Open
Description
Is your feature request related to a problem? Please describe.
Waydroid currently is based on LineageOS based on Android 11.
LineageOS is neither as secure, nor as private as currently possible on Android, from the the work of GrapheneOS.
Security:
- hardened malloc
- secure app spawning
- vanadium browser and webview
- hardened PDF viewer
Privacy
- storage scopes (GOS)
- contact scopes (GOS)
- network permission (GOS)
- Captive portal check (which will always ping Google!) disabled or on custom server
- Same for Connectivity check
- (SUPL server replacement and metadata cleaning. Like a VPN for A-GPs)
Compatibility
- GrapheneOS's sandboxed Play Services
- native code debugging switch
Describe the solution you'd like.
Build the Waydroid image based on GrapheneOS.
Describe alternatives you've considered.
Waydroid currently is pretty insecure as it is very outdated. Not using it is my poor alternative.
BlissOS in a VM didnt work for me, but would be way more secure.
- CaptivePortalController on F-Droid can replace Captive portal and ConnectivityCheck server
- Magisk module for changing SUPL server
Additional context
Awesome project! Thank you so much for just running Android on Linux, on Wayland! Using a CLI! And all that App integration, its amazing.
But first it needs to update from Android 11
Metadata
Metadata
Assignees
Labels
No labels