A cikin sababbin sabuntawa waɗanda aka saki daga GrapheneOS, masu haɓakawa sun ƙara jerin sabuntawa, haɓakawa kuma sama da duk wasu quite ban sha'awa sabon fasali, daga cikin abin da shigar da PIN mai lalata.
Ga waɗanda basu san GrapheneOS ba, Ya kamata ku sani cewa wannan a ingantaccen sigar lambar lambar AOSP (Android Open Source Project) tsara don inganta tsaro da sirrin masu amfani. Ya fito kamar cokali mai yatsa na AndroidHardening kuma yana mai da hankali kan fasahohin da ke ƙarfafa keɓantawar aikace-aikacen, ikon samun dama, kariyar kernel na Linux, takamaiman kulawar izini, keɓaɓɓen keɓantawa, tsaro na cibiyar sadarwa mara waya, ɓoyayyen ci gaba da rashin ayyukan Google.
Wasu sanannun fasalulluka na GrapheneOS sun haɗa da aiwatar da malloc ɗin sa, ingantaccen sigar libc, haɗawar AOT maimakon JIT, hanyoyin kariya a cikin kernel na Linux, tsauraran izini na izini, ɓoyayyen ɓoyewa a matakin tsarin fayil, da keɓance ayyukan Google. , a tsakanin sauran abubuwan tsaro da keɓantawa.
Menene sabo a cikin GrapheneOS?
A cikin sabon tarin da aka gabatar na GrapheneOS, wanda ya kasance daga 31 ga Mayu zuwa yau (An fitar da 3), an aiwatar da gyare-gyare daban-daban da sabbin abubuwa kuma daya daga cikinsu, kamar yadda muka ambata a farkon, shine gabatarwar. "PIN mai lalata". Wannan sabo aikin kulle bayanan gaggawa akan na'urar zata bawa masu amfani damar saita ƙarin kalmar sirri da lambar PIN, wanda shigarsa zai haifar da goge duk maɓallan da aka adana akan hardware, gami da waɗanda aka yi amfani da su don ɓoye bayanan da ke kan tuƙi. Bugu da ƙari, wannan aikin zai goge eSIM kuma ya sake yin na'urar.
Wannan aikin (wanda aka gabatar a v2024053100) ne An ƙirƙira don yanayi inda mai amfani zai iya kasancewa ƙarƙashin wasu haɗari ko matsa lamba don buɗe allon ko kuma idan akwai haɗarin fadawa cikin hannaye mara kyau. Ta shigar da lambar PIN mai lalata, mai na'urar na iya kulle bayanan ba tare da jurewa ba, tabbatar da cewa babu wani da zai iya samun damar shiga.
Wani canji wanda aka aiwatar shine yana kashe kafofin ma'ajiya mai karɓuwa Ba a yi amfani da shi don guje wa rikice-rikice a cikin fasalin kalmar sirri ba tare da ƙara girman iyakar kalmar sirri zuwa haruffa 128.
Bayan haka, An tsawaita aiwatar da aikin share-ba tare da sake yi ba (Sigar 2024053100) don haɗawa da goge bayanan da za a iya zubarwa akan SSD. Wannan ya wuce goge maɓallan maɓallan kayan masarufi kawai kuma yana tabbatar da cewa babu wani bayanai da za a iya dawo dasu daga tsarin aiki ta hanyar cire maɓallan da ake buƙata don ɓoye bayanan. Ana cim ma wannan ta amintaccen share abubuwa da suka haɗa da maɓallan ɓoyayyen maɓalli da aka samo, rufaffen maɓalli, da bayanan da za a iya zubarwa akan SSD wanda ake amfani da shi don samo maɓallan ɓoyayyen maɓalli na kowane mai amfani.
Bugu da ƙari, (a cikin sigar 2024060500) An yi gyare-gyare zuwa ma'aunin dacewa da Google Play a cikin akwatin yashi don ɗaukar canje-canjen da DynamiteLoader ya gabatar, gami da sabon alamar alama a cikin Ayyukan Play 24.22. Wannan zai tabbatar da ci gaba da ingantaccen dacewa tare da ƙa'idodin Google Play a cikin akwatin sandbox na GrapheneOS.
Kafaffen batu wanda ya hana ku shigar da kalmomin wucewa tare da sarari saboda kuskuren kula da sandar sararin samaniya akan madanni na zahiri. Wannan gyaran zai kawar da bug ɗin Android wanda ya kasance kusan shekaru 8,5 kuma zai ba masu amfani damar shigar da kalmomin shiga daidai akan allon kulle.
Na Sauran canje-canjen da aka aiwatar:
- An sabunta reshen kernel 5.10 zuwa sabon bita na reshen GKI LTS.
- An sabunta reshen kernel 5.15 zuwa sabon bita na reshen GKI LTS.
- An sabunta reshen kernel 6.1 zuwa sabon bita na reshen GKI LTS.
- An kashe aikin gajeriyar hanyar allo na kulle kamara lokacin samun damar kyamara yayin kulle yana kashe.
- Vanadium: An sabunta shi zuwa sigar 125.0.6422.165.0
GmsCompatConfig: An sabunta shi zuwa sigar 116
A ƙarshe, yana da daraja ambaton cewa ga mai sha'awar ƙarin sani game da shi, Kuna iya duba cikakkun bayanai a cikin bin hanyar haɗi.