks
Hello!
I will receive a oneplus 9 pro next week and wonder if i shall root it or not. I want to use titanium backup and a few other apps that need root permission, but i also dont want to loose widevine level 1 for netflix and amazon video in hd, want to use my banking app and mcdonalds app.
i havent followed the magisk/root discussion for maybe a year or two (used a unrooted stock phone), so i am not up to date how things are at the moment.
just to be clear, please can someone answer the following questions:
1.) is unlocking bootloader (no root afterwards) enough to loose widevine level 1? can level 1 be gained again when bootloader is locked again or is lost permanent (like triggering knox with samsung).
2.) any problems with mcdonalds app and magisk? google pay?
after reading to the internet on the subject totday, i get the impression that rooting nowadays causes more problems thn benefits, but maybe i get a wrong impression.
flotsch1 said:
Hello!
I will receive a oneplus 9 pro next week and wonder if i shall root it or not. I want to use titanium backup and a few other apps that need root permission, but i also dont want to loose widevine level 1 for netflix and amazon video in hd, want to use my banking app and mcdonalds app.
i havent followed the magisk/root discussion for maybe a year or two (used a unrooted stock phone), so i am not up to date how things are at the moment.
just to be clear, please can someone answer the following questions:
1.) is unlocking bootloader (no root afterwards) enough to loose widevine level 1? can level 1 be gained again when bootloader is locked again or is lost permanent (like triggering knox with samsung).
2.) any problems with mcdonalds app and magisk? google pay?
after reading to the internet on the subject totday, i get the impression that rooting nowadays causes more problems thn benefits, but maybe i get a wrong impression.
Click to expand...
Click to collapse
Use the canary builds of Magisk, enable MagiskHide, and toggle the apps in question, and you're golden. Also, just to be sure, toggle it on for Google stuff like the Google app, Google Play Store, Google Play Services, Google Services Framework, Netflix, McDonald's, GPay, and any other banking or streaming subscription apps. Might want to have Magisk hide its self by changing the app name and signature as well.
GuyInDogSuit said:
Use the canary builds of Magisk, enable MagiskHide, and toggle the apps in question, and you're golden. Also, just to be sure, toggle it on for Google stuff like the Google app, Google Play Store, Google Play Services, Google Services Framework, Netflix, McDonald's, GPay, and any other banking or streaming subscription apps. Might want to have Magisk hide its self by changing the app name and signature as well.
Click to expand...
Click to collapse
thank you for the information.
so i will definitely not loose widevine l1 with unlocking bootloader and root?
to hide magisk itself (change name and signature), i just need to turn this option on in magisk and not need to do this in a manual way?
flotsch1 said:
thank you for the information.
so i will definitely not loose widevine l1 with unlocking bootloader and root?
to hide magisk itself (change name and signature), i just need to turn this option on in magisk and not need to do this in a manual way?
Click to expand...
Click to collapse
Correct, by default it will change to a "default" app icon and rename itself to "Settings" but you can easily still tell it from the device's own system Settings app.
one last question.
following this root instruction https://forum.xda-developers.com/t/guide-magisk-unlock-root-keep-root-oos-11-2-7-7.4252373/ , do i have to use the provided boot images? i feel safer to download the full ota from oneplus official site and extract payload.bin and then use payload dumper to get a boot.img.
flotsch1 said:
one last question.
following this root instruction https://forum.xda-developers.com/t/guide-magisk-unlock-root-keep-root-oos-11-2-7-7.4252373/ , do i have to use the provided boot images? i feel safer to download the full ota from oneplus official site and extract payload.bin and then use payload dumper to get a boot.img.
Click to expand...
Click to collapse
If you are leery of using someone else's boot.img, feel free to do that if you'd like. But regardless, be sure to boot the image, don't flash it. Booting it not only gives you the temporary root access to install Magisk yourself, but also ensures that the patched boot.img is actually valid.
v23 has a fix for SafetyNet API. It looks like that supersedes anything from the last canary/debug builds, so it's probably safe to stick with that. Everything else is the same, though.
GuyInDogSuit said:
v23 has a fix for SafetyNet API. It looks like that supersedes anything from the last canary/debug builds, so it's probably safe to stick with that. Everything else is the same, though.
Click to expand...
Click to collapse
V23?
flotsch1 said:
V23?
Click to expand...
Click to collapse
Latest stable Magisk build. I'm saying you won't need to mess with canary/debug.
When you turn on hide then hide the app the in the settings then your allowed to do anything you like but also hide it in the menu of magisk then your all done don't flash to much crap and magisk hide module is not really finished yet for this device good luck
I rooted it the second i got it
And don't use canary builds of magisk only if you want to run your phone very unstable i recommend the stable version
thanks alot for the information.
i still hazzle to root. i had a oneplus 3 2 years ago and had magisk root/custom rom/twrp, but i also had issues on regular basis and spent alot of time on xda and with flashing. dont know if i want this again or just a phone that works.
and just to be sure:
in case i loose my widevine level 1 because of root or bootloader unlock: will it come back when locking bootloader again and/or unroot. or will it be level 3 forever?
Wildvine L1 is not always retained when unlocking the bootloader. If I unlock mine, I go to L3 every single time, but when I lock it back, I go back to L1. I've tested this 3 times and it happened all 3 times.
flotsch1 said:
thanks alot for the information.
i still hazzle to root. i had a oneplus 3 2 years ago and had magisk root/custom rom/twrp, but i also had issues on regular basis and spent alot of time on xda and with flashing. dont know if i want this again or just a phone that works.
and just to be sure:
in case i loose my widevine level 1 because of root or bootloader unlock: will it come back when locking bootloader again and/or unroot. or will it be level 3 forever?
Click to expand...
Click to collapse
Well to be honest I never had that problem and i need to have my binance hidden as well and everything works well but with some games like slime hunter i really need to hide magisk it self too from the settings but when you do they everything will be working okay. And so far I have seen with magisk hide module what you can download is that there are no keys yet for using in op9p (could be changed didn't check it for a while now)
Hi guys,
Just made a breakthrough discovery!
To gain Widevine:
Crossflash EU firmware to your device with craznazn's MSM here https://androidfilehost.com/?fid=14943124697586337355, unlock bootloader but DO NOT update yet! Then, you want to flash magisk, reboot and turn on Zygisk and do whatever you need to pass SafetyNet.
Afterwards, you can upgrade, it should be a FULL system upgrade, not an incremental. It should detect root and download ~3000 MB. Install the update and reboot, you should get L1 now!
razercortex said:
Hi guys,
Just made a breakthrough discovery!
To gain Widevine:
Crossflash EU firmware to your device with craznazn's MSM here https://androidfilehost.com/?fid=14943124697586337355, unlock bootloader but DO NOT update yet! Then, you want to flash magisk, reboot and turn on Zygisk and do whatever you need to pass SafetyNet.
Afterwards, you can upgrade, it should be a FULL system upgrade, not an incremental. It should detect root and download ~3000 MB. Install the update and reboot, you should get L1 now!
Click to expand...
Click to collapse
Nice find! Too bad I used the Indian MSM on my T-Mobile variant so I can't cross-flash anymore.
It also seems to survive MSM flashing, updates, custom ROMs, and bootloader locking/relocking
razercortex said:
It also seems to survive MSM flashing, updates, custom ROMs, and bootloader locking/relocking
Click to expand...
Click to collapse
Do you think it'll work for me when though I use the OP9 Indian MSM?
Not sure. You'd have to unlock bootloader first, then do a full system upgrade to check.
razercortex said:
Not sure. You'd have to unlock bootloader first, then do a full system upgrade to check
Click to expand...
Click to collapse
I'm already unlocked. It doesn't really matter though since I haven't given a yit about L1 since, ever. Just didn't know if you knew or not.
Thanks! Worked!
razercortex said:
Hi guys,
Just made a breakthrough discovery!
To gain Widevine:
Crossflash EU firmware to your device with craznazn's MSM here https://androidfilehost.com/?fid=14943124697586337355, unlock bootloader but DO NOT update yet! Then, you want to flash magisk, reboot and turn on Zygisk and do whatever you need to pass SafetyNet.
Afterwards, you can upgrade, it should be a FULL system upgrade, not an incremental. It should detect root and download ~3000 MB. Install the update and reboot, you should get L1 now!
Click to expand...
Click to collapse
Worked!
Thanks
I didn't use your method to get to c.63 (a12) for my TMobile OnePlus 9 pro. i dont know i can back to tmobile stock. Now I currently rooted and using magisk. All video apps work but I can't get L1 widedine. Is there another way?
Thanks for this. I have a 9 pro coming.
Edited
Thanks
I've had success using this method to keep L1 up to A12, but any attempt to upgrade to A13 downgrades Widevine to L3.
What is l1? What is widevine?
immortalwon said:
What is l1? What is widevine?
Click to expand...
Click to collapse
It is the security level of the firmware. It effects the certain apps like banking apps etc...
immortalwon said:
What is l1? What is widevine?
Click to expand...
Click to collapse
L1 is a drm (digital rights content management) state. L1 means the content is being digitally decoded or decrypted in a trusted environment. (I believe some of these are done in hardware with hardware verification only). It is the highest protection level.
In short, some apps will not work or will not play HD content without L1 state of drm. For us, when we lose L1, we go to L3. This could mean apps won't work at all, or they could be reduced in functionality.
Netflix for example, with L3, is limited to 480p video (however some bypass this with casting and get to 720p resolution).
Typically, when you unlock the bootloader of a phone, it will drop drm to L3 as it's considered a not-trusted environment.
This behavior is mixed by device, firmware versions and sometimes region (I have read some devices have shipped without Widevine keys to certain areas). This is bypass-able in some devices. For example, my 9P on oos11 is L1 with bootloader unlocked and rooted, using the standard magisk modules for Safetynet and clearing system cache.
Some phones will not regain L1 with unlocked bootloader (and maybe some versions of firmware also). They will be stuck with L3 Widevine until they relock the bootloader or unroot. And some firmwares are broken and will not have L1 because they implemented drm wrong.
On my 10T, netflix would not launch with unlocked bootloader. That may have been resolved by now but I was limited to L3 in drm checker (play store app) anyway.
For my 9P, I lost L1 (to L3) when I flashed Eu conversion to 11.2.2.2 - someone said that was an issue with early OnePlus firmwares where they implemented drm wrong or the key was problematic somehow. Whether that's true or not, I regained L1 when I temporarily unrooted and took the OTA.
This is likely going to be an increasing problem going forward as more devices go to hardware (only) attestation for everything. I suspect we will eventually see a magisk method of patching these apps and running them as modded apks. There used to be some patched netflix apks around. I think forced updates and signature checking made these obsolete. We may eventually see someone modify the individual apks, perhaps injecting a software mechanism for drm. Like taking the entire process of decoding, from an older device, into the apk itself. That might be overkill for the situation but eventually these bypasses we have currently, will not work anymore. We will be relying on some form of device spoofing, patching apks, standalone or redirected drm decoding, or a combination of all of those things.
That's assuming someone with that much skill is interested in doing all or any of that work.
Perhaps we will reach a point where unlocked bootloader or rooting breaks regular use so much that it's no longer worth the headache. It seems that's what they're going for. 'They' being app developers and phone manufacturers.
Here's a link to drm checker (DRM info) in play store if you'd like to find your current state: https://play.google.com/store/apps/details?id=com.androidfung.drminfo
Appreciative said:
L1 is a drm (digital rights content management) state. L1 means the content is being digitally decoded or decrypted in a trusted environment. (I believe some of these are done in hardware with hardware verification only). It is the highest protection level.
In short, some apps will not work or will not play HD content without L1 state of drm. For us, when we lose L1, we go to L3. This could mean apps won't work at all, or they could be reduced in functionality.
Netflix for example, with L3, is limited to 480p video (however some bypass this with casting and get to 720p resolution).
Typically, when you unlock the bootloader of a phone, it will drop drm to L3 as it's considered a not-trusted environment.
This behavior is mixed by device, firmware versions and sometimes region (I have read some devices have shipped without Widevine keys to certain areas). This is bypass-able in some devices. For example, my 9P on oos11 is L1 with bootloader unlocked and rooted, using the standard magisk modules for Safetynet and clearing system cache.
Some phones will not regain L1 with unlocked bootloader (and maybe some versions of firmware also). They will be stuck with L3 Widevine until they relock the bootloader or unroot. And some firmwares are broken and will not have L1 because they implemented drm wrong.
On my 10T, netflix would not launch with unlocked bootloader. That may have been resolved by now but I was limited to L3 in drm checker (play store app) anyway.
For my 9P, I lost L1 (to L3) when I flashed Eu conversion to 11.2.2.2 - someone said that was an issue with early OnePlus firmwares where they implemented drm wrong or the key was problematic somehow. Whether that's true or not, I regained L1 when I temporarily unrooted and took the OTA.
This is likely going to be an increasing problem going forward as more devices go to hardware (only) attestation for everything. I suspect we will eventually see a magisk method of patching these apps and running them as modded apks. There used to be some patched netflix apks around. I think forced updates and signature checking made these obsolete. We may eventually see someone modify the individual apks, perhaps injecting a software mechanism for drm. Like taking the entire process of decoding, from an older device, into the apk itself. That might be overkill for the situation but eventually these bypasses we have currently, will not work anymore. We will be relying on some form of device spoofing, patching apks, standalone or redirected drm decoding, or a combination of all of those things.
That's assuming someone with that much skill is interested in doing all or any of that work.
Perhaps we will reach a point where unlocked bootloader or rooting breaks regular use so much that it's no longer worth the headache. It seems that's what they're going for. 'They' being app developers and phone manufacturers.
Here's a link to drm checker (DRM info) in play store if you'd like to find your current state: https://play.google.com/store/apps/details?id=com.androidfung.drminfo
Click to expand...
Click to collapse
Excellent summary of Widevine! I've tested extensively using every method I could find on XDA, and I've come to the conclusion that it isn't possible to attain L1 status in A13 with an unlocked bootloader on my OP 9 Pro.
Reznor7 said:
Excellent summary of Widevine! I've tested extensively using every method I could find on XDA, and I've come to the conclusion that it isn't possible to attain L1 status in A13 with an unlocked bootloader on my OP 9 Pro.
Click to expand...
Click to collapse
Have you surveyed others on a13 to see their Widevine state? I have heard some users on custom roms (In crDroid group) using 13, claiming they're L1. I haven't verified that first hand, just saw it in threads and telegram groups.
If it's true that I can't retain or regain L1 in regular stock oos13, I will never make the move to 13
1. https://github.com/Displax/safetynet-fix/releases/tag/v2.3.1-MOD_2.0
2. https://github.com/LSPosed/LSPosed.github.io/releases/tag/shamiko-126
3. In Magisk, hide Magisk, enable Zygisk, Configure DenyList (make sure all Google apps and Netflix are selected) and DO NOT enforce DenyList (for Shamiko to work). The Mount Namespace Mode should be Isolated Namespace.
4. Google Play Services, Google Play Store, and Netflix, clear storage. Restart your phone and give it some time. You should be able to search and find Netflix in Google Play Store (may need to try few times to force Google to check your phone), the Netflix should pass L1 too.
5. DO NOT use MagiskHide Props Config, it's not working at all.
yanggame said:
1. https://github.com/Displax/safetynet-fix/releases/tag/v2.3.1-MOD_2.0
2. https://github.com/LSPosed/LSPosed.github.io/releases/tag/shamiko-126
3. In Magisk, hide Magisk, enable Zygisk, Configure DenyList (make sure all Google apps and Netflix are selected) and DO NOT enforce DenyList (for Shamiko to work). The Mount Namespace Mode should be Isolated Namespace.
4. Google Play Services, Google Play Store, and Netflix, clear storage. Restart your phone and give it some time. You should be able to search and find Netflix in Google Play Store (may need to try few times to force Google to check your phone), the Netflix should pass L1 too.
5. DO NOT use MagiskHide Props Config, it's not working at all.
Click to expand...
Click to collapse
I'm on stock A13 unlocked and rooted with Magisk. I did all of this exactly as listed and am still stuck at L3.
Reznor7 said:
I'm on stock A13 unlocked and rooted with Magisk. I did all of this exactly as listed and am still stuck at L3.
Click to expand...
Click to collapse
You can try to reset you phone and finish all steps without login your account first. See if there is any difference. But it's probably will not work.
The best solution is to go back to stock OOS11 and flash Omega or Arter97 kernel since the leak is probably kernel side and only custom kernels can hide it.
yanggame said:
You can try to reset you phone and finish all steps without login your account first. See if there is any difference. But it's probably will not work.
The best solution is to go back to stock OOS11 and flash Omega or Arter97 kernel since the leak is probably kernel side and only custom kernels can hide it.
Click to expand...
Click to collapse
I've done enough flashing for a while. I'll leave it to someone else to try.
I got L1 with unlocked bootloader and Magisk.
I have LE2110. I used MSM tool (Global) to get back to OOS 11. It locked the bootloader; it always does. So I set up the phone offline (without connecting to WiFi or Mobile Data). Then I upgraded to OOS 11.2.10.10 version through local upgrade. Then opened Developer Options for OEM Unlocking. The option was greyed out and it asked to connect to internet. So I connected my WiFi for a minute or two until that OEM Unlocking was available. I enabled it, and disconnected WiFI. I DID NOT login to my Google account or opened Play Store. I rebooted to fastboot, and unlocked bootloader. Then rebooted. Then did the initial setup again (without connecting to WiFi or Mobile Data). Then I turned off and got the boot.img through MSM tool's readback option. (I was on slot_b so I got boot_b from MSM). Patched this boot.img with Magisk. Booted it temporarily and then through Magisk app, gainded permanent root by Direct Install. Rebooted. Enabled Zygisk from Magisk and Enforce Denylist, and rebooted again. Installed Universal SafetyNet Fix through Magisk and rebooted again. Opened Magisk and hid the Magisk app (just named it Settings; it installed and then showed root lost, but I just closed the app, and reopened new hidden Magisk again). Rebooted. Then I went ahead and connected to WiFi, logged in to my Google account and stuff. Checked from YASNAC and DRM Info and found that Safety Net passed as well as got L1.
I did not put any Google related app to Denylist.