Google and the developer of Magisk have participated in the most epic battle ever since Magisk came into existence. Google, on the other hand, is trying to get root and conversion through SafeNet; to another Magisk again Hiding Magisk, trying to hide the conversion.
So far this battle has been won by Magisk, but this seems to have changed in the latest versions of SafeNet. Now the program Checks bootloader level using Hardware, being a challenge to cheat the system.
It is difficult to hide the bootloader status
The biggest benefit of Magisk in relation to other similar solutions such as the Xposed Framework is that Magisk Hide, a Cheat securityNet to pass the test.
Various applications and games use the SafeNet API to check that the phone has been changed so that confidential request data is affected. It's very common in payment applications such as Google Play and in games like Pokémon Go, in this case that is used to stop players from looking.
So far Google has relied on software testing to perform these checks, making it possible for Magisk to submit false data as a result of the tests. This has recently changed to bootloader check It is done by looking at the key directly from Hardware.
So here, after years of bouncing around using Magisk, it seems that Google FINALLY has decided to "fix" SafetyNet to something useful, and that is to use special intelligence to verify device status (3 years after it was introduced to the Android platform!)
– John Wu (@topjohnwu) March 11, 2020
When SafetyNet detects that the bootloader is on, the test automatically fails in the most powerful test, A CTS profile game, although still able to pass basic integrity tests.
John Wu, a Magisk engineer, has been able to opt out of SafetyNet in the past, or this change has been a significant relief, or for him: perhaps the only way to detect a vulnerability in a TEE firmware is (Trusted management environment), a difficult thing and more than likely will be played out soon.
John Wu says that "the fun is over", although at present it seems that the change to SafetyNet is not applicable to all users. Yes, Magisk Hide still hides root itself, but not the bootloader state.
Track | XDA
