BankID stopped working, possibly after version 4.7.7

Quantum

4.7.7 was the default for me on Aurora on two devices

Quantum

Hopefully someone here can test the next version when it comes out. I would do it, but I rarely use the app or update it

DeletedUser370

Same issue in Owner vs. secondary.

kbf22173

DeletedUser370 I'm not enrolled in any betas on the play store but I deleted the app and installed through Aurora store where it installed ver 4.7.6 and now works. When I try to install through the google play store it kept installing version 4.7.7 perhaps due to my play store region being UK?

haakon

My guess is they're doing a phased deployment. This is why only some of us are seeing 4.7.7 in Google Play, and why we still see 4.7.6 in Aurora.

Phasing deployments are prudent when you make big changes and want a chance to evaluate the effects. My worry remains that the big change is an attempt at blocking systems like GrapheneOS.

DeletedUser370

haakon 100%, not sure why I didn't think of that. Staged deployments are common for large software projects.

What annoys me currently is that it's hard to tell whether this is BankID who decided to enforce Play Integrity in strong mode, banning non-GMS-licensed OSs (the notification about Play Integrity API usage is suspicious, although BankID was definitely using the API long before 4.7.7, and the app still worked fine except for the minor passkey feature), or whether it's an app bug that is somehow triggered on GrapheneOS but not stock PixelOS.

I think I'll try to give bankid-app-feedback@bidbax.no a shot. And I'll give the app a one-star review on Play Store. I'll contact my bank also if the behaviour occurs in the next version, but I'm not looking forward to going back and forth with their support; my bank has told me in the past that GrapheneOS is not "supported" and that I'll have to "uninstall" it, but that was before 4.7.7 so they were clearly not referring to the app blocking GrapheneOS.

By the way, if you're making a Play Store review, make sure to not include any URLs, because Play is known to block/shadowban reviews that contain links.

engstat

I can also confirm the problem with 4.7.7, and that using Aurora and downgrading to 4.7.6 (1748331101) temporarily solves the issue. I will have to use a separate device for BankID if this is not fixed by the developers, as I don't want to run a outdated client to log into my bank and other related services.
There might also be a way to contact the developers at teknikinfo@bankid.com according to https://support.bankid.com/en/technical-issues-and-problems/beta-test-bankid-for-android,

DeletedUser370

engstat There might also be a way to contact the developers at [teknikinfo@bankid.com](mailto:teknikinfo@bankid.com) according to https://support.bankid.com/en/technical-issues-and-problems/beta-test-bankid-for-android,

That is the Swedish BankID app, an entirely different app and it's not the same developer.

TrustExecutor

DeletedUser370
Maybe it is a good reason to already now contact the swedish counterpart and urge them to not implement Play Integrity API, but instead use hardware attestation as per GrapheneOS instructions.

engstat

DeletedUser370 You are absolutely correct

DeletedUser370

Ok, to summarize what we've found so far:

Version 4.7.7 is gradually rolling out to all users
4.7.7 is not crashing on stock Pixel OS
Enabling exploit protection compatibility mode does not fix it
Disabling exploit protection compatibility mode and enabling secure app spawning and then rebooting does not fix it
It's unclear whether or not the app is now enforcing Play Integrity in the mode where it disallows alternative operating systems, or whether this is an app bug which arises on GrapheneOS and not stock OS
When 4.7.7 is opened, GrapheneOS displays a notification that the app used the Play Integrity API, but this message also appeared in older versions
We can reach out to BankID by leaving a negative review mentioning the crash in the Play Store entry (without posting a URL; will get the review banned), contact the email address under "App support" in the Play Store entry, and reach out to your bank and get them to forward your feedback to BankID.

Tulips

DeletedUser370
Got same problem here on my xiaomi eu rom (non root) wdck.aw: 00 at wdck.b.a(Unknown Source:172) at wdck.b.b(Unknown Source:0)

Bankid Norway.

ujjayi

Don’t know if it’s relevant in any way, but the error code I got when 4.7.7 somehow was not crashing all the time on my phone was the BID-2033 code that should indicate a bad data connection. Would there be any sense in taking that into account? Because there’s also a separate error for unsupported systems, or rooted and jailbroken systems anyway.

Mengine

A new version 4.7.8 is released and seems to have solved the issue

DeletedUser370

Mengine Can confirm, 4.7.8 works fine for me.

ujjayi

Yep, I even got a mail back from Bidbax, saying he fully supported GOS's mission and a thank you for reporting. What still doesn't work on GOS is "raskere BankID" with biometrics. Not sure if it's some there's some missing permission in Play services (it says to verify biometrics with Play Services on the very top of the last step)

DeletedUser370

ujjayi Yep, I even got a mail back from Bidbax, saying he fully supported GOS's mission and a thank you for reporting.

Was this a representative of BidBax? Not an auto-reply from a machine? I actually didn't come around to send them an email, just a one-star review.

ujjayi

DeletedUser370 yep, was a reply and signature from a person with a name @bidbax.no, clearly not an auto-reply, so that's one good thing 🙂

TrustExecutor

ujjayi

This is awesome.

« Previous Page Next Page »