• Introducing XDA Computing: Discussion zones for Hardware, Software, and more!    Check it out!

[APP][XPOSED][6.0+] XPrivacyLua - Android privacy manager

Search This thread

Fif_

Senior Member
Jun 5, 2013
1,147
1,207
Google Nexus 10
Google Nexus 4
@Fif_ Experimentally found that the MAC address is blocked by BlockGuardOs. Unusual, right?)
Maybe not that unusual if the app in question finds the MAC address by reading a file. BlockGuardOS.open can prevent quite a bit of leaking by blocking access to /proc, /sys, /persist, etc, some of these contain the MAC address.
Do you known which files were blocked by the hook? The last blocked one will be shown in XPL Pro.
The full list is available in logcat.
 
Aug 26, 2021
20
0
Maybe not that unusual if the app in question finds the MAC address by reading a file. BlockGuardOS.open can prevent quite a bit of leaking by blocking access to /proc, /sys, /persist, etc, some of these contain the MAC address.
Do you known which files were blocked by the hook? The last blocked one will be shown in XPL Pro.
The full list is available in logcat.
The last blocked is proc/bus/input/devices.
The application is still the same - Device Info HW. This hook also locks the name of the battery manufacturer, which is great. But it also affects app access to the media library. That is, I can't attach a picture to telegram because of it. Is there any way to adjust this?

Also, additionally wanted to know if there are any hooks to block camera sensors and core name?
 

stathis

Senior Member
May 10, 2015
139
9
Xiaomi Poco X3 NFC
Hi, i have Xiaomi Poco X3 NFC MIUI EEA GLOBAL 12.0.8 stable android 10, I have try the app XPrivacyLua
with EdXposed, lsposed and some more but nothing working, i try the games marvel future revolution and marvel future Fighs, disable the option see another apps but still this 2 games detect the apps have on my phone
 

heinhuiz

Senior Member
Nov 26, 2011
903
455
Xiaomi Mi A1
Redmi K20 / Xiaomi Mi 9T
Hi, i have Xiaomi Poco X3 NFC MIUI EEA GLOBAL 12.0.8 stable android 10, I have try the app XPrivacyLua
with EdXposed, lsposed and some more but nothing working, i try the games marvel future revolution and marvel future Fighs, disable the option see another apps but still this 2 games detect the apps have on my phone
Most likely that is because these games don't look for the app you use to cheat itself, but for the code or method they use. You can try BlockGuardOS.open discussed just above your question. If the games look for a specific file, that hook might just block that. Read a bit back to learn more about that hook.
 
Aug 26, 2021
20
0
On my device, Device Info HW can't access the camera manufacturer and type when Use tracking is checked. Strangely, nothing is logged then 🤔
I even put all the recommended hooks from Fif, and extra hooks. But the camera modules are not hidden, and it shows 2 out of 5, even if the hooks are included or not. But it's not so important, really. I would like to configure BlockGuardOs for media access. That's what's more important. And if possible hide the name of the kernel.
 
Aug 26, 2021
20
0
Guys, help me set up BlockGuard to be able to attach photos and videos in messengers. This hook is very good, except for this one. Couldn't figure it out myself. Help, if it's not too hard.
 

stathis

Senior Member
May 10, 2015
139
9
Xiaomi Poco X3 NFC
Hi, i have Xiaomi Poco X3 NFC MIUI EEA GLOBAL 12.0.8 stable android 10, I have the app XPrivacyLua with Lsposed and i try the games marvel future revolution and marvel future Fighs, disable the option see another apps but still this 2 games detect the apps have on my phone, other apps i try working normal, but this 2 apps when i open Lsposed and go inside in the module xprivacy and select it, and inside the xprivacy with option see othe apps enable
Screenshot_2021-09-25-16-29-49-131_com.netmarble.mherosgb.jpg
Screenshot_2021-09-25-16-28-51-404_com.netmarble.mherosgb.jpg
the app open and say security alerts but without say hack, without select it say hack very strange
 
Aug 26, 2021
20
0
Guys, how do I allow the BlockGuardOs hook to access multimedia files (photos, videos?)? It's a great module that blocks a lot of leaks, but I'm willing to give it access to media content. Maybe even the whole emulated/0 directory. is it possible to do that? That's the last thing I need for my "privacy kit" =)
 

ahilliard

Senior Member
Nov 19, 2011
94
31
Samsung Galaxy S5
LG G5
So this "Activation Scope" is new to me too and I just want to make sure I understand all this so it is 100% crystal clear to me so I wont accidently boot loop my device because I accidently ASSUMED something wrong.

Am I correct in my understanding of the following:

1) That when "Activation Scope" of "OFF" for a particular module, then that xposed module will hook into all apps?
2) When you turn on "Activation Scope" for a particular module, then that module will ONLY hook into the apps in the scope "list"?
3) I don't see an "Android (framework)" in the app list, so it is really called "Android System"?
Just confirming one more time as I'm still unclear what "being restricted" means. In EdXPosed (or LSPosed, I assume), for the XPrivacyLua module, should I:
  1. Enable Activation Scope and
  2. Enable (select) only
    1. "Android System" android
    2. "Settings Storage" com.android.providers.settings
Or is it that I should select all *except* system and settings storage? Confirmation (and maybe a clarification in the docs / FAQ?) would be a great help. Thanks for your help!
 
Last edited:

Fif_

Senior Member
Jun 5, 2013
1,147
1,207
Google Nexus 10
Google Nexus 4
Just confirming one more time as I'm still unclear what "being restricted" means. In EdXPosed (or LSPosed, I assume), for the XPrivacyLua module, should I:
  1. Enable Activation Scope and
  2. Enable only
    1. "Android System" android
    2. "Settings Storage" com.android.providers.settings
Confirmation (and maybe a clarification in the docs / FAQ?) would be a great help. Thanks for your help!
Restricting in XPL linguo means having any red or gray ticked categories showing in XPL for an app. Restricted means that XPL is active for a given app.
If you use LSP (or EdXposed in whitelist mode), you also must add any app that is restricted in XPL to XPL's scope (LSPosed) or to the whitelist (EdXposed).
In addition, you must also have Settings Storage and System Framework in the XPL scope (LSPosed) or in the whitelist (EdXposed). This is required for basic XPL functionality. These two apps are automatically added to the XPL scope if you use LSPosed.
 
  • Like
Reactions: TiTiB and ahilliard

ahilliard

Senior Member
Nov 19, 2011
94
31
Samsung Galaxy S5
LG G5
If you use LSP (or EdXposed in whitelist mode) ... you must also have Settings Storage and System Framework in the... whitelist (EdXposed).
Just to confirm: by "in whitelist mode", do you mean what the EdXposed Manager's UI calls "Activation Scope Enabled for XPrivacyLua Module"?

I only want to restrict a few apps, so that whitelist approach sounds fine. For others reading this thread though, is there anything wrong with leaving EdXposed with the default "Activation Scope Disabled" which I guess means XPrivacyLua gets every app in its scope (at some memory or CPU penalty?)

Restricting in XPL linguo means having any red or gray ticked categories showing in XPL for an app.
That was what confused me about the instructions saying "make sure that Android system ... are being restricted" since I assumed it was referring to the XPL user interface not EdXposed. Thank goodness for XPL's red warning saying "Don't restrict Android System or you might bootloop"
 

Fif_

Senior Member
Jun 5, 2013
1,147
1,207
Google Nexus 10
Google Nexus 4
Just to confirm: by "in whitelist mode", do you mean what the EdXposed Manager's UI calls "Activation Scope Enabled for XPrivacyLua Module"?
Sorry, I can't find that setting in EdXposed manager 4.6.2...
I only want to restrict a few apps, so that whitelist approach sounds fine. For others reading this thread though, is there anything wrong with leaving EdXposed with the default "Activation Scope Disabled" which I guess means XPrivacyLua gets every app in its scope (at some memory or CPU penalty?)
Ideally you'd want to have XPL active for every app in Xposed (whether it is LSPosed, EdXposed or rovo89's original Xposed).
Then you can control which app is covered by XPL's privacy protection in the XPL app directly. If the app is unrestricted (white checkbox for all categories), then XPL will not hook that app, and it will proceed as if XPL wasn't there (except for a very short piece of code that's ran once at the app start-up).
This is how things work with the original rovo89 Xposed, or with EdXposed in blacklist mode.
I'm not familiar with what scopes mean in the context of EdXposed, I've only used whitelist and blacklist modes. I've been using LSPosed recently despite the annoyance that I must add newly installed apps to a few Xposed modules that I want to apply to every (user) app, amongst which is XPL.
That was what confused me about the instructions saying "make sure that Android system ... are being restricted" since I assumed it was referring to the XPL user interface not EdXposed. Thank goodness for XPL's red warning saying "Don't restrict Android System or you might bootloop"
You are right that is is confusing. For XPL to work, it needs to be able to hook into both System Framework and Settings Storage. That's why these two apps are in the recommended XPL scope in LSPosed. The XPL author recommends against restricting the Android System in XPL as it could cause bootloops and other serious issues.
 
  • Like
Reactions: TiTiB and ahilliard

Ishta

New member
Oct 14, 2021
4
0
I'm trying to use an app... then install it again and block the app from detecting I previously installed it.

I understand XPrivacyLua will feed the app fake device identifiers. But is it possible to refresh/change the fake device identifiers?

{Mod edited on request of threadowner to make the post on-topic - Oswald Boelcke, Moderator}
 
Last edited by a moderator:
  • Angry
Reactions: christantoan

heinhuiz

Senior Member
Nov 26, 2011
903
455
Xiaomi Mi A1
Redmi K20 / Xiaomi Mi 9T
I'm trying to use an app... then install it again and block the app from detecting I previously installed it.

I understand XPrivacyLua will feed the app fake device identifiers. But is it possible to refresh/change the fake device identifiers?
If you purchased the Pro features, yes. {snip}

{Mod edited on request of threadowner to make the post on-topic - Oswald Boelcke, Moderator}
 
Last edited by a moderator:
Moderator Announcement

On request of the threadowner @M66B posts edited respectively deleted in order to stay on topic in the thread. Please remember, XprivacyLua is meant to protect or enhance your privacy but not to cheat anybody.

Regards
Oswald Boelcke
Senior Moderator
 

M66B

Recognized Developer
Aug 1, 2010
24,848
51,641
Using XPrivacyLua for things other than privacy protection was never and is not supported. Discussions about anything else than privacy is not allowed here and can jeopardize the project. I am not waiting for a notice and take down request, are you?
 

xringo

Senior Member
Jun 3, 2011
306
16
How do I get the fake location to work? I brought it from the companion pro app. I open the app and scroll down to fake location. I select the "Set" location. Give the numbers in and click save. Then open my app up and the location is still my actual location.
 

Top Liked Posts

  • 2
    @Fif_ , can I ask you to take screenshots in Device Info HW? I'm very curious about your XPL setup. If there is any identifying data there, just sketch it.

    Here they are:
    Screenshot_20211128-153736.pngScreenshot_20211128-153741.pngScreenshot_20211128-153746.pngScreenshot_20211128-153753.pngScreenshot_20211128-153758.pngScreenshot_20211128-153809.pngScreenshot_20211128-153820.pngScreenshot_20211128-153825.pngScreenshot_20211128-153835.pngScreenshot_20211128-153839.pngScreenshot_20211128-153845.pngScreenshot_20211128-153916.pngScreenshot_20211128-154053.pngScreenshot_20211128-154059.png
  • 6
    Hi, I've tried to find a solution, but even after trying to search this thread I'm not any smarter.

    I've set the public.storage (via hook definitions) accidently for a wrong app any my device is now boot looping. I disabled xprivacylua via recovery, rebooted, tried to delete its data and enabled it again. I tried other things, but no matter if I install the module from scratch or whatever - it always keeps its settings and I just cannot enable it because it causes boot loop. So I also cannot open the xprivlua app to configure it.
    Is there any way to either remove hook definitions via adb, recovery or reset xprivacylua settings outside of the app?

    I suspect that it stores its configs in /data/system/xlua/xlua.db ? If I delete that file, will it reset everything? And is that the only way to resolve the issue or is there a way to delete a downloaded hook definition?

    EDIT: Solved! I've backed up xlua.db, deleted it, rebooted and finally I was able to use my device again. Then I restored the xlua.db, stopped xlua apps, started them again, and all my work was back and I was able to properly config everything.

    If someone else with a similar problems comes here, I hope it helps.
    5
    Xposed module FakeGapps recently had a patch that circumvents the need for enabling all new apps manually in LSPosed. Is this approach feasible for XPriavcyLua too?

    No, this wouldn't work for XPL.
    4
    discussing IMEI hacking is frowned upon.
    Hello and good morning, @Fif_

    You're absolutely correct with above. We do not accept any discussions about or support for IMEI edits or changes on XDA.
    I just want to add some more clarification. If it's about the repair or restoration of the original IMEI (that's somehow lost during ROM flashing etc.) such support is accepted. Same applies to discussions about or support for IMEI spoofing or masking, which is mainly used out of privacy concerns (but obviously no talks about its use for illegal purposes are of course accepted!). So, it's fine as long as it happens on software level and nothing tampers with the actual IMEI that must remain unchanged.
    3
    @Fif_ , Hi! Please share the current set of hooks that you use yourself. Device Info HW became a bit smarter and now can detect smartphone's GPS-module and not only that... And also a set of custom vaults restrictions. Thank you!
    If you had searched, you would have found that out in https://forum.xda-developers.com/t/...android-privacy-manager.3730663/post-85614991
    3
    At the risk of being a little OT, did anyone get this working on Android 12? A nudge in the right direction is appreciated thanks
    Yes. On a Pixel 6 and using the combination below Xprivacy Lua works. The only (important to some) is that banking apps don't work as they see the root.
    To hide root in this version of Magisk enable Zygisk/Enforce Deny list / add then apps you want to hide root from. However this disables Lsposed and hence Lua. So currently you have to decide which one is more important to you.

    Magisk Canary 23013
    Riru-LSPosed 1.6.3
    Riru 26.1.3

    I have tried various combinations but can't get them both to work with one setup. Looking to return the phone.
  • 304
    XPrivacyLua

    banner_play_store.png


    Really simple to use privacy manager for Android 6.0 Marshmallow and later (successor of XPrivacy).

    Revoking Android permissions from apps often let apps crash or malfunction. XPrivacyLua solves this by feeding apps fake data instead of real data.

    Features:

    • Simple to use
    • Manage any user or system app
    • Extensible
    • Multi-user support
    • Free and open source

    See here for all details, including installation instructions and download link.

    Please read the frequently asked questions before asking a question.

    This XDA thread is about using the latest version of XPrivacyLua. Off topic comments are allowed as long they are related to XPrivacyLua and are in the general interest of the followers of this thread, but anything not related to privacy is not allowed.

    If XPrivacyLua doesn't work and/or when "module not running or updated" is shown, this is almost always caused by an Xposed problem.

    Discussions about purchases are not allowed here, please contact me via here instead.

    XPrivacyLua is being maintained and supported, but new features won't be added anymore.

    Custom hook definitions will always be part of XPrivacyLua, but there will be community support only. This means that I won't respond to questions about defining custom hooks anymore. See this thread for the reasons.

    If you value your privacy, please consider to support this project with a donation or by purchasing pro features.

    XPrivacyLua is not a permission manager, but a privacy manager. XPrivacyLua doesn't block things and doesn't revoke permissions, but does replace real data by fake data. This means you can grant Android permissions to an app and still let XPrivacyLua prevent the app from seeing privacy sensitive data. Revoking permissions can result in an app refusing to work and/or to crash. However, replacing real by fake data generally doesn't let an app crash.

    Currently restrictions are quite crude because they mostly replace real data by no data. For example restricting the contacts app from getting contacts will result in an empty contact list. In the near future it might be made possible to select the data an app may see, for example just one group of contacts.

    About feature requests and bug reports:

    The goal is to have a tool that can properly protect the privacy of many in the near future. However, it isn't paid work, so I do whatever I like whenever I like it.

    You can request features in this XDA forum. I will read them, but I will not respond to them and they might or might not be implemented. If I know for sure something will not be implemented, I will let you know.

    You can report any problem you have here. There will be no issue tracker on GitHub.

    For now I have decided to not implement restrictions that are useful to prevent tracking only. There are simply too many data items that can be used for tracking and it would take too much time to develop restrictions for all these data items.

    The basic idea is to restrict only things that 'define' you, so which contacts you have, where you are, which apps you use, etc.

    Maybe we can widen the definition of things that the core of XPL covers to "What defines you, and what can be used to spie on you"? This would include camera/audio, but not tracking.

    XPrivacyLua is pretty feature complete and will be maintained and supported and when there is a need new hook definitions will be added to better protect your privacy. For the rest this FAQ applies:

    https://github.com/M66B/XPrivacyLua/blob/master/FAQ.md#FAQ4

    As said before, development will also depend on Xposed development, which is just minimal unfortunately.

    XDA thanks and donations are appreciated.

    XPrivacyLua is supported with Xposed only. There is no support for VirtualXposed and TaiChi.


    XDA:DevDB Information
    XPrivacyLua, Xposed for all devices (see above for details)

    Contributors
    M66B
    Source Code: https://github.com/M66B/XPrivacyLua

    Xposed Package Name: eu.faircode.xlua

    Version Information
    Status:
    Beta

    Created 2018-01-05
    Last Updated 2020-03-10
    68
    I have just released beta version 0.5 in the Xposed repository.

    The XPrivacyLua framework and user interface seems to be stable enough to call this a beta release.

    Besides several bug fixes and improvements two new restrictions were added:
    • Read account name, which mostly holds your e-mail address and will be replace by '[email protected]' when restricted
    • Read clipboard, which will be replaced by the text 'Private' when restricted

    Furthermore the ability to restrict Android system (be careful!) and to restrict system apps was added. It is possible to restrict all of these individually (XPrivacy could not do that).

    Be sure to take a look at the help page in the app again (use the ?-icon), since there were some useful hints added.

    If you appreciate what I am building here, please let me know by means of an XDA thanks and/or a donation, so that I don't get the feeling 'What am I doing this for?'.
    59
    I have just released alpha version 0.12 in the Xposed repository.

    This version has been redesigned for Android Oreo compatibility. The user interface and the restrictions work properly for me, but be aware that a lot has been changed on the inside ("it is bigger on the inside", lol), also for earlier Android versions. There is one thing I know of that needs improving and that is that the user interface might be updated too often with a lot of restrictions, which might cause delays and hangs. I will look into this tomorrow.

    This change was necessary, but it was a lot of work, so XDA thanks and donations are appreciated.
    56
    I have just released beta version 0.25 in the Xposed repository.

    Changelog:

    With this release XPrivacyLua restriction's can be compared with XPrivacy's. There are now over 100 restriction definitions!

    XDA thanks and donations are appreciated.
    53
    @CHEF-KOCH You have been given enough time to respond here. Now I just think it is pretty cowardly to write critical about XPrivacyLua, but not to tell what can actually be improved, especially because you were invited to do so.

    I still like to hear how XPrivacyLua can be improved, but I don't want to hear what is wrong with XPrivacyLua. You'll need to keep the scope of XPrivacyLua in mind (in short: privacy, not security), see the opening post and previous discussions about this for more information.

    Also, if you really know better, I like to see an original work from your hands to prove that. Actions speak louder than words.

    As it is now, you are discouraging one of the few people in the world who really did something substantial to improve privacy on Android. And don't go talking about VPNs, TOR, etc because your private information, like your contacts, will still leak.

    I also think you are pretty ungrateful for what I did so far.

    To others: if you see someone reference one of his blogs, please reference this comment in response.

    Edit: if you agree with this, please add an XDA thanks to this comment, so it will show up in the right column as a reference for others.