[BUG] gateway.instagram.com not unpinned

[tokit3mx]

Describe the bug
A clear and concise description of what the bug is.
gateway.instagram.com fails to get unpinned.

Method
Tried both patched apk with gadget, and raw apk with the script ran on it.

App info

• Version: instagram-v361.0.0.46.88
• Arch: arm64-v8a

Device info

• Model: oukitel wp5 pro
• Android Version: 11
• Magisk 8e82113b (27007)
• Frida and frida server 16.6.4

Proxy tool
mitmproxy: v11.1.0
Proxying with proxydroid to mitmweb using socks5.

Logs
Mitmproxy logs:
[00:03:18.050][192.168.0.4:47908] server connect 57.144.110.145:443 [00:03:18.107][192.168.0.4:47908] Client TLS handshake failed. The client does not trust the proxy's certificate for gateway.instagram.com (OpenSSL Error([('SSL routines', '', 'ssl/tls alert certificate unknown')])) [00:03:18.107][192.168.0.4:47908] client disconnect [00:03:18.108][192.168.0.4:47908] server disconnect 57.144.110.145:443
Frida logs are fine. But here you go.
<> frida -U -f com.instagram.android -l ~/Downloads/instagram-ssl-pinning-bypass.js ____ / _ | Frida 16.6.4 - A world-class dynamic instrumentation toolkit | (_| | > _ | Commands: /_/ |_| help -> Displays the help system . . . . object? -> Display information about 'object' . . . . exit/quit -> Exit . . . . . . . . More info at https://frida.re/docs/home/ . . . . . . . . Connected to WP5 Pro (id=OUKIWP5Pro198193) Spawning com.instagram.android... [*][*] Waiting for libstartup.so... [*][+] Hooked to IGTigonConfig.$init Spawned com.instagram.android. Resuming main thread! [WP5 Pro::com.instagram.android ]-> [*][+] Hooked checkTrustedRecursive [*][+] Hooked SSLContextInit [*][+] Found libstartup.so at: 0x7a56fda000 [*][+] Hooked function: _ZN8proxygen15SSLVerification17verifyWithMetricsEbP17x509_store_ctx_stRKNSt6__ndk212basic_stringIcNS3_11char_traitsIcEENS3_9allocatorIcEEEEPNS0_31SSLFailureVerificationCallbacksEPNS0_31SSLSuccessVerificationCallbacksERKNS_15TimeUtilGenericINS3_6chrono12steady_clockEEERNS_10TraceEventE [*][+] Disable tigon [*][+] Disable tigon [*][+] Disable tigon [*][+] Disable tigon [*][+] Disable tigon [*][+] Disable tigon [*][+] Disable tigon

Additional context
mitmproxy certificate properly installed in system certificate store, so its something that has to be wrong with this script.
Everything else is properly proxied and other apps have no problems.

[Alserxxx]

exactly the same problem, but with version 364 and 363

[tokit3mx]

exactly the same problem, but with version 364 and 363

In case you don't mind using an older version of Instagram - this is a working patched apk repo. DO NOT interfere with any trustmanager or apply scripts with frida as it is ready out of the box (i mean unpinned). https://github.com/tanu360/Instagram-SSL-Pinning-Bypass
Confirmed it is working myself. Not sure how to make it work on newer versions. The repo I mentioned doesn't appear to be using frida under the hood. Possibly you could unpack and disassemble dex to smali of both his (tanu360's) modifed apk, and your own same version's base - and then diff them both, to actually know what tanu360 has done.