PQ2A.190205.002.2019.02.05.02 release with the February security update and Chromium 72.0.3626.76 is being pushed out via seamlessupdate.app. There are also improvements to the next generation hardened malloc and a small amount of progress restoring past security features.
Conversation
Pixel 3 / 3 XL updates will remain in the Beta channel for a bit. At this early stage of the project, I only recommend using the Beta channel if you're willing to lose your data and reinstall if it breaks. Bootloader should still be locked, but leave the OEM unlocking toggle on.
1
Restoring the project is going to be a long journey. I'm hopeful that some components like the new hardened malloc implementation will be adopted elsewhere too, and once things are going well again there are a lot of changes that I'd like to upstream as I used to do in the past.
1
2
Lots of this work can be applied to other operating systems, including non-Android Linux distributions and non-Linux-based operating systems. I plan on officially supporting in the hardened malloc implementation at a minimum and it should already be close to working.
So, it wouldn't be _too_ difficult to support multiple heap implementations in our source tree. I would love a patch that would give us the ability to switch between impls at world build time (ie, `make buildworld WITH_JEMALLOC=yes` or `make buildworld WITH_DMMALLOC=yes`.
1
1
We would keep jemalloc as the default for now. As your hardened malloc progresses, we could do experimental package builds, building 34,000+ packages atop your impl.
1
1
Show replies