Let's compare hashes for apps not in AppVerifier's database!

Novalissoide

gamma7 If you've got the time, could you add the source of the installs?

gamma7

Novalissoide all apps are from their Github repos unless otherwise specified except for Photomath which is from Google Play Store

Novalissoide

NoahRaketic
Apparently this is planned for when Accrescent comes out of current development phases.
https://github.com/soupslurpr/AppVerifier/issues/229#issuecomment-3998309978

GraphPaper

Metrolist (github)
com.metrolist.music
E3:2C:4F:2E:FD:7E:E9:54:8F:AE:E2:2E:45:A6:04:25:F7:72:8A:55:A6:10:FD:5E:8A:B9:36:4F:74:B7:BC:C9

vont

Please excuse my igorance.

Let me start by saying I want to be an active Beta/Alpha tester to help pitch in.

I downloaded Element Classic so I could join in the chats. It's not in App Verifier. I got it from github.

1.) Can someone verify this code?
2.) Where do you find these particular codes? I know somewhat of 256 hashes but those are a completely different format.

Element code:
im.vector.app
F3:FF:38:D2:E5:A6:38:84:86:4A:4E:0D:45:C5:3B:19:8E:7E:39:C0:50:5B:D9:63:F5:55:D6:53:2D:EA:BF:5F

Novalissoide

vont someone verify this code?

The hash you posted corresponds with mine.

vont

Let me rephrase.

The app verifier shows:
im.vector.app
F3:FF:38:D2:E5:A6:38:84:86:4A:4E:0D:45:C5:3B:19:8E:7E:39:C0:50:5B:D9:63:F5:55:D6:53:2D:EA:BF:5F

Github shows this:
sha256:812a186999b0cefb05ce195cdc21276191cf6a1a1c03dd734a4c5847f16a0c9c

These are two different formats. Is there someway to extract what the app verifier is showing from the 256 Hash.

I have spent hours trying to figure this stuff out and I'm burning out.

It's like Linux, it's 2026 and it still sucks other than basic need. Which is why I have to keep windows 11 around for certain software.

I am about ready to give up on open source apps with this much trouble and just go back to what works.

Novalissoide

vont when I install any APK, I use this app manager:
https://github.com/MuntashirAkon/AppManager/releases
No root or Adb needed for the most helpful features.

I tested after reading your post, installing Element, first from F-droid, then from Github, and, since I use Appmanager, this popup shows:
https://imgur.com/a/DwxWuqC

It tells me that the signature of the APK I'm trying to install conlicts with the app already installed, and it displays both signing hashes.

Novalissoide

vont Github shows this:
sha256:812a186999b0cefb05ce195cdc21276191cf6a1a1c03dd734a4c5847f16a0c9c

This is them having hashed the APK, not the signing hash. I'm not sure why they chose to do this.

vont

Novalissoide Thank you for checking. I really want to help graphene with what resources I have and right now that's being a tester. 👍

vont

I'm very sorry for whining.

It just seems in 2026 there would be some kind of unviveral way of checking apps and maybe, just maybe some of these devs post the proper hashes, signing keys or whatever stuff.

For instance, is what app verifier shows called a signing key? If so, wouldn't be in everyone's best interest for developers to post these signing keys instead of hashes to make everyone's life easier?

I'm assuming if you can verify the signing key, your good. But if I can't find it for a particular app, it renders app verifier kinda useless.

I tried installing the android sdk software and just couldn't figure out how to check an app.

Does the fact this thread even exist highlight this?

I even have a difficult time checking linux distros.

Novalissoide

vont wouldn't be in everyone's best interest for developers to post these signing keys instead of hashes to make everyone's life easier?

Yes, but of course it would. Don't worry, give it a few weeks more, then the speed checking and comparing signing hashes becomes a background task. I would again recommend using Appmanager, it just makes so many of these things faster and clearer.

Novalissoide

vont is what app verifier shows called a signing key?

Correction, it is a hash of the signing key.

Novalissoide

vont But if I can't find it for a particular app, it renders app verifier kinda useless.

Then you'll just ask for it in this thread, someone may install it and give their take.

vont

I screwed up and downloaded Element Classic which is no longer supported to begin with.

Element X linked below.

https://github.com/element-hq/element-x-android/releases

In case someone comes across this, you need Element X for Android. Here is the hash I got and it is in App Verifier's Database as of this post.

io.element.android.x
C6:DB:9B:9C:8C:BD:D6:5D:16:E8:EC:8C:8B:91:C8:31:B9:EF:C9:5C:BF:98:AE:41:F6:A9:D8:35:15:1A:7E:16

Novalissoide

vont Yes, Element Classic is available from Github though.

Novalissoide

vont By installing the 'classic' from Github, and sharing the link from browser to Play Store, this weird page:

https://imgur.com/a/ET1Gb7h

It says the app is installed, but isn't available, but I'm also welcome to join the apps beta programme, which I agreed to...

vont

Novalissoide Just joined, seems pretty straight forward. I hope I can any error logs that may be needed should something arise. 👍

gvprtskvni

Anyone able to check LibreTorrent? I get:

org.proninyaroslav.libretorrent
B0:88:D4:72:A9:80:18:64:5C:DE:EF:8E:93:33:8D:58:B3:F2:38:92:18:7F:DF:63:F7:39:58:38:1E:27:E5:83

Novalissoide

gvprtskvni check LibreTorrent

While you still can edit your post, please state the install source if you can.
This is from F-droid;
org.proninyaroslav.libretorrent
1A:96:ED:44:27:98:2C:52:E0:67:09:C9:41:A8:F3:9B:2A:BA:68:BC:CA:E8:6B:6C:86:F9:F0:30:BD:95:99:EA

so, not matching yours.

Edit, your posted one does however match the one from Play Store

gvprtskvni

Novalissoide Sorry. Mine is directly from github.

« Previous Page Next Page »