zlacker

[parent] [thread] 10 comments
1. fnimic+(OP)[view] [source] 2025-08-26 14:47:06
Why can't "low end OEMs" release security updates?
replies(2): >>devmor+c8 >>donkey+3h2
2. devmor+c8[view] [source] 2025-08-26 15:18:55
>>fnimic+(OP)
They can, it would likely just increase the cost of cheap devices to end users, as the manufacturer now has to provide additional software support and does not want to lose money.
replies(2): >>dabock+Kk >>donkey+dh2
◧◩
3. dabock+Kk[view] [source] [discussion] 2025-08-26 16:15:53
>>devmor+c8
One could argue that those “cheap” devices are ewaste from the beginning, and customers needing lower cost mobile devices should be buying more expensive ones used or refurbished.
4. donkey+3h2[view] [source] 2025-08-27 06:24:17
>>fnimic+(OP)
Because they fucking suck. I never heard desktops or laptops being tied to Dell or Asus or what not for run of the mill kernel or os upgrades. If phone makers want to be fucking ass by locking down bootloaders, jealously preventing reversing etc preventing kernel devs etc from doing their own thing then they should accept the just label of being fucking ass or take on the responsibility of supporting it forever.
◧◩
5. donkey+dh2[view] [source] [discussion] 2025-08-27 06:26:15
>>devmor+c8
Why does the manufacturer of the phone have to write os upgrades?

I never had to wait on Dell to type apt update and apt upgrade.

replies(1): >>devmor+vf3
◧◩◪
6. devmor+vf3[view] [source] [discussion] 2025-08-27 13:58:42
>>donkey+dh2
Because when you buy most smartphones, you're buying a vendor locked device and choosing to stay within their ecosystem. That's how Google has designed their monopoly. Apple is the same way, but non-fragmented.

You've never had to wait for Dell to type apt update and apt upgrade, but MacOS users have to wait for Apple to update their computer.

replies(1): >>donkey+op3
◧◩◪◨
7. donkey+op3[view] [source] [discussion] 2025-08-27 14:43:16
>>devmor+vf3
That was my point, this is a self created problem by the manufacturer.
replies(2): >>devmor+yD3 >>j4hduf+3F3
◧◩◪◨⬒
8. devmor+yD3[view] [source] [discussion] 2025-08-27 15:49:18
>>donkey+op3
No, it's a prerequisite to doing business.

The OEM phones are cheap because the manufacturer sells them at a loss, recouping money by locking them down and pre-installing certain software.

The alternative is that Google is properly regulated, or cheap smartphones phones don't exist.

replies(1): >>donkey+me4
◧◩◪◨⬒
9. j4hduf+3F3[view] [source] [discussion] 2025-08-27 15:56:05
>>donkey+op3
These manufacturers gladly took in AOSP back in 2011 when it was still truly a great open source project - exactly as the name should require it to be - and also when security requirements were much much lower. Of course to keep up with device security it turns out you need complete control over the whole stack and regular updates anyway, so now these manufacturers are in a pickle of a situation.
◧◩◪◨⬒⬓
10. donkey+me4[view] [source] [discussion] 2025-08-27 18:58:34
>>devmor+yD3
Its possible the forced apps are a cost recouping mechanism. But how does a phone bootloader being locked down become Google's fault? Does it mandate that for some kind of Android certification?
replies(1): >>j4hduf+TC4
◧◩◪◨⬒⬓⬔
11. j4hduf+TC4[view] [source] [discussion] 2025-08-27 20:52:29
>>donkey+me4
Yes Google mandates a locked bootloader in order to meet Google Play Integrity's remote attestation. More generally it mandates a perfectly clean and valid secure boot chain. Among a variety of other requirements.
[go to top]