GrapheneOS v2023041100 Released: April Security Patches

“As with the March release, the monthly Android Open Source Project and stock Pixel OS release were rescheduled to the 2nd Monday of the month instead of the 1st Monday.”


TP1A.221005.002.B2.2023041100 (Pixel 4, Pixel 4 XL) — extended support release for legacy devices with frozen 2022-11-01 patch levelTQ2A.230405.003.2023041100 (Pixel 4a, Pixel 4a (5G), Pixel 5, Pixel 5a)TQ2A.230405.003.E1.2023041100 (Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, emulator, generic, other targets)

Changes since the 2023040400 release:

full 2023-04-01 security patch levelfull 2023-04-05 security patch levelrebased onto TQ2A.230405.003.E1 releaseSettings: add toggle for controlling direct access to Tensor hardware accelerators (TPU, GXP) by certain Google apps for users to choose whether Google apps can use more than the portable Android hardware acceleration features such as the neural net APIPixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro: add dynamic control over direct TPU accessPixel 7, Pixel 7 Pro: add dynamic control over GXP access by Google Cameraadd support for providing Camera vendor extensions on Pixels via Pixel Camera Services app (at the moment, only the Camera2 Night extension is available for certain devices and CameraX extensions aren’t available yet)add support for runtime resource overlays (RROs) to exec spawningremove support for disabling app visibility filtering since our Pixel eSIM firmware app integration depends on itchange standard Android package installer behavior to preserving packages being disabled after updating themLauncher: add padding to background behind app drawer search bar to work around upstream layout issueContacts: use proper theme for AndroidX dialogs to fix crashSystem Updater: directly enforce respecting network type parameter instead of it solely depending on the JobScheduler constraintSystem Updater: improve code quality and robustnessSystem Updater: ask the OS to allocate required storage space before starting update downloadSELinux policy: add back app_data_file execute for adb shell run-as domainSandboxed Google Play compatibility layer: coerce Play Store into updating disabled apps by hiding disabled state from itSandboxed Google Play compatibility layer: add infrastructure for bypassing permission requirements of services provided by Play servicesGmsCompatConfig: update to version 45GmsCompatConfig: update to version 46TalkBack (screen reader): update base code to 13.0 and overhaul our changes for it including removing proprietary library dependencyTalkBack (screen reader): update dependencieskernel (5.10, 5.15): fix build for non-arm64 architectures

Full Changelog

Leave a Reply

Your email address will not be published. Required fields are marked *