Ask / Submit
59

[How-To] MicroG in SFOS 3.1

asked 2019-07-18 21:13:08 +0200

TMavica gravatar image

updated 2019-11-27 16:57:56 +0200

jiit gravatar image

Since sfos 3.1 with signature spoofing support, it is more easy to setup Just install those MicroG apk and fakestore apk, and enable those setting as below, then you are done!

image description image description

MicroG show everything is good image description

edit retag flag offensive close delete

Comments

4

you have to add this repository in fdroid, to install microg and fakestore:

https://microg.org/fdroid/repo?

with fingerprint: 9BD06727E62796C0130EB6DAB39B73157451582CBD138E86C468ACC395D14165

mettska ( 2019-07-18 21:42:16 +0200 )edit
1

fuck yeah!

<o\ \o="" o=""></o\>

(does the.happy dance)

DrYak ( 2019-07-18 21:58:51 +0200 )edit
1

Exciting news, cheers. Do we still need to reinstall all existing Android apps after installing microG?

jollajo ( 2019-07-18 22:13:26 +0200 )edit
1

Is this only on the XA2s (with their AOSP8-based AlienDalvik) or also on earlier models (rsp. versions of AlienDalvik) after upgrading to SFOS 3.1.0?

olf ( 2019-07-18 22:40:41 +0200 )edit
1

@jollajo :

From experience, if you already have an older MicroG install (e.g.: using the docker by yeoldegroove in the howtos), no, you don't need to re-install, just to re-enable Signature Spoofing.

According to MicroG's FAQ, if you do not have an older install, but did just freshly install MicroG, you need to re-install every single app that relies uppn Google Cloud Mrssage to force them to re-register the cloud service (well at least the apps that you want to register... e.g.: not necessarily for notorious spies. See ny howto about autostart). In my personal experience, no need to fully un-install and re-install, just installing this week's update is enough (tested with my WhatsApp instance)

DrYak ( 2019-07-18 22:53:48 +0200 )edit

11 Answers

Sort by » oldest newest most voted
33

answered 2019-07-22 04:27:36 +0200

DrYak gravatar image

updated 2019-08-08 17:56:03 +0200

So here's my compilation of all the details I did to get microG working on my XA2.

I hope it helps, I'll also try to add all the informations I can gather elsewere.


Donations

As a side note, if you would like to support the development of MicroG, the MicroG team has setup a bountysource.

(And you probably do support software development if you're reading this, given that AlienDalvik is one of the perks you get when using the paid Sailfish X licence ...)


Notes

For Android, when I write : "App permissions - Apps using Location, Microphone, Camera", "App permissions" is the big text that appears in big bold on the menu, and "Apps using Location, Microphone, Camera" is the text that appears in light gray underneath.

Pre-requisits

The really base (most of the people already have) :

  • You need obviously to have a smartphone on which you have flashed Sailfish OS
  • You need to have paid the license for Sailfish X (this includes the paying bits like AlienDalvik)
  • You need to have your Jolla account set up on the smartphone.
  • You need to install "Android support" from the Jolla store (will not show up until you have an account with a paid licence for the type of device you're running)
  • Installing "Android support" doesn't pop up any new icon in Launcher, that's normal
  • It's not obligatory, but it helps a bit : you can turn developer mode on.

If you're installing on a freshly flashed phone, with a fresh installation of "Android support", that's okay you can skip to the procedure itself. If you have fooled around on your device (e.g.: installed Google Play Service, installed microG, etc.) and if you hit the "I don't have the spoofing permisison showing up in the list", make also sure :

  • there's no extra stuff left over in /opt/alien/ (the space on that partition is limited, it's barely enough for holding the original file and any system upgrade. Any leftover backup might not leave enough room to proceed)
  • that you have the original pristine file in /opt/alien/system.img (and not your patched stuff)
  • that currently you do have the latest version of AlienDalvik installed.

As of 3.1.0.11 Seitsminen (you can check the changelog):

rpm -qf '/opt/alien/system.img'
aliendalvik-8.1.0.53.57-1.17.1.jolla.armv7hl

If you have any doubt about the two above, you can force re-installing AlienDalvik with commands:

devel-su
pkcon refresh
pkcon install --allow-reinstall aliendalvik

Also last but not least, make sure you're currently running some 3.1.0 Seitsminen version of the OS (and not that the upgrade has completely failed and you're kicked back to 3.0.3 Hossa):

ssu re
Device release is currently: 3.1.0.11

Enable Signature Spoofing

  • Settings app
  • section Info, tool Android™ support
  • you get to the first screen shot above
  • check the checkbox Disable Android™ system package verification
  • push the Stop button
  • wait until AlienDalvik has completely shutdown (Start button become available)
  • push the Start button
  • wait until AlienDalvik has completely re-started (Stop button become available)

The Signature Spoofing permission is enabled in Android and could now be granted.

Install software

F-Droid

Download it :

  • in Sailfish OS's native browser, go to https://f-droid.org/
  • click on the Download F-Droid button
  • (or you can scan the QR-code on the page from your desktop, it you don't trust your typing skills)
    • download Starts

Install it :

  • Settings app
  • section Info, tool Transfers
  • wait for FDroid.apk to finish loading...
  • tap on FDroid.apk

Sailfish OS will install F-Droid. Pay attention to the Sailfish pop-up mentioning the install successful.

A new F-Droid icon should show up.

microG repository

Hint: to avoid having to manual type the data information, you can install the CodeReader app from the Jolla store and scan the QR-Codes on web pages such as the MicroG download page and copy-paste them into the relevant fields

  • Open and check the info from the the MicroG download page on your computer.
  • open the "F-Droid" app store
  • Settings icon (down, right in the blue bar on the F-Droid window)
  • section My Apps, tap on Repositories - Add additional sources of apps
  • hit the "+" icon on the top, right in the blue bar.
  • Repository address: https://microg.org/fdroid/repo
  • Fingerprint : 9BD06727E62796C0130EB6DAB39B73157451582CBD138E86C468ACC395D14165

    ( ^- that's very long. It's much easier to copy-paster from the QR-code scan in CodeReader)

  • make sure the "microG F-Droid repo is checked active (green)
  • back to the main screen

    (hit the "<|" Android back button, than hit again "Latest" down, left in the blue bar on the F-Droid window)

  • hit on the green magnifying glass search icon down right on the main pane.
  • search for microG
  • Download ( blue icon down arrow ) then install the following software (the first time, Android will ask you to grant to F-Droid the permission to install software) (each time a box pops-up asking you to confirm the installation).
    • microG Services Core - Re-Implementation of Playservice (That's microG proper, it also includes UnifiedNlp)
    • MozillaNlpBackend - UnifiedNlp location provider (Mozilla) (The usual recommendation mentioned in most HOWTOs - That's for finding location by asking Mozilla's cloud based on visible Wifi and Cell towers)
    • Apple UnifiedNlp Backed . Unified location provider (Apple Wifi) (Alternative option)
    • Signature Spoofing Checker - Test the signature spoofing capabilities (optional)
    • NominatimNlpBacked - UnifiedNlp geocoding provider (That's for finding street addresses)
    • microG DroidGuard Helper installation (optional - that's tools to help make use of the Security Net feature of Google Services)
    • FakeStore - microG Store (FakeStore release) (it's empty, but pretends that "Google Play Store" is installed, because some apps look for that)
    • microG Services Framework Proxy - Legacy support proxy library (for making Google Cloud Messaging work).
  • other applications to search for, then install:
    • Aurora Store - A Google Playstore Client (optional - a modern-looking Google Play Store replacement)
    • Yalp Store - Download apks from Google Play Store (optional - a good Google Play Store replacement)
    • SAI - SAI lets you install split APKs (optional - some apps come actually split across a collection of separate files. Yalp can download them but can't install them. SAI fills this void)

microG will make a microG settings appear in Launcher. If installed, the optional Aurora or Yalp makes an icon too.

Other optional application to search for and install, that are useful in my opinion "Android Permissions", "Stanley - An application explorer for developers".

Grant Signature Spoofing Permissions

  • You need to go to the Android settings. Two methods:
    1. Using stock Sailfish OS
      • Settings app
      • scroll down and tap on Apps >
      • select microG Settings
      • push the Open Android™ settings button
      • (you're in the sub-screen of android settings about the microG GmsCore settings)
      • push the "<|" Android back arrow
      • (you're now on the main screen of the Android Settings)
    2. Install Coderus' Aliendalvik control
      • Settings app
      • section Look and feel, tool Aliendalvik Control
      • push the Settings button
  • from the main screen of Android settings app:
  • Apps & notifications - Permissions, default apps
  • (after the apps) "App permissions - Apps using Location, Microphone, Camera"

    ( ^- warning it's not in the same place as on other ROMs, it's not among the Advanced permissions)

  • (You arrive roughly at the screen that carmeloferso has shown here )
  • scroll down to the list of permission (the end should read "SMS", "Storage", "Telephone", and...)
  • pick the last permission "enable system package replacement"
  • (You arrive at the second screen above )
  • Here you can grant the "enable system package replacement" permission, a.k.a "Signature Spoofing":
    • FakeStore (make so the empty package seem to contain "com.android.vending" coming from the genuine Google's Play Store, so that apps checking for that are kept happy)
    • microG Service Core (make so "com.google.android.gms" seems to be coming from the genuine Google Play Service)
    • Signature Spoofing Checker (if you installed this option. It makes the checker apps' screen go green if the spoofing works)

If you don't find "enable system package replacement" in the permissions list, you might be still unknowingly running an old version of aliendalvik ('s system image). Check again the pre-requisits (remove left-over junk from /opt/alien, force re-install, etc.)

Restart alien-dalvik

So the permission granting takes effect:

  • Settings app
  • section Info, tool Android™ support
  • you get again to the first screen shot above
  • push the Stop button
  • wait until AlienDalvik has completely shutdown (Start button become available)
  • push the Start button
  • wait until AlienDalvik has completely re-started (Stop button become available)

Checks

After this last restart, Signature Spoofing should work for the software you granted it to.

  • application microG Settings
  • section Setup, tool Self-Check - Checks if the system is correctly set up to use microG.
  • (you arrive at the 3rd screen above)
  • control that each test has passed (has a green check-mark)
    • specially Play Services (GmsCore) and PlayStore (Phonesky) should both be installed and have correct signatures.

More checks

  • if you have installed "Signature Spoof Checker" and has granted it permission, it should show a green screen
  • if you have installed "Stanley", when you check the application "microG Services Core - com.google.android.gms" and "FakeStore - com.android.vending", you'll notice that the signature pretends to be from Google (and not from "nogapps.de" unlike the other microG components)

Configure

  • application microG Settings
  • section Configuration, tool UnifiedNlp Settings

This is where you can configure the location services.

  • Tap Configure location backends or Configure address lookup backends to configure either
    • You get a pop-up list with the list of back-ends.
    • You can check the checkbox at the right of a back-end to enable it.
    • Some back-ends (e.g.: Mozilla, Nominatim) have a small gear icon, tap it to configure the back-end (see below for Mozilla)

Note: Keep in mind that, as of 3.1.0 Seitseminen, Android app can see and query the WLAN (Wifi connection), but currently as demonstrated by several questions filed by other community members, the 3G/4G connection isn't always seen by Android Apps.

Thus you need to only rely on Wifi Network-based connection e.g.: rely on Apple's back-end, or configure Mozilla's to only use Wifi network, but NOT to use 3G/4G cell towers. If you do not do that you'll get the following problems :

  • "UnifiedNLP has no last known location. This will cause some apps to fail." (if no other back-end present)
  • "UnifiedNLP do not have Location to test Geocoder - Please verify your location Backend" (if no other back-end present)
  • "No UnifiedNlp location was provided by the system within 10 seconds". (always fails)

That because the back-ends that rely on 3G/4G cell hang.


Advanced tips

Chrome

Some apps rely on a Google Chorme web browser to be present.

You can add Bormite to F-Droid, it's an opensource derivative of Chromium, but has more privacy and Ad-blocking (unlike Mozilla where it works everywhere, on Chrome only the desktop version has uBlock plugins).

Google Cloud Messaging

I've written another HOWTO about auto-starting apps. You might check how to enable/disable apps getting automatic alerts from the Cloud, and optionally getting auto-started to process it (e.g.: WhatsApp automatically getting messages instead of you needing to fetch them).

Apps that rely on Google Cloud Messaging and were already on the phone before you setup microG need to be installed again.

Google Play Store

This howto is done for using opensource app store for fetch APK from the Google Play Store (such as Aurora and/or Yalp) and the empty FakeStore package to trick any application that checks the presence of "com.android.vending".

For people wanting to use the genuine Google Play Store client app (in order to buy stuff directly from the app), it is possible to do thanks to NanoDroid, and carmeloferso has written a guide

  • add nanodroid repository to F-Droid
  • install Google Play Store from nanodroid
  • grant it signature spoofing using the "enable system package replacement" permission
  • in the Android Settings, in section "Users & accounts - Current user: Owner"
    • add Google account (if not already set-up in microG).
    • "Sign-in & security"
      • Turn on "Trust Google for app permissions - When disabled, the user is asked before an app authorization {...}"
      • Turn on "Allow apps to find accounts - When enabled, all applications on this devices will be able to see your Google Accounts"
  • Start Google Play Store and let it sync.

"Root detected" and banking apps

Root detection relies on two things.

presence of Google Api

  • something must provide 'com.google.android.gms' (aka.: GmsCore)

    you must install microG Services Core and grant it signature spoofing

  • something must provide 'com.android.vending' (aka.: Phonesky)

    you must install either install microG's FakeStore or Nanodroid's patched Google Play Store and grant it signature spoofing

This keeps most of the applications happy.

SafetyNet

Google has a kind of backdoor anti-feature that allows them to remotely analyze Android smartphones.

microG uses a reimplementation of SafetyNet and a sandboxed version of google's proprietary DroidGurad ...

BUT Google has changed SafetyNet yet again and it doesn't work anymore (as of microG 0.2.8.17785 and DroidGuard Helper 0.1.0). Maybe in a future version ?

This causes a couple of banking app to still complain.


Extremely advanced stuff

Mapsv1

This Howto covers the modern Mapsv2 API as implemented by Google Play Services and UnifiedNLP.

Some apps, like the Greencopper ones used for lots of festivals, still rely on the old Mapsv1. microG has an implementation : it is a Java framework in a JAR that needs to by written into system.img.

Here is a script to add the mapsv1 jar into system.img:

#!/bin/bash

echo -e "\e[34;1m=================================\e[37;1m"
echo "[**] 0. Check environment"
echo -e "\e[34;1m=================================\e[0m"

if [ -e /opt/alien/system.img ]; then
    HAS_ALIEN_DALVIK=1
    ALIEN_VERSION="$(rpm -qf '/opt/alien/system.img' --qf '%{version}')"
    echo "AlienDalvik image version ${ALIEN_VERSION} found"
fi

set -e
SE_LOST=0


echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 1. Get system.img"
echo -e "\e[34;1m=================================\e[0m"

SYSIMG_ORIG="system.img.orig${ALIEN_VERSION+.${ALIEN_VERSION}}"

if [ -f "${SYSIMG_ORIG}" ]; then
    echo -e "\e[33;1mWARNING: reusing existing ${SYSIMG_ORIG}\e[0m"
elif [ -e /opt/alien/system.img ]; then
    rsync -avPL --inplace '/opt/alien/system.img' "${SYSIMG_ORIG}"
    chown --reference=. "${SYSIMG_ORIG}"
else
    echo -e "\e[31;1mERROR: can't find ${SYSIMG_ORIG}, please fetch it /opt/alien/system.img from your Sailfish smartphone"
    exit 1
fi

echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 1.1 Get MicroG Mapsv1"
echo -e "\e[34;1m=================================\e[0m"

if [ -f 'mapsv1.flashable.zip' ]; then
    echo -e "\e[33;1mWARNING: reusing existing mapsv1.flashable.zip\e[0m"
else
    curl -LO 'https://github.com/microg/android_frameworks_mapsv1/releases/download/v0.1.0/mapsv1.flashable.zip'
    chown --reference=. mapsv1.flashable.zip
fi
unzip -l mapsv1.flashable.zip


echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 2. Black belt mount-fu"
echo -e "\e[34;1m=================================\e[0m"

TMP_DIR="$(mktemp -d sysimg.XXXXXX)"

touch "${TMP_DIR}/.noindex"

MNT_DIR="${TMP_DIR}/squashfs_root"
mkdir -p "${MNT_DIR}"
mount -o ro,loop "${SYSIMG_ORIG}" "${MNT_DIR}"

# Check the sercurity extended attributes
if [[ "$(find ${MNT_DIR}/system/bin/ -print0 | xargs -0 getfattr -m - -d)" =~ security\.capability= ]]; then
    echo -e "\e[36;1mCheck: Security extended attributes are readable\e[0m"
else
    echo -e "\e[33;1mWARNING: Security extended attributes are missing !\e[0m"
    echo "Please re-install stock AlienDalvik RPM, otherwise logd, run-as and webzygote are going to be borken !"
    echo "(but the rest of Android otherwise works)"
    SE_LOST=1
fi


# MntPoints indexed array lists ALL subdirectories that we need to be writable for our patching needs
declare -a MntPoints
MntPoints=( 'system/framework' 'system/etc/permissions' )

for (( k = 0; k < "${#MntPoints[@]}"; k++)); do
    # check if any of the subdirectory carries extended attributes (e.g.: we want to patch /system/bin )
    if [[ "$(find ${MNT_DIR}/${MntPoints[$k]}/ -print0 | xargs -0 getfattr -m - -d)" =~ security\.capability= ]]; then
        echo -e "\e[33;1mWARNING: ${MntPoints[$k]} has security extended attributes !\e[0m"
        HAS_SECURITY=1
    else
        HAS_SECURITY=0
    fi

    mkdir -p "${TMP_DIR}/${k}"
    rsync -avPSHAX "${MNT_DIR}/${MntPoints[$k]}/" "${TMP_DIR}/${k}/"
    mount --bind "${TMP_DIR}/${k}" "${MNT_DIR}/${MntPoints[$k]}"

    # check if subdirectories got their extended attributes carried over
    if (( HAS_SECURITY )); then
        if [[ "$(find ${MNT_DIR}/${MntPoints[$k]} -print0 | xargs -0 getfattr -m - -d)" =~ security\.capability= ]]; then
            echo -e "\e[36;1mCheck: ${MntPoints[$k]} security extended attributes saved\e[0m"
        else
            echo -e "\e[33;1mWARNING: cannot save security extened attributs in ${MntPoints[$k]}, loss of functionnality is possible\[0m"
            echo "Try on a Linux laptop that doesn't run SELinux"
            SE_LOST=1
        fi
    fi
done



echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 3. Patch"
echo -e "\e[34;1m=================================\e[0m"

unzip -d "${MNT_DIR}" mapsv1.flashable.zip 'system/'{framework,etc}'/*'



echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 4. rebuild squashfs"
echo -e "\e[34;1m=================================\e[0m"

# check compression
if [[ "$(mksquashfs --help 2>&1 )" =~ lz4 ]]; then
    COMP="-comp lz4 -Xhc"
else
    echo -e "\e[33;1mWARNING: fast LZ4 compression not available, falling back to slower GZip compression\[0m"
    echo "AlienDalvik should work, just not as fast"
fi

mksquashfs "${MNT_DIR}" system.img.mapsv1 $COMP -noappend -no-exports -no-duplicates -no-fragments
chown --reference=. system.img.mapsv1

echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 4.1 mount clean-up"
echo -e "\e[34;1m=================================\e[0m"

for (( k = 0; k < "${#MntPoints[@]}"; k++)); do
    umount "${MNT_DIR}/${MntPoints[$k]}"
    [ -d "${TMP_DIR}/${k}/" ] && rm -rf "${TMP_DIR}/${k}/"
done
umount "${MNT_DIR}/"

echo -e "\n\e[34;1m=================================\e[37;1m"
echo "[**] 4.2 check image"
echo -e "\e[34;1m=================================\e[0m"

mount -o ro,loop system.img.mapsv1 "${MNT_DIR}"
if [[ "$(find ${MNT_DIR}/system/bin/ -print0 | xargs -0 getfattr -m - -d)" =~ security\.capability= ]]; then
    echo -e "\e[36;1mCheck: Security extended attributes are still readable\e[0m"
else
    echo -e "\e[33;1mWARNING: Security extended attributes are missing !\e[0m"
    SE_LOST=1
fi
umount "${MNT_DIR}/"
rmdir "${MNT_DIR}/"
rm "${TMP_DIR}/.noindex"
rmdir "${TMP_DIR}/"

if (( SE_LOST )); then
    echo -e "\e[33;1mWARNING: Security extended attributes are missing!\e[0m"
    echo "Please re-install stock AlienDalvik RPM, otherwise logd, run-as and webzygote are going to be borken !"
    echo "(but the rest of Android otherwise works)"
fi

(Inspired by yeoldegroove haystack-ing docker, my mods thereof to add mapsv1 and various scripts used to add Google Play Services directly from the device while not breaking logd. But I went for a slightly different approach a bit more space-saving (only loop-mounts the squashfs system.img, and uses bind-mounts for the directories that needs overwriting) )

It can be executed on the device, provided that you install attr and squashfs-tools package (note that the official Jolla one doesn't support LZ4, so the generated image will GZIP instead with is a bit smaller, but also a bit slower). Special care has been put to make sure that the Security Extended Attribute aren't lost and Android's logcat continues to work as it should.

It can be also executed on a Linux laptop (or a Raspberry Pi), provided that you transfer the file /opt/alien/system.img in (to be named system.img.orig).

The script produces a file named system.img.mapsv1 that now contains the necessary microG parts to make older apps work, too.

Widevine

I'm not using any DRM.

But if somebody has a good source for .so that actually work on Sailfish OS and XA2, please let me now, the above script could also be modified to add those too.

edit flag offensive delete publish link more

Comments

F-Droid is present in the harbour (Jolla Store). Wouldn't it work to install it directly from here?

Nautilus ( 2019-07-22 11:02:24 +0200 )edit

do you have any idea about safetynet passing, too?

balta ( 2019-07-22 15:11:23 +0200 )edit

@Nautilus Do you mean Aptoide? Didn't see F-Droid in the Jolla store.

sunburnedpenguin ( 2019-07-22 16:25:59 +0200 )edit

@sunburnedpenguin I've got Intex Aqua Fish, and I can see F-Droid in Jolla Store.

Nautilus ( 2019-07-22 21:47:28 +0200 )edit

@balta :

In theory, you need to install the DroidGuard optional package and then activate it in microG settings.

In practice, none of my banking app relies on it, so I can't assert how good microG's re-implementation (+ container) is.

DrYak ( 2019-07-23 03:02:44 +0200 )edit
2

answered 2019-07-24 17:38:25 +0200

glalli gravatar image

updated 2019-07-24 17:38:59 +0200

May be I'm stupid too , but I can't get to see "enable system package replacement". I have followed the instructions by starting from scratch several times to no avail. Xperia XA2 plus dual sim. Anybody can help please!

Thanks ,

G

edit flag offensive delete publish link more

Comments

i'm in the same boat.. have tried resetting back to factory and following steps exactly.. signature spoofing is never enabled and the menu option on the permissions page never shows!

I reckon i'm doing something dopey but cant figure out what...

durneyj ( 2019-07-24 18:12:39 +0200 )edit

I'm also in the same boat, didn't have luck to enable that permission

carmeloferso ( 2019-07-24 18:45:34 +0200 )edit

@glalli Upon my XA2 Dual SIM, in Aliendalvik Control (Coderus)> Settings > Apps & notifications > Advanced > App permissions > scroll down to "enable system package replacement" just below "Telephone" and just off-screen for me.

aspergerguy ( 2019-07-24 19:58:16 +0200 )edit

I don't know if language of SFOS for people that have the permission working is only english, or is working also having in other languages?

carmeloferso ( 2019-07-24 20:21:49 +0200 )edit
1

I have Finnish SFOS and Finnish Android Support Layer, and it's there in the correct place (with untranslated English label). I had to switch my Android to English to actually manage to find it by the instructions, but it's there independent of language.

Do note that @DrYak uses the full text of the titles of the relevant sections in his instructions, which may be a bit confusing as usually your brain doesn't even register such notes under the actual headline.

Headline "App permissions - Apps using Location, Microphone, Camera" really means "App permissions", behind which link you will find it at the very bottom.

teemu ( 2019-07-24 22:20:40 +0200 )edit
2

answered 2019-09-02 15:45:33 +0200

rstolli gravatar image

Hi there, thanks a lot for the installation guide. Everything worked well except for installing the Google Play Store App from Nanodroid (need it for paid apps). I followed your steps, but when I launch the Google Play Store App, I get "Error retrieving information from server. DF-DFERH-01". I rebooted, I tried ForceQuit, Deleting Cache and Data for the Play Store App. I gave phone, location, contacts, unrestricted data permission to Play Store App. I removed and reentered my google account. I tried Deleting Cache and Data for all MicroG apps - plus setting things up again. All to no avail. I can login to my google account via browser, but when I click on the install link and select open with Google Play Store, I get the DFERH error again. Any ideas or help? Best, RS

edit flag offensive delete publish link more
1

answered 2019-08-12 21:19:29 +0200

StPauliFan gravatar image

updated 2019-08-12 21:19:53 +0200

wow thousand thanks for this guide. worked right away. n1

edit flag offensive delete publish link more
1

answered 2019-10-08 12:40:16 +0200

Stanislav1988 gravatar image

I had a liitle problem, first time when I installed Google Play and add all data to log in app work but it ask for login once again O_O so I tried go to microG and add account but it give anserw that this account exist on this device. Someone know how to solve this issue?

edit flag offensive delete publish link more

Comments

It is already added, you can verify in Android settings

carmeloferso ( 2019-10-08 15:31:25 +0200 )edit
1

@carmeloferso yes, but why Google Play Store (from nandroid repo) ask for sign in?

Stanislav1988 ( 2019-10-08 15:59:08 +0200 )edit

As far as I know Google Play is incompatible to MicroG. Try Aurora Store instead.

wosrediinanatour ( 2019-10-08 18:51:13 +0200 )edit
0

answered 2019-07-21 02:57:12 +0200

Giacomo Di Giacomo gravatar image

Okay, so it seems I am too stupid to use MicroG so please explain me. I had it working on my XA2. Now I did some kind of a mess and had to factory reset. I reinstalled 3.1, resized partitions, installed F-Droid and then MicroG Services Core and fakestore. I get that my system does not have spoofing signature support (earlier it had). Please send some suggestions, before I throw the damn machine out of the window and order a Nokia 8.1.

edit flag offensive delete publish link more

Comments

I also installed Signature Spoofing Checker and it says it's disabled.

Giacomo Di Giacomo ( 2019-07-21 02:58:32 +0200 )edit
3

What I did was I first disabled Android package verification, and then installed F-Droid, added the repo and installed microG and FakeStore. Then I went to Android Settings and enabled the system package replacement permission, and started microG settings. Then start microG settings and give it all the permissions it asks.

Doing that I have all other packages installed except GSF. However, none of my apps (most of which I had to reinstall) don't complain about missing Google Play Services anymore, and I think ParkMan works again (won't know for sure until I actually park with it, though).

Edit: I was still missing microG Services Framwork Proxy, I installed in F-Droid. Now I have the same boxes checked as in the screenshot.

Direc ( 2019-07-21 10:46:33 +0200 )edit

It's officially confirmed I am too stupid then, and my phone knows it.. It's exactly what I believed I was doing, but when I did it on my own the system package replacement permission option did not appear, and when I followed step by step what you said it was there. Oh well. Thank you for helping an old idiot.

Giacomo Di Giacomo ( 2019-07-21 11:16:52 +0200 )edit

I didn't find it either for the longest time, actually. It has always confused me why all the permissions can't be in a single menu and not the way they are scattered around now.

Direc ( 2019-07-21 11:26:19 +0200 )edit

How to get 'Network-based location enabled' and 'Play store (Phonesky) has correct signature' checkboxes checked?

ElderOrb ( 2019-07-21 18:17:03 +0200 )edit
0

answered 2019-07-29 16:44:28 +0200

glalli gravatar image

Any ideas on how to make banking app work? There is some kind of security check in the app that is preventing it from starting.

Thanks, G

edit flag offensive delete publish link more

Comments

Look in to trying to enable SafetyNet verification in microG settings. (I have not pursued this myself) Also do google for your specific bank app with relevant keywords. If other banks behave better, consider voting for openness with your money.

attah ( 2019-07-29 17:26:41 +0200 )edit

Thanks. I already tried that but it didn't help. The bank is Intesa Sanpaolo from Italy. Not much information on the web other than it is a known issue on rooted or non standard Android phones. Same was happening to people running LineageOS

glalli ( 2019-07-29 17:29:55 +0200 )edit

according to recent issues on microG's GitHub, Google have recently changed yet again how SafetyNet works, and thus the current DroidGuardHelper doesn't work. If SafetyNet is mandatory for your banking app to work, you're out of luck (Well, short of pestering your bank's developpers until they release a SafetyNet-free version of the app).

Otherwise, lots of app require the presence of some kind of Google Play Services (microG does fill that role, it provides the same API com.google.android.gms) and also the presence of Google Play Store (FakeStore does this. It's empty, it does nothing. But it pretends that com.android.vending is there). There are lots of apps that will be happy if these two conditions are met.

DrYak ( 2019-07-29 21:08:37 +0200 )edit

My bank's app (Nordea Sweden) complains on start-up and asks me not to run it on a rooted phone, but then continues to run fine.

lgs11 ( 2019-07-29 21:53:13 +0200 )edit

Can you get and test an older version of the app? My own bank's latest version refuses to work on Sailfish, so I use a previous version that just hilariously warns me to "be careful, hati-hati root" but works perfectly.

teemu ( 2019-07-29 22:19:18 +0200 )edit
0

answered 2019-08-08 13:23:13 +0200

babo gravatar image

I cannot log in with my google account on Feedly.Any ideas? Microg and everything related are working fine

edit flag offensive delete publish link more

Comments

Maybe enabling:

  • "Trust Google for app permissions - When disabled, the user is asked before an app authorization {...}"
  • "Allow apps to find accounts - When enabled all applications on this devices will be able to see your Google Accounts"

like the steps that carmeloferso uses to make Nanodroid Google Play Store work

DrYak ( 2019-08-08 17:27:40 +0200 )edit

I already have those enabled.Still, hasn't worked yet.nothing happens when i try to log in

babo ( 2019-08-09 16:08:39 +0200 )edit
0

answered 2019-08-09 11:34:51 +0200

ehakkarainen gravatar image

With Windows 10 build 1903 (latest as of may 2019) I got ONLY green led even if I had all the developer options etc OK. The blue led appeared ONLY after un-installing the SOCxxx device driver from the device management and retrying the USB connection.

edit flag offensive delete publish link more
0

answered 2019-08-18 20:34:24 +0200

jpjolla gravatar image

updated 2019-08-18 23:51:27 +0200

problem is in the screeshot, the 3G / wifi etc. thing. probably, but the link below the picture has intersting discussion about coarse and fine location services. I was aboutvto test commands but , adb. pm.?

https://github.com/microg/android_packages_apps_GmsCore/issues/366#issuecomment-427252345

image description

https://github.com/microg/android_packages_apps_GmsCore/issues/366#issuecomment-427252345

edit flag offensive delete publish link more
Login/Signup to Answer

Question tools

Follow
32 followers

Stats

Asked: 2019-07-18 21:13:08 +0200

Seen: 8,861 times

Last updated: Oct 08