Form that committ, it seems to me that LOS is finally allowing signature spoofing for microg (under certain conditions). Have they finally changed their mind?
Have they finally changed their mind?
Yes. https://review.lineageos.org/c/LineageOS/lineage_wiki/+/383751/2/pages/faq.md
Cool, but I wonder why they finally agreed on signature spoofing. IIRC, the were quite adamantine on not allowing it.
I don’t know but the nature of the patches shifted over time. I believe initially, they allowed any app (or any system app?) to spoof signatures which I’d also agree to not allow. The current patches only allow it for the Google Play services and Play Store which is a much smaller attack surface.
Big if true! I am going with LineageOS4microg for more than a year now, just because it is not possible to get a decent location working on pure LOS without Gapps.
Sweet! Though it does say that it only works when
- Build is debuggable (userdebug/eng)
I wonder how many custom ROMs ship like this to the end user
AFAIK all custom roms are released as userdebug build.
Pretty sure GrapheneOS isn’t. Though I would expect most “tinker ROMs” to be userdebug though.
I don’t know. Mine (surya) says “userdebug” under kernel version. Is it the same?
