LightBlog

lundi 2 mars 2020

WhatsApp prepares to let you password protect your chat backup

Facebook-owned WhatsApp is undoubtedly the most popular messaging app in the world. It has over two billion users around the world and in order to keep its user base intact, the platform keeps adding new features with each successive update. Earlier this year in January, WhatsApp finally rolled out its dark theme in a beta version of the app and the company received regulatory approval for operating its payments feature in India. Now, according to a recent post from WABetaInfo, the latest beta release hints at an upcoming security feature to help you protect your chat backups.

WhatsApp

The new feature was spotted in WhatsApp beta v. 2.20.66 and, as its name suggests, it will allow you to password-protect your backup on Google Drive. As seen in the attached screenshots, the feature appears in the Chat backup settings and lets you easily encrypt your chat backups with a password so that neither WhatsApp nor Google is able to view its contents.

It’s safe to assume that restoring an encrypted backup will require you to enter your password, without which you won’t be able to access your saved messages. As of now, the feature is in its alpha stage of development and WhatsApp might make some significant changes to it before it’s release. It’s also worth noting that the feature isn’t available on the latest beta release and WABetaInfo managed to enable it manually.


Source: WABetaInfo

The post WhatsApp prepares to let you password protect your chat backup appeared first on xda-developers.



from xda-developers https://ift.tt/2VE6Wr3
via IFTTT

Google Cloud Next 2020 is now an online-only event over coronavirus fears

The ongoing coronavirus outbreak, now called COVID-19, has infected over 89,000 people globally with the global death toll surpassing 3,000. Not only has the virus had an adverse effect on the global supply chain, but it has also resulted in several major events being canceled. For instance, the Mobile World Congress trade show in Barcelona this month was canceled due to the growing coronavirus threat, with a number of companies pulling out of the event even before it was officially canceled. Earlier this month, Chinese OEM Xiaomi hosted an online-only launch event for its flagship Mi 10 series as a preventive measure and that seems to be the only course of action for other companies going forward. As per a recent blog post from Google, the company’s upcoming Cloud Next 2020 event will also be an online-only affair.

The event, which is scheduled for April 6-8, will now feature streamed keynotes, breakout sessions, interactive learning and digital “ask an expert” session with Google teams without the risk of travel. Google has also waived off the registration fee for the event and all the attendees who had already registered will be getting a refund. The in-person bootcamp at Next 2020 stands canceled and those who had registered for it will also be getting a full refund from the company. Those who had registered for certification testing are now required to contact Google’s dedicated certification support team and reschedule their certification visit or arrange a refund as needed. Additionally, Google will also be canceling all attendees’ hotel reservations made through the conference website. As of now, the company is planning a packed agenda with “hundreds of sessions” for the upcoming Google Cloud Next ’20: Digital Connect event and will be releasing additional details about the sessions on the Next ’20 website in the coming weeks.


Source: Google Cloud (1,2,3)

The post Google Cloud Next 2020 is now an online-only event over coronavirus fears appeared first on xda-developers.



from xda-developers https://ift.tt/2TiaDB3
via IFTTT

[Update 3: Launch Date] OPPO teases its smartwatch with a square design

Update 2 (03/02/2020 @ 5:00 PM ET): OPPO will unveil the OPPO Watch, the company’s first smartwatch, alongside the Find X2 on March 6th.

Update 2 (02/26/2020 @ 06:40 AM ET): We now have another look at the upcoming OPPO smartwatch.

Update 1 (02/18/2020 @ 10:50 AM ET): OPPO’s Brian Shen has shared another image of the upcoming OPPO Watch.

At last year’s OPPO Inno Day event in China, the company confirmed that it will be launching a variety of new products in Q1 2020. The company revealed that following the launch of the Reno3 and Reno3 Pro 5G, it will be bringing a new smartwatch, smart wireless headphones, a 5G hub, and AR glasses to the market. At the time, OPPO had been teasing a new smartwatch for a while and the company’s VP, Head of Research, Levin Liu, also confirmed that the upcoming OPPO smartwatch will be unveiled in Q1 2020. As expected, OPPO has now released the first teaser of the upcoming smartwatch which showcases its Apple-watch like square design.

OPPO smartwatch

The teaser in question was recently shared by OPPO’s VP Shen Yiren on Weibo, who now goes by the name ‘Confident eyebrows’ on the platform. The image showcases a square smartwatch with rounded corners and a slightly curved display. The watch has a gold-colored case with two buttons on the right edge and a cream-colored watchstrap. The design is undeniably inspired by the Apple Watch, much like the Xiaomi Mi Watch from last year, to the point that even the wallpaper in the teaser looks like something straight from the Apple’s collection.

As of now, OPPO has released no technical information about the upcoming smartwatch. However, the company did talk about having the “technological know-how” to enable eSIM support at the Inno Day event, which leads us to believe that the smartwatch will most likely feature eSIM support.

Source: Weibo


Update: New Image

The last teaser of the OPPO Watch showed off the square display with curved edges, two side buttons, gold finish, and the overall Apple Watch-like design. Today, Brian Shen has shared a new image of the watch, this time focusing on the curved screen and 3D glass. In the tweet, he claims it will be a “game-changer.” Looking beyond the marketing-speak, however, there doesn’t appear to be anything unique about this design. The new image also appears to show a leather watchband, compared to the previous image that featured a silicone band. It’s hard to tell from the image, but this one looks to be silver.


Update 2: Another look at the upcoming OPPO smartwatch

Another render of the OPPO smartwatch was leaked, further highlighting its screen curve, Apple Watch-like design and software.

The Settings UI does not look like Android Wear OS, so it is possible that this could be a custom OS. However, the leaker does mention that the watch runs on “Android system, not a large bracelet” (rough translation), which implies that it is indeed an Android-based smartwatch and not just a smart fitness tracker.

Source: Weibo


Update 3: Launch Date

OPPO has announced that the OPPO Watch will be unveiled at the Find X2 event. The Find X2 was originally slated to be announced at MWC, but after the show was canceled, they rescheduled the event for March 6th. We will likely see more announcements at the event as well.

The post [Update 3: Launch Date] OPPO teases its smartwatch with a square design appeared first on xda-developers.



from xda-developers https://ift.tt/316YCRx
via IFTTT

[Update: Fixed in March Update] How to fix charging and end call sounds on the Google Pixel after the Android 10 update

Update (3/2/20 @ 4:50 PM ET): The Pixel 2‘s missing charging/end call sound bug has been fixed in the March 2020 update.

With the Android 10 update, some owners of the first and second-generation Google Pixel smartphones noticed that several UI sounds were different. For example, some users noticed that the end call and screen locking tones were missing while others noticed that the charging sound was different. If you have noticed this weird behavior on your Pixel after updating to Android 10 and are wondering what might possibly be the reason, we have the answer — as well as the solution.

As it turns out, the culprit seems to be the relocation of the system sound files. On Android 9 Pie and before, Google used to store UI‌ sounds such as docking/undocking sounds and screen locking sounds in /product/media/audio directory. That changed with Android 10, which has moved the sounds to a new location: /system/media/audio. The problem is Android 10 on the Pixel and Pixel 2 thinks the UI sounds are still in the old directory. As a result, when the system tries to access sounds from this old location and can’t locate the files, Android falls back to the older UI sounds embedded in framework-res.

According to XDA Member co4, you can easily fix this issue by tweaking the preference of the Global system settings. To do so set up ADB on your PC, connect your Pixel or Pixel 2 and run the following commands from the command prompt or Windows PowerShell.

adb shell settings put global car_dock_sound /system/media/audio/ui/Dock.ogg
adb shell settings put global car_undock_sound /system/media/audio/ui/Undock.ogg
adb shell settings put global desk_dock_sound /system/media/audio/ui/Dock.ogg
adb shell settings put global desk_undock_sound /system/media/audio/ui/Undock.ogg
adb shell settings put global lock_sound /system/media/audio/ui/Lock.ogg
adb shell settings put global low_battery_sound /system/media/audio/ui/LowBattery.ogg
adb shell settings put global trusted_sound /system/media/audio/ui/Trusted.ogg
adb shell settings put global unlock_sound /system/media/audio/ui/Unlock.ogg
adb shell settings put global wireless_charging_started_sound /system/media/audio/ui/ChargingStarted.ogg  

These commands will change the path for each UI‌ sound from /product/media/audio to /system/media/audio, making sure the system is now looking under the correct location when requesting system sounds.

There’s no need to reboot the device after running the above ADB commands. Note that this issue shouldn’t affect the Google Pixel 3, Pixel 3a, or Pixel 4 because in the firmware for these three devices, the UI sounds are already located in /product/media/audio. It only affects Pixel and Pixel 2 owners who had performed a clean install of Android 10 i.e. by flashing the Android 10 system image. If you updated from Android Pie to Android 10 with the official OTA, you should be fine — as long as you don’t perform a factory reset.


Update: Fixed in March Update

The March 2020 update that was released earlier today has fixed a weird issue that cropped up earlier this year. The missing lock and unlock sound effects have finally returned according to several users on Reddit. This was a strange bug and we’re glad it has finally been addressed.

Via: Reddit

The post [Update: Fixed in March Update] How to fix charging and end call sounds on the Google Pixel after the Android 10 update appeared first on xda-developers.



from xda-developers https://ift.tt/2rYjayh
via IFTTT

Verizon will carry Motorola’s flagship phone, the Motorola Edge+

Verizon is one of the biggest companies pushing 5G here in the U.S. They have several 5G-capable smartphones in their lineup and have continued to light up their mmWave 5G network in more cities. Last week, the company was demonstrating its mmWave 5G network speeds when they spilled the beans that they will be carrying an upcoming Motorola phone with 5G, which should be the Motorola Edge+.

The press release was about the company achieving 4.2 Gbps on its 5G network, but they also mentioned an upcoming Motorola phone. Verizon didn’t share many details, other than it is “powered by the Qualcomm Snapdragon 865 Mobile Platform with the Snapdragon X55 5G Modem-RF System.” Earlier this month, we shared photos of the upper mid-range sibling of the Motorola device with these specifications.

Motorola confirmed late last year that they would be releasing a phone with the Snapdragon 865. We believe this device could be called the “Motorola One 2020” when it’s released internationally, but we now know it will be called the Motorola Edge+ when it launches on Verizon. It will be the company’s first true flagship since the Moto Z3, and our Editor-in-Chief Mishaal Rahman has more information about it.

The Edge+ will have the aforementioned Qualcomm Snapdragon 865 SoC, a 6.67-inch 2340 x 1080 “waterfall” display with a 90Hz refresh rate, up to 12GB of RAM, and a battery over 5,000 mAh. These specifications certainly put the device in the flagship market where it will compete with the likes of the Galaxy S20.

Verizon did not share any information about when we can expect to see this 5G Motorola phone, but we’d guess it won’t be long from now. What do you think of this flagship Motorola phone? Are you ready to give the Motorola Edge+ a chance?

The post Verizon will carry Motorola’s flagship phone, the Motorola Edge+ appeared first on xda-developers.



from xda-developers https://ift.tt/3an6mSJ
via IFTTT

How Monthly Android Security Patch Updates Work

Google has been publishing monthly security bulletins since August of 2015. These security bulletins contain a list of disclosed security vulnerabilities that have been fixed which affect the Android framework, Linux kernel, and other closed-source vendor components. Every vulnerability in the bulletins was either discovered by Google or disclosed to the company. Every vulnerability listed has a Common Vulnerabilities and Exposures (CVE) number, along with associated references, the type of vulnerability, a severity assessment, and the AOSP version affected (if applicable). But despite the seemingly simplistic process behind how Android security patches work, there’s actually a somewhat complicated back-and-forth behind the scenes that allows for your phone to get monthly or (hopefully) near-monthly patches.

What actually makes a security patch?

You may have noticed that every month, there are actually two security patch levels. The format of these patches is either YYYY-MM-01 or YYYY-MM-05. While the YYYY and MM obviously represent the year and month respectively, the “01” and “05” confusingly does not actually signify the day of the month in which that security patch level was released. Instead, the 01 and 05 are actually two different security patch levels released on the same day every month – the patch level with 01 at the end contains fixes to the Android framework but not vendor patches or upstream Linux kernel patches. Vendor patches, as we defined above, refer to fixes to closed-source components such as drivers for Wi-Fi and Bluetooth. The security patch level signified by -05 contains these vendor patches as well as patches in the Linux kernel. Take a look at the table below which may help in understanding.

Monthly Security Patch Level 2019-04-01 2019-04-05
Contains April Framework Patches Yes Yes
Contains April Vendor + Kernel Patches No Yes
Contains March Framework Patches Yes Yes
Contains March Vendor + Kernel Patches Yes Yes

Of course, some OEMs may opt to roll their own patches and updates into security updates as well. Most OEMs have their own take on Android, so it only makes sense that you may have, for example, a vulnerability on a Samsung phone that doesn’t exist on a Huawei. A lot of these OEMs also publish their own security bulletins.

The timeline of a security patch from Google to your phone

Security patches have a timeline roughly spanning about 30 days, though not every OEM can avail of the full length of that timeline. Let’s take a look at the May 2019 security patch for example, and we can break down the entire timeline behind the creation of this patch. Companies like Essential manage to get out their security updates on the same day as the Google Pixel, so how do they do it? The short and simple answer is that they’re an Android partner. The May 2019 security bulletin was published on the 6th of May, with both the Google Pixels and the Essential Phone getting near-immediate updates.

What it means to be an Android Partner

Not just any company can be an Android Partner, though admittedly basically every major Android OEM is. Android Partners are the companies that are granted a license to use the Android branding in marketing material. They are also allowed to ship Google Mobile Services (GMS – refers to pretty much all Google services) so long as they meet the requirements outlined in the Compatibility Definition Document (CDD) and pass the Compatibility Test Suite (CTS), Vendor Test Suite (VTS), Google Test Suite (GTS), and a few other tests. There are distinct differences in the security patch process for companies that aren’t an Android Partner.

  • Android framework patches are available to them after being merged into AOSP 1-2 days before the security bulletin is released.
  • Upstream Linux kernel patches can be cherry-picked once available.
  • Fixes from SoC vendors for closed-source components are available depending on agreements with the SoC vendor. Note that if the vendor has given the OEM access to the source code of the closed-source component(s), then the OEM can fix the issue(s) themselves. If the OEM does not have access to the source code, then they must wait for the vendor to issue a fix.

If you are an Android Partner, you immediately have it a whole lot easier. Android partners are notified of all Android framework issues and Linux kernel issues at least 30 days before the bulletin is made public. Google provides patches for all issues for OEMs to merge and test, though vendor component patches are dependent on the vendor. Patches for the Android framework issues disclosed in the May 2019 security bulletin, for example, were provided to Android partners at least as early as March 20th, 2019*. That’s a lot of extra time.

*Note: Google can, and often does, update the patches for the latest security bulletin all the way until the public release. These updates can happen if new vulnerabilities and bugs have been found, if Google decides to remove certain patches from the monthly bulletin due to it breaking critical components, if Google updates a patch to resolve a bug created by the previous version of the patch, and other reasons.

Why do I need to wait so long to receive a security patch on my phone?

While it’s true that Android Partners (read: all major OEMs) received security patches well in advance of their release, many are painfully aware that they possibly won’t receive a security update for months after its release. This is generally down to one of four reasons.

  • OEMs may need to make heavy technical changes in order to accommodate a security patch, as it may conflict with existing code.
  • The vendor is slow at providing update source-code for closed-source components.
  • Carrier certification may take time.
  • Companies may be unwilling to release a security update without also releasing a feature at the same time.

While all of these are valid reasons for a business not to release a security patch, the end-user doesn’t always care about any of those. Admittedly, the end-user doesn’t always care about security patches either, though they should. Initiatives like Project Treble, extended Linux LTS, and Project Mainline are helping to eliminate the technical difficulties of merging these security patches, but it’s not enough to make OEMs consistently strive to put out updates. With a Generic Kernel Image, or GKI, SoC vendors and OEMs will have an easier time merging upstream Linux kernel patches, though we likely won’t see the first devices with GKI until next year.

But an interesting piece of information that most don’t know is that major OEMs must provide “at least four security updates” within a year of a device’s launch, and 2 years of updates overall. Google has not confirmed these specific terms, but the company did confirm that they “worked on building security patching into [their] OEM agreements”. As for Android Enterprise Recommended (AER) devices, devices are required to get security updates within 90 days of release for 3 years. Rugged AER devices are required to get 5 years of security updates. Android One devices are supposed to get security updates every month for 3 years.

What’s in a security patch?

A security patch is just another update, though generally a lot smaller with changes to individual frameworks and system modules rather than system-wide improvements or changes. Each month, Google provides device OEMs with a zip file that contains patches for all major Android versions currently still supported, along with a security test suite. This test suite helps OEMs catch gaps in security patches, to ensure that they don’t miss anything and that the patches were merged appropriately. As the month goes on, Google may make minor revisions such as deciding that one specific patch is optional, specifically if there are troubles implementing it.

What about custom ROMs?

If your smartphone doesn’t get many security updates, that doesn’t necessarily mean you’re better off switching to a custom ROM. While true that you will get security updates that you would not have gotten otherwise, that’s only half of the story. Unlocking your bootloader leaves you susceptible to physical attacks on your device, even if on the software side, security is hardened. That’s not to say you shouldn’t use custom ROMs, it’s just that there are other concerns when it comes to using them that don’t apply if your bootloader is kept locked. If you’re more worried about the software side of things, then you’re still better off with a custom ROM that gets frequent security patches.

But remember we talked about the difference between YYYY-MM-01 and YYYY-MM-05 patches? The -05 patch level contains Linux kernel patches as well as vendor patches – patches applied to closed-source software. This means custom ROM developers are at the mercy of whatever OEM they’re developing for, and if the OEM releases update blobs or not. This is fine for devices that are still updated by the manufacturer, but for devices that aren’t, the patches applied can only be applied to the Android framework and the Linux kernel. This is why LineageOSTrust Interface shows two security patch levels – one being platform, the other being vendor. Even though custom ROMs for unsupported devices can’t fully integrate all of the latest patches, they’re going to be more secure than the older, outdated ROM.

The post How Monthly Android Security Patch Updates Work appeared first on xda-developers.



from xda-developers https://ift.tt/38dexPX
via IFTTT

New Pixel Feature Drop adds Dark Mode Scheduling, Cards & Passes to Power Menu, and more

Two months after announcing the Pixel 4, Google announced the first Pixel Feature Drop. Instead of rolling out major new features individually, Google decided to wait to unveil new features and drop them all at hence in the same update. Hence, Pixel “Feature Drop.” The first one only added a few features such as auto-framing in Google Duo, post-snap Portrait Mode in Google Photos, and automatic call screen in the Google Phone app, but the second Feature Drop is adding a dozen new features. Here’s a chart from Google that lists the new features arriving on Pixel devices with the March update:

You might be already familiar with many of these features since we’ve either documented them in the Android 11 Developer Preview or manually enabled them ahead of release. If you aren’t familiar, though, here’s a summary to get you up to speed:

  • Cards & Passes: This feature lets you quickly access your debit or credit cards, event tickets, boarding passes, or any other cards stored in Google Pay, simply by pressing and holding the power button. The feature will be available to users in the following countries: U.S., U.K., Canada, Australia, France, Germany, Spain, Italy, Ireland, Taiwan, and Singapore. On Pixel 4, you can also quickly access your emergency contacts and medical information stored in the “Personal Safety” app. For non-Pixel owners, this feature will arrive in Android 11 as “Quick Access Wallet.”
  • Screenshot a boarding pass to add it to Google Pay: This does exactly what it says it’ll do. Simply take a screenshot of a boarding pass with the barcode showing, and then you can add the boarding pass to Google Pay by tapping on the notification that’s shown. Google Pay will then give you real-time updates on your flight, and on the day of departure, you can quickly pull up your boarding pass by long-pressing the power button to show the Cards & Passes menu. Oddly, this feature isn’t available on the Pixel 2 or Pixel 2 XL even though both devices support Cards & Passes. For the Pixel 3, Pixel 3a, and Pixel 4, the feature will gradually become available in all countries where Google Pay is available, so long as you’re on the March Pixel Feature Drop update.
  • Tap to pause with Motion Sense: You can now pause and resume music playback on Pixel 4 by doing a “tap” gesture above the phone. This feature was first added to Motion Sense in the Android 11 Developer Preview, but it’s good to see it show up in the Pixel Feature Drop since few people are on the Developer Preview.
  • Dark theme scheduling: One of the best new features in the Android 11 Developer Preview is the ability to schedule the dark theme. This feature is now available for all Pixel devices in the March Pixel Feature Drop, though it’s not as robust as the feature in Android 11. While you can schedule dark theme to coincide with the day/night cycle, you can’t customize the time for when you want to toggle dark mode.
  • Rules: This is a new feature that lets you automate when you want your phone to enter Do Not Disturb mode, be silent, vibrate for notifications, or alert you for notifications. You can set triggers based on the Wi-Fi network or physical location. The feature has already started rolling out to most Pixel users.
  • Emojis 12.1 Update: Google has added 169 new emoji to choose from, many of which have variations in gender and skin tones to be more accommodating.
  • Duo AR Effects: During a live video call, you can show augmented reality characters that react to your facial expression and move with you around the screen. To use effects during a call, tap the menu button and then “Effects” to choose an effect. This feature isn’t available for the Pixel 2 or Pixel 3a as it might be too computationally intensive for these devices.
  • Better selfies: On Pixel 4, the front-facing camera can now create images with depth, improving Portrait Mode and color pop. (The Pixel 4 only has a single front-facing camera unlike the Pixel 3 with its secondary wide-angle camera.) You can now create 3D Photos in Facebook using the single camera on Pixel 4, though this feature is broadly rolling out to devices with single cameras. To enable this feature, open the Google Camera app and go to Settings > Advanced > Social Media Depth Features.
  • Car crash detection: Google is rolling out car crash detection, a feature in the Personal Safety app that detects when you’re in a motor vehicle accident and alerts emergency services if you’re unresponsive, to more areas. In addition to the United States, car crash detection is now available for Pixel 4 users in Australia and the United Kingdom with the latest Pixel Feature Drop update. Although the feature is still only officially available for Pixel 4 owners, the Personal Safety APK from the Android 11 Developer Preview can be sideloaded onto other Pixel devices to enable the feature.
  • Live caption: This feature transcribes audio being played back on your phone and displays the transcriptions as floating captions on-screen. This feature debuted on the Pixel 4, came to the Pixel 3 and Pixel 3a in the first Pixel Feature Drop, and landed on the Pixel 2 for many users with an update to the Device Personalization Services app. If you haven’t gotten the feature yet, then it should definitely arrive in the March update. Live caption is still limited to English and also doesn’t work with music, phone calls, or VOIP.
  • Long press improvements: According to Google, the Pixel Launcher will have “improved long press options.” Google says that “you can now firmly press to get more help from your apps more quickly.” We aren’t sure exactly what has changed here, but it sounds like Google is making use of the “Deep Press” API introduced in Android 10. Google trained an ML model to recognize when the user is pressing more forcefully on the screen. If that sounds like Apple’s now-abandoned Force Touch, then that’s exactly what they’re aiming for.
  • Adaptive brightness improvements: One of the flaws of the Pixel 4 is how disappointingly dim the display gets when you’re using the phone outdoors. We found out that Google wasn’t using the Pixel’s High Brightness Mode for outdoor use even though it can massively improve sunlight visibility. In the new Pixel Feature Drop, Google has updated Adaptive Brightness on the Pixel 4 so your screen brightness temporarily increases in extremely bright ambient lighting (like under direct sunlight).
  • Increased touch sensitivity: This feature wasn’t documented by Google in their official blog post, but XDA Senior Member cstark27 informed us that the “increase touch sensitivity” option is no longer exclusive to the Android 11 Developer Preview. This feature improves touch sensitivity, which could be useful if you’re wearing gloves. For Pixel 4 owners on the latest March update, you’ll find the new toggle in Display settings.

That’s all the information that Google shared in their official blog post announcing the second Pixel Feature Drop as well as the announcement thread on the Pixel support forums. Here’s a short video showing off the key features of this big update:

The post New Pixel Feature Drop adds Dark Mode Scheduling, Cards & Passes to Power Menu, and more appeared first on xda-developers.



from xda-developers https://ift.tt/32NogeH
via IFTTT