Swift V/B]
Formerly unlocked, a simple module, that unlocks your device from OEM restrictions.
HOW?
Unlocked removes OEM restrictions through different features.
FEATURES:
GPU TWEAKS:
UPLIFTS YOUR GPU BY SETTING UNIQUE AND LEGIT BUILD PROP TWEAKS THAT ACTUALLY WORKS. (based from .cpp files from google. and cs.android.com)
ART OPTIMIZATION:
OPTIMIZES YOUR RUNTIME THROUGH DALVIK OPTIMIZATION, WHERE ANDROID RELIES MOST OF THE TIME.
CGROUPS OPTIMIZATIONS:
UNLOCKED PROPERLY SETS WHAT IS MOST NEEDED FOR A SMOOTHER EXPERIENCE.
TASKSET AND I/O OPTIMIZATIONS:
THIS TELLS ANDROID WHICH SERVICES SHOULD BE PRIORITIZED
HOW TO KNOW IF ITS WORKING?You can check logs @/android folder
Swift V1 Initial Release!
- this is unlocked but no adjshield or binaries, uses pure android shell optimizations (that actually works).
- buildprop tweaks (filtered from git commits, cs.android.com)
- task process, cpu, priorities optimization.
-based from fix for chatheads lag on arrow os (gingko) and aims to fix evo x (pine tested on havoc, pep).
enjoy. Also pls try lazy tweaks if you have time
link:https://forum.xda-developers.com/apps/magisk/module-lazy-tweaks-t4163249
telegram for support and inquiries
https://t.me/lazytweak
Release Channel
Lazy Tweaks Releases
https://t.me/lazytweaks
downloads:
see attachment
CREDITS
@yc9559 a.k.a matt yang(project was based from qti )
source code: https://github.com/yc9559/qti-mem-opt
xda
My carrier prob doesn't wanna mess up my phone. Thank you. I'll stick with ktweaks
@lAlKenDi I noticed that you're using the GNU General Public Licence for this project and lazy tweaks. But you're also including binaries and apks that you do not provide the source for. Those two situations do not go together...
If you want to use GPL you'll also need to provide the full sources. Otherwise, use a different license that doesn't have this as a prerequisite...
(Note that I'm not here as a forum moderator. This is not my moderation area... I'm just a regular user that noticed a discrepancy.)
Didgeridoohan said:
@lAlKenDi I noticed that you're using the GNU General Public Licence for this project and lazy tweaks. But you're also including binaries and apks that you do not provide the source for. Those two situations do not go together...
If you want to use GPL you'll also need to provide the full sources. Otherwise, use a different license that doesn't have this as a prerequisite...
(Note that I'm not here as a forum moderator. This is not my moderation area... I'm just a regular user that noticed a discrepancy.)
Click to expand...
Click to collapse
oh crap, i forgot about it. i will provide the full sources. thank you for reminding sir.
Updated links and sources will be adding github soon.. if you have any issues just private message or contact me at telegram
XDA is not a funnel for people wanting to offsite people to another medium (and ive heard all the excuses, and dont buy any of them)
Im getting rather tired of this stuff
Telegram should be banned as a dirty word on here...id close any thread where the default reponse was "visit us on Telegram for x"
Over it
Telegram links removed because we dont want to cause issues nor "offsite" people and to keep things civil.
V2 is up!
Unlocked will stay dormant after a while but stay tuned!
will give a try on this, let see if it makes android one smoother on Mi A2 Lite
@lAlKenDi Followup on this: https://forum.xda-developers.com/showpost.php?p=83757753&postcount=3
I see you added a link to QTI-mem-opt's sources. Awesome. Except the two binaries you're using from there (adjshield and fscache-ctrl) doesn't actually have any sources there either... Which means that @yc9559 is in violation of the GPLv3 licence as well. Bummer...
If you don't have the sources, you can't just slap GPL on there and call it a day.
zafuro said:
can xda users stop being so salty about their ****ty outdated platform dying
Click to expand...
Click to collapse
Perhaps you should rethink being a member, and hateposting
Didgeridoohan said:
@lAlKenDi Followup on this: https://forum.xda-developers.com/showpost.php?p=83757753&postcount=3
I see you added a link to QTI-mem-opt's sources. Awesome. Except the two binaries you're using from there (adjshield and fscache-ctrl) doesn't actually have any sources there either... Which means that @yc9559 is in violation of the GPLv3 licence as well. Bummer...
If you don't have the sources, you can't just slap GPL on there and call it a day.
Click to expand...
Click to collapse
hello sir good day! Looking into the issue, we decided to remake unlocked without the binaries from yc9559. Again we would like to make an apology for this matter. As lazy tweaks promises we always wanted to transparent, open source, no lies etc. thank you for pointing it out. we appreciate it.
Update
Update is Up!
we removed adjshield and fscache but we bring a different and simple pure android optimization. Enjoy!
lAlKenDi said:
Update
Update is Up!
we removed adjshield and fscache but we bring a different and simple pure android optimization. Enjoy!
Click to expand...
Click to collapse
Is this still being updated?
Related
A project for our Kernel devs maybe? i found this in the I9000 Forums and though i might keep it going over here in the Vibrant quadrant of XDA.
http://forum.xda-developers.com/showthread.php?t=812879
Most people don't yet know that many Android software leak all sorts of information to the internet with only scant user acknowledgement (basically what you accept when you install the app).
Due to this and the fact that there are already privacy information harvesting apps for Android on the marketplace - a team of security experts have created TaintDroid:
What is TaintDroid?
From the project's web page: "A realtime monitoring service called TaintDroid that precisely analyses how private information is obtained and released by applications "downloaded" to consumer phones."
From: http://appanalysis.org/index.html
How can I install TaintDroid?
As TaintDroid is currently compiled into the kernel, you cannot easily install it, but you have to cook your own kernel. Instructions (for Nexus 1) are available at the project web site: http://appanalysis.org/download.html
How does TaintDroid work?
Here's a video demonstrating how TaintDroid works once it is installed and configured:
http://appanalysis.org/demo/index.html
Why would you want to install this?
There can be many reasons for installint TaintDroid:
- You want to learn about privacy features and play with Android kernel
- As it is currently impossible to differentiate between innocent and sneaky Android apps based only on what access rights they request, you may want to dig in deeper
- You are worried about what apps are doing behind your back and you want to know which apps to uninstall
- You want to help create Android a more secure and privacy-protected platform, instead of the swiss cheese it currently is
What can you do?
As compiling kernels is mostly beyond the reach of mere mortals currently, consider cooking TaintDroid into your kernel, if you are cooking one yourself and offering it available for others to try and use.
Hopefully increased awareness and usage will bring this program eventually into other modders and perhaps even Google's attention and something more easily accessible is offered for the public at large.
BTW, I'm just a user, interested in getting TaintDroid on my own Galaxy S. I'm not affiliated with the research program, but I like what they are doing. This information is purely FYI.
Click to expand...
Click to collapse
Cool Idea. probably could have thought of a better name.
GrundleDroid or GoochDroid, perhaps?
Lol true but it would be a great idea to add into our kernels
Sent from my SGH-T959 using XDA App
junglizste said:
Cool Idea. probably could have thought of a better name.
GrundleDroid or GoochDroid, perhaps?
Click to expand...
Click to collapse
TaintDroid - it's just in-between ........
DELETED,contains illegal version of venom tweaks,that's why i can't post it here.
Screenshots and additions
DELETED
Please delete it. Because it contains illegal version of venom tweaks. The venom team do not allow others to use their tweaks. Thanks.
givesoft said:
Please delete it. Because it contains illegal version of venom tweaks. The venom team do not allow others to use their tweaks. Thanks.
Click to expand...
Click to collapse
tweaks are virtuous and have more functions,i just confuse it because i compare supervivo and laouzhu too much times)
thx for finding mistake
proof in attachment
saneksem said:
tweaks are virtuous and have more functions,i just confuse it because i compare supervivo and laouzhu too much times)
thx for finding mistake
proof in attachment
Click to expand...
Click to collapse
they are venom tweaks, thrown into the virtuous rom
why do you guys feel the need to link chinese kang crap all the time
it really bugs all of us
nitsuj17 said:
they are venom tweaks, thrown into the virtuous rom
why do you guys feel the need to link chinese kang crap all the time
it really bugs all of us
Click to expand...
Click to collapse
kang crap?bugs?
1.only chinese kernels have multitouch fully fixed
2.this rom has all functions working and fully smooth sense 4.1
3.I don't understand why venom doesn't give permission to post this rom,because anyway this rom will be installed on many devices,i just must to send rom link to everybody in PM now
saneksem said:
kang crap?bugs?
1.only chinese kernels have multitouch fully fixed
2.this rom has all functions working and fully smooth sense 4.1
3.I don't understand why venom doesn't give permission to post this rom,because anyway this rom will be installed on many devices,i just must to send rom link to everybody in PM now
Click to expand...
Click to collapse
1. are they providing kernel source? if so, link it and im sure the kernel devs here will add it in...if not, its not gpl compliant
2. they took someone elses rom (virtuous) and fixed some stuff, great...tell them to provide fixes back to the guys who did 99% of the work....and they arent using a full sense 4.1 rosie, unless they resized one themselves (doubt it)
3. if we provide access to tweaks, they d be in every rom, and nothing would be unique...we do not give permission...
and these guys dont care and just steal whatever they want that isnt theirs to take...linking to this garbage on xda, just pisses all of us (team venom, cant speak for virtuous) off...we cant control what is done in the wild west of chinese forums where theft and piracy are the norm, but seeing it on legitimate development sites like xda is gross...these guys even disable tweak protection in our app (which requires roms to have Viper in them for tweaks to work) so they can call it whatever they want
/end rant
nitsuj17 said:
1. are they providing kernel source? if so, link it and im sure the kernel devs here will add it in...if not, its not gpl compliant
2. they took someone elses rom (virtuous) and fixed some stuff, great...tell them to provide fixes back to the guys who did 99% of the work....and they arent using a full sense 4.1 rosie, unless they resized one themselves (doubt it)
3. if we provide access to tweaks, they d be in every rom, and nothing would be unique...we do not give permission...
and these guys dont care and just steal whatever they want that isnt theirs to take...linking to this garbage on xda, just pisses all of us (team venom, cant speak for virtuous) off...we cant control what is done in the wild west of chinese forums where theft and piracy are the norm, but seeing it on legitimate development sites like xda is gross...these guys even disable tweak protection in our app (which requires roms to have Viper in them for tweaks to work) so they can call it whatever they want
/end rant
Click to expand...
Click to collapse
I don't wish to offend you and venom team,i respect venom's hard work of tweaks and ROM's,and so i respect chinese associates.maybe,some of them are stealing rom files,but only they made most useful rom.I hadn't seen any analog or better version of sense 4.1 rom's in "incredible s development".
But more and more people are writing to me in pm,deleting links was useless.
nitsuj17 said:
1. are they providing kernel source? if so, link it and im sure the kernel devs here will add it in...if not, its not gpl compliant
2. they took someone elses rom (virtuous) and fixed some stuff, great...tell them to provide fixes back to the guys who did 99% of the work....and they arent using a full sense 4.1 rosie, unless they resized one themselves (doubt it)
3. if we provide access to tweaks, they d be in every rom, and nothing would be unique...we do not give permission...
and these guys dont care and just steal whatever they want that isnt theirs to take...linking to this garbage on xda, just pisses all of us (team venom, cant speak for virtuous) off...we cant control what is done in the wild west of chinese forums where theft and piracy are the norm, but seeing it on legitimate development sites like xda is gross...these guys even disable tweak protection in our app (which requires roms to have Viper in them for tweaks to work) so they can call it whatever they want
/end rant
Click to expand...
Click to collapse
I don't wish to offend you and venom team,i respect venom's hard work of tweaks and ROM's,and so i respect chinese associates.maybe,some of them are stealing rom files,but only they made most useful rom.I hadn't seen any analog or better version of sense 4.1 rom's in "incredible s development".
But more and more people are writing to me in pm,deleting links was useless.
saneksem said:
I don't wish to offend you and venom team,i respect venom's hard work of tweaks and ROM's,and so i respect chinese associates.maybe,some of them are stealing rom files,but only they made most useful rom.I hadn't seen any analog or better version of sense 4.1 rom's in "incredible s development".
But more and more people are writing to me in pm,deleting links was useless.
Click to expand...
Click to collapse
you are breaking our sharing rules and violating xda policy by sharing illegal roms then, thanks
nitsuj17 said:
you are breaking our sharing rules and violating xda policy by sharing illegal roms then, thanks
Click to expand...
Click to collapse
deleted
nitsuj17 said:
you are breaking our sharing rules and violating xda policy by sharing illegal roms then, thanks
Click to expand...
Click to collapse
i'm not going against venom,but now xda users are like in vacuum and they must wait for a month or two longer to become original fully working oficial venom build
as soon as a moderator reads this u are at risk of getting banned ! why u want to get BANNED
12. Using the work of others.
If you are developing something that is based on the work of another Member, you MUST first seek their permission, and you must give credit to the member whose work you used. If a dispute occurs about who developed / created a piece of work, first try to settle the matter by private message and NOT in open forum. If this fails then you may contact a moderator with clear evidence that the work was created by you.
Convincing evidence will result in copied work being removed. If there is no clear evidence you created the work then in the spirit of sharing all work will remain posted on the forums.
As an addition, developers have the right to hold exclusivity over their work for as long as it is deemed necessary by the dev or freely share it. However, if the work is claimed as exclusive, it must remain as such. No selective sharing will be allowed (ie allowing certain people to use it and not others). Should the dev decide to start sharing the work with others, the work automatically becomes fair game for all to use.
In regards to permissions, same rules remain for this but if permission was already given, unless there is a very valid reason, it cannot be revoked (same applies to major updates on the work). Under that same premise, permissions cannot be denied unless the work is exclusive or under severe circumstances.
In plain English: If you want to keep your work exclusive, go for it. However, if you are going to share your work, do it fairly.
These rules apply to all software posted on XDA (including but not limited to ROMs, RUUs, apps, games, kernels, themes, icons, etc) unless that software comes with a license that waives these rules.
Click to expand...
Click to collapse
Thread closed because it doesn't serve any purpose.
I wanted to download the ROM "j00m Kitkat 4.4.2 optimized bionic" for the Nexus One. But the user j00m has been disabled and the thread is deleted. Anyone know what happened?
I can't say for sure but as I've seen his Roms posted they appeared to be little more than rip offs of the couple nexus1 devs left, also the op of the threads pandered for money and thanks. My best guess is the real developers got annoyed and finally had a word with moderators.
This is all just speculation though
Sent from my Nexus 7 using XDA Premium 4 mobile app
I think he doesn't have accept from developers to port their ROMs...
Ok, thanks.
I thought: "His ROMs would Malware? And for that reason have expelled"
nickdimoni said:
Ok, thanks.
I thought: "His ROMs would Malware? And for that reason have expelled"
Click to expand...
Click to collapse
No malware, I was using his rom [edit: and am using it now as my daily driver]. I actually thought it was [and still is] the best post-Gingerbread rom available. It was basically Evervolv slimmed to 210mb system and a few tweaks for "lazy people" - details here. The mod who closed his thread cited 2 reasons:
j00m's rom wasn't "different" enough (tho I don't know how he can make that call as it was clearly different enough for me and others to prefer it),
j00m didn't get permission from texasice (isn't everything open source? why is permission necessary?)
Ok, thanks for all.
In your explanations I'm calmer
Rules are rules.
too bad, he was one of the best in here, his rom is amazing,
but rules are rules
Just to clear up some stuff I saw:
abemore said:
[*]j00m's rom wasn't "different" enough (tho I don't know how he can make that call as it was clearly different enough for me and others to prefer it),
[*]j00m didn't get permission from texasice (isn't everything open source? why is permission necessary?)
[/LIST]
Click to expand...
Click to collapse
The ROM was removed because it was essentially Evervolv taken from another developer and called his own. We do not allow that without permission as that is taking someone else's work, slapping on a few tweaks and calling it your own. No credit to the original developer, no mention of where the base came from, nothing. It's disrespectful, and is akin to someone taking the lunch you painstakingly made, adding pepper and then proclaiming it's his, with big donation banners around the plate of food. Not what the original developer would like, yes? That was why his ROM was removed. As for the bit about open source, j00m did not post the kernel sources he used, which was violating GPL and against the spirit of open source. While Evervolv is indeed open source, credit must be given if it is used as a base, and permission must be granted for that by the original developer, as we must respect the work of others as well. Without that, or if permission is not granted, the ROM will be removed from XDA.
TL;DR:
Credit the developers of the base
Ask for permission
Post kernel sources
I hope this clarifies some of the issues I saw. Due to the nature of this thread, I will have to close it as I already saw instructions on evading the ban. My PM is however open to anyone with further queries. Thanks
About Carbon
CarbonRom is an aftermarket firmware based on the Android Open Source Project. We are dedicated to fast, stable, and feature-filled roms, honesty and communication with our users, and openness with our code. We like frequent builds, with the very latest and greatest hardware support and fixes. We strive to not only provide you with the best rom we can build, but also to give back to the Android community and our fellow developers. For us, this is about creating something we can be proud of and hope you will enjoy.
Please feel free to look at, build, and use our code on CarbonDev GitHub. and on our Gerrit CarbonDev Gerrit.
We would like to thank CyanogenMod for their device trees, framework/settings mods and their code that was incorporated into this project. We also extend our gratitude to the devs whose code that we have incorporated. Proper authorship has been maintained and can be viewed on our repository.
Special thanks also go to Slim Rom for some of their features, PA, AOKP, and anyone else we may have borrowed commits from that hasn't been mentioned here. If you feel you have been unfairly left out, please - let us know.
While we make every effort to test these builds as much as possible, we are not responsible for anything that may happen to your device, family, pets, or perception of reality. We ask that you do your part to know your device and know how to recover from problems before you flash! If you have questions, ask your fellow users or ask us in #teamcarbon on freenode IRC.
Features
All of our features can be found on our site here:
Carbon Features
Here are some screenshots:
Carbon Screenshots
Carbon Updates
Join us on these Social Media Channels to keep yourself up-to-date on all the latest Carbon news, updates, contests, and more! Join our completely open Google+ community for insider conversation with devs and other users.
Download Carbon
All Carbon downloads and further information such as features, changelog, and FAQ can be found on our website.
Carbon Downloads
Changelog
For a detailed changelog, check out the changes made each night here:
Carbon Changelog
Support
We spend an astonishing amount of time developing this software. We can't spend much time on XDA as a result, so if you need support, please try the following:
1) Search. Search, search, search. Yes, you. I don't care how unique or important your question is, it's very likely someone has adressed it already. Especially if you're even close to new at this.
2) Read our FAQ, which can be found on our website. Carbon FAQ
3) Ask a question in your device forum. Someone will no doubt try to help you. Warning: this help may come in the form of telling you it's a dumb question that has been asked before. See step 1 - such are the perils of asking questions when you haven't done the research yourself. Android is about helping yourself.
4) Ask a question on our IRC channel. Connect to #teamcarbon on irc.freenode.net or click here. You'll find several other Carbon fans and usually one or more devs as well. Please be polite.
Who is Team Carbon?
Find out here:
Carbon Team
Remember, every penny you send to us goes right back into the rom. It's used for hardware, server costs, etc - all the things that help us make Carbon better with every release. Your support means the world to us! If you've enjoyed Carbon, please consider a donation toward this goal. Thank you, and we hope you continue to enjoy Carbon!
Reserved
Also Reserved
will add thread in Index Thread..
in college after 5 hr's
Sent from my SM-N900 using Tapatalk
Tried this out and my kernel speeds were stuck at 96/384. I tried a few apps to change them but nothing worked.
matt1313 said:
Tried this out and my kernel speeds were stuck at 96/384. I tried a few apps to change them but nothing worked.
Click to expand...
Click to collapse
Hm, I am using the stock CM kernel - did you flash anything different, or just what is provided in this thread?
What was provided a and then your kernel. Both would not change values
Sent from my XT926
matt1313 said:
What was provided a and then your kernel. Both would not change values
Sent from my XT926
Click to expand...
Click to collapse
If you're using multiple apps to control it DON'T.
They are more than likely conflicting. NoFrills was the one recommended to me that I found was able to 'lock' the frequencies in the best.
arrrghhh said:
If you're using multiple apps to control it DON'T.
They are more than likely conflicting. NoFrills was the one recommended to me that I found was able to 'lock' the frequencies in the best.
Click to expand...
Click to collapse
I agree with you and I singled them all out, none worked, Not the built in performance, no frills or ROM tool box.
matt1313 said:
I agree with you and I singled them all out, none worked, Not the built in performance, no frills or ROM tool box.
Click to expand...
Click to collapse
Also, to be clear - you are using only ONE at a time, right? You aren't setting the built-in performance settings and NoFrills right? Once you install NoFrills, you should disable built in performance... etc...
No I'm doing correctly
Sent from my XT926
matt1313 said:
No I'm doing correctly
Sent from my XT926
Click to expand...
Click to collapse
I just reflashed the latest official clean (which is a few days behind for my device) and min 384, max 1512 in the built-in performance settings...
Not sure what to recommend at this point.
I didn't notice looking back through the posts if you mentioned you were flashing clean or dirty... I might have assumed poorly, you are clean flashing this?
The 2/2 nightly killed the bluetooth audio info for my car, going to see if 2/4 fixed it. I still have the occasional RAM problems/app killing but I've learned to live with it.
jldr said:
The 2/2 nightly killed the bluetooth audio info for my car, going to see if 2/4 fixed it. I still have the occasional RAM problems/app killing but I've learned to live with it.
Click to expand...
Click to collapse
I saw some people talking about AVRCP or w/e that protocol is on the CM gerrit... I think it's an upstream issue.
arrrghhh said:
I saw some people talking about AVRCP or w/e that protocol is on the CM gerrit... I think it's an upstream issue.
Click to expand...
Click to collapse
Do you know which version of AVCRP they are planning to implement? I haven't lost hope for someone to do 1.5, so we can finally browse files and playlists...
Sent from my XT925 using Tapatalk
StefanGA said:
Do you know which version of AVCRP they are planning to implement? I haven't lost hope for someone to do 1.5, so we can finally browse files and playlists...
Sent from my XT925 using Tapatalk
Click to expand...
Click to collapse
Isn't that something that can be only done at the level of the OS? We didn't have AVCRP1.3 until 4.3... I mean it would be awesome to see though!
jldr said:
Isn't that something that can be only done at the level of the OS? We didn't have AVCRP1.3 until 4.3... I mean it would be awesome to see though!
Click to expand...
Click to collapse
Indeed, this is an upstream issue.
I don't have any devices which use AVRCP, so I apologize I cannot test it at all.
I'm going to give this another try. Can I use your CM11 kernel as I enjoy the higher processing power?
matt1313 said:
I'm going to give this another try. Can I use your CM11 kernel as I enjoy the higher processing power?
Click to expand...
Click to collapse
Yes indeed!
Anybody able to type using swipe?
Im on the latest nightly.
Once i start to make a trail. The keyboards goes down and im not able to make it go back up, unless i go to another app.
Sent from my XT925 using Tapatalk
So I look through the built in repo and I install a lot of things on my old phone to play with. However on the primary I only use FOSS. If a module doesn't have a git page then I don't install it.
I was thinking it would be neat if someone maintained a separate F-Droid repo specifically for xposed modules which are open source. Since xposed itself is open source you could have that on there as well.
It'd be nicer if there was a filter option in the program itself but I'm sure the devs are busy and the above would just be easier.
Maybe it is possible to add "Open source modules" in Sort mode (in Xposed Installer -> Download). It will simply check if Source link for module is not empty.
Who can take this idea and contribute this feature to Xposed?
Waking up this thread. I would also really like to have a structured list of modules which are open source for security reasons. Is this available anywhere yet?
E--Man said:
Waking up this thread. I would also really like to have a structured list of modules which are open source for security reasons. Is this available anywhere yet?
Click to expand...
Click to collapse
Maybe we can get "repo db" and look for source code field. But "in app implementation" is prefered. @rovo89
pyler said:
Maybe we can get "repo db" and look for source code field. But "in app implementation" is prefered. @rovo89
Click to expand...
Click to collapse
Where could we obtain the DB with those fields? I would never install any closed-source modules on my devices. Doing so is absolutely ludicrous in my opinion.
Also, is there a list of verified and trusted (by @rovo89 or someone alike) Xposed modules anywhere?
This is a very important topic...
Thanks,
E.
See https://github.com/rovo89/XposedInstaller/issues/249
The information about the source code URL is available in the repository XML file already and could easily be read be the installer. The issue is up for grabbing. I would appreciate a quick outline if the intended implementation though, so I can intervent regarding architectural decisions before someone writes a lot of code.
I can't give any "trust" recommendations for any but my own modules. It would mean that I would have to analyse the complete source code, verify that the APK actually matches that source code and repeat these steps for every new versions.
Well, if module is open source, anybody can check code so I think there is almost zero chance for malwares or so...
Closed sourced and obfuscated modules are the worst ones. Avoid them. They can do basically everything in background and user knows nothing.
So any skilled dev who is able to create new filter in Xposed Installer for open source modules here? It could be good addition.
pyler said:
Well, if module is open source, anybody can check code so I think there is almost zero chance for malwares or so...
Closed sourced and obfuscated modules are the worst ones. Avoid them. They can do basically everything in background and user knows nothing.
So any skilled dev who is able to create new filter in Xposed Installer for open source modules here? It could be good addition.
Click to expand...
Click to collapse
Really?..
Anybody can check sources, but who will?..
And can you trust their results?..
FOSS can be riddled with exploits like Heartbleed for years, and no one will notice anything. There are even competitions on hiding malicious code inside innocent one...
Only a small number of experienced and skilled developers will be able to find such malware, and believe me - 99% of them don't waste their time on reading, understanding and checking for exploits the sources of all software they use...
@rovo89, thanks for responding to this thread.
I am just wondering if anyone has any updates on the development of an Open Source repository.
Also, I feel that it would also be helpful if we had some sort of a "Developer Trust Rating" as well as a "Code Reviewer" status to ensure that the code of a particular module (or even revision if someone volunteers to take it that far) is both safe and/or that the code has been inspected.
Without this, installing modules on devices means we could be installing software that can be as malicious as it can get.
Lastly, where can I download the XML file that lists XPosed modules along with the "source code URL", and how can I validate that the source code in the URL matches that of the XPosed module itself?
Thanks.
E--Man said:
Also, I feel that it would also be helpful if we had some sort of a "Developer Trust Rating" as well as a "Code Reviewer" status to ensure that the code of a particular module (or even revision if someone volunteers to take it that far) is both safe and/or that the code has been inspected.
Click to expand...
Click to collapse
That's a nice vision, but I doubt that you will find enough people to actually do this who you trust and who would be willing to take the responsibility.
E--Man said:
Lastly, where can I download the XML file that lists XPosed modules along with the "source code URL", and how can I validate that the source code in the URL matches that of the XPosed module itself.
Click to expand...
Click to collapse
Check the source code of the installer for the URL, I don't remember it. But there is no way you can check an APK and find out whether it's built from a certain source. That would only be possible if the developer gave the source code to a trusted party, who would compile it and sign it with their keys. If you trust that third party AND inspect the source code, then you can be sure that it's not malicous. That's F-Droid's model, as far as I know.
YaDr said:
Really?..
Anybody can check sources, but who will?..
And can you trust their results?..
FOSS can be riddled with exploits like Heartbleed for years, and no one will notice anything. There are even competitions on hiding malicious code inside innocent one...
Only a small number of experienced and skilled developers will be able to find such malware, and believe me - 99% of them don't waste their time on reading, understanding and checking for exploits the sources of all software they use...
Click to expand...
Click to collapse
Hello there my Russian friend. I will respectfully disagree with you on this point and I will explain why. Right here on XDA, we have many highly-skilled developers who are the authors of countless lines of code translating into ROMs, modules, enhancements, etc. Much (if not all) of these projects are free to distribute and created as a contribution to the community. In other words, to ask "who will check sources" is the same thing as asking "who will create custom ROMs for people?" or "who will create invaluable/indispensable modules such as XPosed?" or even the general question of "why would someone do this for free?".
It is evident that all of these exist already and that people do indeed contribute, so coupled with the fact that the XDA community is over 5 million members in size, I think there will be developers who may be interested.
The only reason I can see someone not supporting this is if they have an interest not to do so, such as being the author of a closed-source (or open-source) malicious module.
"FOSS can be riddled with exploits like Heartbleed for years, and no one will notice anything"
Yeah but if it was closed source there is a chance it would have never been found.
Also saying that "no one would bother to check the code" is a horrible argument. At least give people the option to inspect it if they want to.
Bump, has anyone taken this to the next step? I am still interested!
Please use the QUOTE feature when replying to me to get my attention. Thanks!
Bump, has anyone taken this to the next step? I am still interested! <br />
<br />
Please use the QUOTE feature when replying to me to get my attention. Thanks!<br/>
Please use the QUOTE feature when replying to me to get my attention. Thanks!
I think more filters in general would be a good thing. There are a lot of Asian based apps that I have no interest in, nor do I play Pokemon/Ingress.
Categories for what country you're in or if an app is for gaming/banking/etc... would be nice. Maybe have the API levels it will work with too, and then just not show anything outside of that range.
I suppose someone could just make an F-Droid repo specifically for xposed/magisk apps too, though I would prefer it if it were officially maintained/sanctioned.