I was thinking that maybe such idea could be applied on a Linux phone that could run all your banking apps without Waydroid’s “you-must-be-a-hacker” issues, literally by having a half-asleep Android running on another chip, which you can wake up whenever to do your “non-hacker” things, while at the same time you can run the rest of your system (calls, messaging, calculator, calendar, browser…) on your lightweight, private and personalized Linux mobile OS.
I think I would pay big bucks for something like this, and it could serve as a transition device for ditching Android in the future when Tux finally governs over the world.
What do you guys think?
That already exists with waydroid. It’s what people use on the Librem 5 and PinePhone to run linux apps. It would save much more battery if it were at OS level, but I assume that would be akin to merging Android and mobile linux distros and a lot more work.
Why do you have the impression that waydroid has a “you must be a hacker” issue?
Does waydroid support safetynet? That seems to be what op is talking about
SafetyNet is deprecated and replaced by “Google Play Certification” checks. This means any custom OS may be blocked. Its pretty horrible.
Safetynet worked at some point, but it’s proprietary tech that changes on a whim. Any other emulator or container will probably run into the same problem. Starting an entire new emulator with the purpose of circumventing safetynet or other proprietary attestation is an effort that could’ve gone into making it work on waydroid instead.
That’s specifically for Magisk.
This is for Waydroid.My understanding is the Google Integrity API is not the same as Google Play Protect:
The Play Integrity API helps you check that interactions and server requests are coming from your genuine app binary running on a genuine Android device
[…]
Determine whether Google Play Protect is turned on and whether it has found risky or dangerous apps installed on the deviceGoogle Play Protect seems to function more like an antivirus
Google Play Protect includes on-device capabilities that help keep devices and data safe. These on-device services integrate with cloud-based components that allow Google to push updates that constantly improve their functionality.
Because Play Protect works doesn’t mean Integrity API will.
You need Google Play Certification to pass Play Integrity checks.
For Waydroid this is the only step you should need, unless you add Magisk.
Magisk breaks other checks.
Free of known malware: Determine whether Google Play Protect is turned on and whether it has found risky or dangerous apps installed on the device.
Where did you get that second screenshot from? It’s not available on my Waydroid instance.
deleted by creator
I doubt it does, google would never approve that. Maybe if it would pretend to be an other, genuine device, but I’m not sure the devs want to deal with that
AFAIK waydroid doesn’t pass the AVB (Android Verified Boot) check
It passes the basic one?
Damn, interesting. Only works with Google Tracking at root level, but at least it works… for now.
If I am not mistaken, not all apps run on Waydroid, specially banking stuff will freak out because they have systems to know that you are running on true, verified hardware or not.
I’m afraid banking apps cannot be solved. They already require you to install sketchy system mods if you have just rooted your genuine phone with the original OS
I mean, with this dualOS device it would be solved… And recognition of Linux mobile would increase, hopefully making banking apps look for other systems of “verification”.
No, not that easily. Your phone could have 2 flash storages and do all the android stuff in there, with hardware TPM, A/B root, verified boot, rollback prevention, not rooted etc.
Ironically this is not even enforced by those shitty banking apps, GrapheneOS is way more secure and will probably be blocked by some apps soon, as they are not a “google certified OS”, replacing the old SafetyNet.
…not all apps run on Waydroid…
https://wiki.archlinux.org/title/Waydroid#ARM_Apps_Incompatible
https://docs.waydro.id/faq/community-projects-we-like
I hope your big bucks are big millions
Anyway, full and very easy android app support would be enough. Imaging installing an android apk app via your fdroid software store without thinking about it. Just like a flatpak. That’s the future I want to live in.
Installing F-Droid via Waydroid should do exactly that, no?
Yes but the problem is that currently banking apps and possibly other “legally important” apps will freak out running under Waydroid.
Linux market share is increasing. If we can get the phone I described, banking apps will adjust in 5 years if enough people demand it.
Anyway 2fa banking apps should become open source as well and work on any 2fa app. It’s ridiculous that you have to use their app for it.
That’s probably more work to do
I would like such a device too.
I guess something like what you’re talking about or some kind of Virtual Machine to run these difficult apps would be perfect.
Or the ability to dual boot.
Basically, I would want to do everything I can on a PC, on a smartphone 😅
I thought the whole point of android is to be open source. We shouldn’t let Google own it
BlackBerry was managed to run Android next to QNX somehow (BB OS10)
Pretty sure it just had an emulation layer for Android. I had a Passport when it was new, and I remember the phone was emulating a version of Android a few years old, so a few apps didn’t work properly
Yeah, it was already on old enough version when it was a thing.
But to my understanding, it wasn’t emulation, rather having a compatibility layer between QNX and Android.
so AFAIK, it was rather like Proton on Linux? but maybe I’m totally wrong here, haha.
I worked at BlackBerry (many years later) and this was my understanding. They were brutally reimpmementing all the Android APIs
I kinda liked how Android apps almost integrated to the Hub. 😄
I was really impressed with the hub. Such a well-implemented feature. I also miss the led that would blink a different color for different types of notifications or conversations
I think you have it right, I was being clumsy with my phrasing
Alternative utopia: do online banking in a desktop web browser while seated comfortably at home, rather than on a street corner in the sun squinting at a tiny screen.
Some banking services do only work through the app, believe it or not, as it is “the trusted device”.
Indeed, this is the case with Revolut, a bank which literally requires iOS or Android spyware to sign up and use. But it’s rare. And a reason to NEVER USE that bank.
I agree, but if you’re like me, situations arise where I’m not at home, and unexpectedly spending money. Being able to look at my bank on my phone in the moment helps me judge if what I’m about to do is worth it.
Ok boomer? This is just out of touch with modern day reality.
This should work on Jolla’s Sailfish OS phones as they’re running a legit Android in a sandbox. Unfortunately their hardware support is pretty abysmal if you want all features working - and since it’s legit Android it’s also not free (monetary) and Sailfish OS’s UI toolkit is also not free (freedom).
edit: also, last time I checked, Bluetooth support for Android apps is terrible, basically only audio work(s|ed).
deleted by creator
Multi-core processors already do this. Give the Android OS a Core or 4, the Linux OS a Core or 4(or however many). The power management already works in the suggested configuration as well: High-power cores are put to sleep when not in use.
The remaining question is whether the hardware virtualization is in place on the specific ARM chip in question to give/confine the one OS(virtualized/parallelized, not dual-booted) a specific Core or set of cores. It could be desirable to give Linux and Android each a low-power core and have them dynamically split the rest, with Linux controlling prioritization.
There are high-powered Linux apps. Moreso than Android in-fact.