GrapheneOS If I have a Pixel 5, could I implement this part of the update on my own without affecting the security of my device?
Revolut mobile finance - not supported on devices with custom firmware problem
cdflasdkesalkjfkdfkjsdajfd It doesn't make any sense and is a generic response they're giving about aftermarket operating systems to pretend they care about security. In reality, they permit devices with no security patches for 10 years. Forbidding GrapheneOS is forbidding using an OS far more secure than anything they permit. Their device checks this are done in an incredibly ridiculous way and we've solved the problem for our next release. They permit an unlocked device running a malicious OS as long as it doesn't have the build username set to grapheneos
. It's a complete joke.
Franco They do not know what they're doing. Their response is a generic one they came up with about aftermarket operating systems. They do not really understand what GrapheneOS is and it's only being banned via closed source libraries they didn't write but just bundled into their app. They're super low quality libraries doing things in an incredibly insecure and ridiculous way. Revolut is not a secure or well written app.
AlphaElwedritsch If it was obvious people would understand at first glance and nobody would make any question...
thanks a lot for all the work here !
i've got revolut, now for 10 years and it's always a pain in the a**
and NO it's not the security they care about....proof here..because grapheneos is the most secure OS i know.
That's the problem for revolut (and other)..they want to track every movement and the way of life ...and with grapheneos, they can't...and less secure is the OS, better it is..(super for them, the10 years android without security patches :-))
sorry for my poor english..
AlphaElwedritsch How many times do you want to go around in circles with the same old statements? It doesn't get better just because you keep repeating it...,😂🤣
Not all users read every post, tweet, toot, etc. of the GrapheneOS project. That's clear from reading recent posts on this thread. (Completely understandable that not many people want to read through 350 posts).
Makes sense to clarify the subject in case users are not up to date.
@GrapheneOS Did you consider organizing a campaign to stop discriminating custom OS users similar to https://www.stopkillinggames.com/ ?
In EU it could get attention and in case of it getting successfully implemented in EU law it would force banks and other app developers to tolerate GrapheneOS.
GrapheneOS hi, can this solution also apply to other roms other than grapheneos?
Alessandro876 I think so, I saw the same fix in lineageOS and other one that I don't remember. so I suppose that will work for most of them.
golbinex It's not the same situation as operating systems which do greatly roll back security and don't offer a way to verify through hardware attestation. They still shouldn't be banning people using an aftermarket OS rolling back security compared to AOSP if they're going to be allowing an OS with no security patches for 10 years. They wrongly believe licensing Google Play at some point in the past somehow makes it secure even without security patches. It doesn't make sense.
AlphaElwedritsch Why are you being nasty towards us?
Magic ok thanks, im on risingos
I have a Pixel 5, so my phone no longer receives updates. But I’m wondering if I can do it myself. I’ve been researching, and it seems I need to unlock the bootloader and get root access. My question is: Can I unlock and relock the bootloader without losing my phone’s data safely? And can I root and unroot my phone without compromising security?
Thank you very much!
Magic Can I unlock and relock the bootloader without losing my phone’s data
Definitely not
Magic I’ve been researching, and it seems I need to unlock the bootloader and get root access.
Which research? This sounds strange. Doesn't sound like the research knows what it's talking about.
If the fix isn't released for the Pixel 5, you will need to modify the GrapheneOS code and build it yourself.
Magic Can I unlock and relock the bootloader without losing my phone’s data safely?
https://discuss.grapheneos.org/d/19396-need-to-root-temporarily-for-data-recovery/11
Revolut works again with the latest release that's currently available in the Alpha channel and will reach the Beta channel soon if no major issues are reported:
https://discuss.grapheneos.org/d/19436-grapheneos-version-2025012600-released
The changes made to work around Revolut banning GrapheneOS should also help with various other banking apps using the same awful SDKs. We also added a system intercepting Play Integrity API usage and showing a notification when it's used which links to a new per-app Play Integrity API configuration menu which includes the ability to block it on a per-app basis along with encouraging users to give feedback to developers via a shortcut to the Play Store page for leaving a review.
I didn't look into the APK myself but GrapheneOS on social media mentioned that Revolut uses seon.io. I wonder if seon.io is somehow related to DexProtector since on latest GrapheneOS, DexProtector's EnvChecks app started passing too :P
- Edited
nat Well, I guess you could be right!
I installed the EnvChecks app when Revolut was not working for me and the EnvChecks was throwing an error too. But after the 2025012700 upgrade I was able to log into Revolut again and EnvChecks is showing a completely different screen.
nat They seem to use at least 3 different approaches to blocking a custom OS. They do not enforce it based on the Play Integrity API though. They were also allowing the orange verified boot state while blocking yellow and explicitly blocking GrapheneOS, meaning they permit having arbitrary unverified code as long as it has no signs of being an alternate OS rather than a modified stock OS but go out of the way to block GrapheneOS. Genuinely mystifying.
- Edited
So this is not really "fixed" but rather "delayed". Once they use Integrity API hard mode, we're doomed. Might as well get used to carrying 2 phones, folks
Is there no way to at least run a VM with stock Android that would pass this?