It feel like we’re losing to Google, day by day. They aren’t killing AOSP directly, but they are making it useless step by step.
Now it’s Google Play Services, Play Integrity checks, installation source checks… more and more apps just refuse to run without GMS. Banking apps? Most of them don’t work. And it’s only getting worse. I run vanilla AOSP on my main profile, no Play Services. I keep GMS only in my work profile for the apps that absolutely need it. But now even some regular apps that don’t need any play services won’t work on my main profile anymore. They simply block your from running , like le chat.
Maps is google’s most important app there is no way to run without play services. Sure we can use webview or gmaps wv, but they don’t provide turn-by-turn directions. Earlier maps used to work without play services, but two years ago, an update stopped it from working. Now that old version is out of date and no longer works.
Google is slowly making GMS very important to run. The problem with GMS is they require to run as system app and has to have all the permissions by default.
Hope EU puts pressure to make google allow apps to run independently without GMS or atleast install them as user apps(like graphene os sandboxed play services).
If we keep going on like this, AOSP can only run fdroid apps in the future.
Real question is
Why can’t a rooted android fake play services?
If they really had interest in stopping you they could definitely stop you. That’s the direction they’re heading with all of these apps that are doing the integrity check. It’s just a matter of time that it’ll take for them to do it gradually enough not to make everything backward compatible explode.
Microg and stuff like that are probably on their way out within the next few generations.
When postmarket finally manages to reverse engineer the modems and the voice and support something with a half decent camera I’ll readily leave the ecosystem.
Afaik this is possible, but the banking apps don’t like rooting either. No achievement there.
why can’t we sandbox them in a goody two-shoes kind of environment?
idk, maybe the app wants to check if it runs on normal phone hardware, not some reverse engineering virtualization? Or something like: if the OS is verified and unrooted, no secrets get out?
Funny thing is I can use banking grapheneOS phone and the main Health insurance app, but not the Health Insurance TeleDoc-App. Personally I think apps that need GSM or at least be officially google boot verified are apps made by lazy morons, but that’s just a guess.
that’s exactly it, what i’m questioning though is why can’t we make a virtualized environment that can fool these apps since they all use the same api and are all ‘lazy’ in their implementation (not all of them though).
I thought that was the reason for the cloned app that runs outside the Insular sandbox. I am dumb on the subject and making assumptions though.