Bad news: it is confirmed that for those who wants to re-lock their bootloader with self signed images (possible on Pixel devices), SafetyNet with HARDWARE-BACKED evaluation will still *NOT* pass CTS check.
45
110
532
Conversation
This is pretty much death penalty for root and custom ROM users who still uses Google Play Services and expect things to work like it used to be.
14
16
347
This Tweet is from a suspended account. Learn more
This Tweet was deleted by the Tweet author. Learn more
It's not a fuse, you can flash a Google signed image and it will pass cts again
1
1
This Tweet was deleted by the Tweet author. Learn more
It doesn't make sense for it to work that way. It's based on verified boot and hardware-based attestation. When you don't know about the topic at all, it's best to listen instead of spreading misinformation.
oops i replied to the wrong thread if you saw my comment
for sure verification of the image wont rely only on an efuse, what I tried to reply to was"boolean variable on hardware"
for unlocking oem flashing/signaling if the boot might be compromised
1
i see that i misinterpreted kevin reply on that and wasnt talking about the verification process