v0.2.26.223616

Changelog

This maintenance release fixes

• issues in the new Fido implementation (#1806, #1821)
• crashes in the microG user interfaces (#1800, #1813, #1816)

New Contributors

• @elevenfive made their first contribution in #1803
• @StarGate01 made their first contribution in #1807

---

Full Changelog: v0.2.25.223616...v0.2.26.223616

v0.2.25.223616

Changelog

• NEW: Fido API (#849)
• Push notifications
  • Fix lifting idle restrictions on Android 12. Thanks @grote
  • Fallback to port 443 in restricted networks. Thanks @matttbe
• Exposure Notifications
  • Add required exports and flags for Android 12 to nearby-core. Thanks @fynngodau
  • Show weekday for reported exposures (#1743)
  • Move location permissions out of nearby-core to allow using the neverForLocation assertion in apps using it (#1796)
• Device attestation
  • Add UI listing apps using SafetyNet. Thanks @iTrooz
• Client Library
  • Add play-services-fido, play-services-oss-licenses and play-services-safetynet client library
• Translations:
  • Add simplified chinese. Thanks @hustler-not-chatty
  • Update russian and belarusian. Thanks @Vavun
• Improvements and bug fixes (as always). Thanks @christophehenry, @ale5000-git, @relan, @tol4711

New features

Fido

The newly added Fido API allows using U2F and Fido devices via USB or NFC with supported Browsers (Chromium and Firefox) and to sign into your Google Account in microG. Additionally, on supported hardware and when a PIN/password is configured, the secure key storage can be used as a virtual Fido device. Note that some devices are still not fully supported.

Due to lack of open-source client library, open-source variants of browsers (Bromite, Fennec, etc) currently do not support this API. This release also provides an open-source play-services-fido library, which open-source browsers can use instead of the proprietary Google version to add support for microG's Fido API.

New Contributors

• @wbrtm made their first contribution in #1694
• @christophehenry made their first contribution in #1730
• @hustler-not-chatty made their first contribution in #1727
• @matttbe made their first contribution in #1662
• @relan made their first contribution in #1782
• @tol4711 made their first contribution in #1792

---

Full Changelog: v0.2.24.214816...v0.2.25.223616

v0.2.24.214816

This is a maintenance release to fix a few issues slipped into the last release.

Changelog

Exposure Notifications:

• Fix invalid RSSI calculation (Thanks @transistortim)

Device profiles:

• Apply profile to User-Agent used in WebViews

Location:

• Fix bug in UnifiedNlp causing configuration changes not being reflected until reboot.

v0.2.23.214816

Changelog

• Exposure Notifications:
  • Add support for validating signatures on key files (only for DE and CH for now). Thanks @cgrigis
  • Add support for more detailed API and use Advertisement version 1.1. Thanks @Elsensee
  • Improve permission checks, especially for Android 12. Thanks @Bubu, @fynngodau
• Cloud Messaging:
  • Improve reconnecting logic. Thanks @grote
• SafetyNet / DroidGuard:
  • Implement DroidGuard without additional helper.
  • Allow using external DroidGuard via network
  • Easy check for SafetyNet functionality in settings
• Device profiles:
  • Allow to spoof device identity
  • Import device details from profile file
• Location:
  • Update UnifiedNlp to v2.0-alpha7
  • Improved reliability of service
• Improvements and bug fixes (as always)

New features

SafetyNet / DroidGuard

The updated SafetyNet implementation runs proprietary DroidGuard code privileged in the com.google.android.gms package name. This is required on at least some devices to pass SafetyNet. However this features is disabled by default. If you don't want to run proprietary code by Google on your device do not enabled SafetyNet.

As of now, microG SafetyNet implementation, once enabled, should work on all devices and ROMs that would pass SafetyNet attestation with original Google Play Services. This means that ROMs that are rooted (= come with a su binary that allow privilege escalation), with unlocked bootloader, or for some other reason do not pass the CTS or trigger the SafetyNet system will fail SafetyNet attestation. Hiding or spoofing such details from DroidGuard/SafetyNet is out of scope for this project, but techniques to allow passing SafetyNet on custom ROMs should equally work with microG.

Device profiles

This features is mostly useful for Huawei devices or other devices that are banned from accessing Google services. Choosing a profile of a non-banned device should allow using the device with Google services.

For now, two device profiles are included with microG (Nexus 5X with Android 8.1.0 and Moto G with LineageOS 14.1).

If you are a developer, you can easily create a device profiles based on data gathered from a device. See this file for a sample device profile. Once created, you can import device profiles in microG settings (under "Device registration") to test the profile.

If you are a custom ROM developer, you can add a custom device profile for your ROM by placing an appropriate device profile in /system/etc/microg_device_profile.xml. This can be useful to spoof the details of the original vendor ROM.

v0.2.22.212658

Maintenance release with a few bug fixes.

See: commits since v0.2.21.212158

v0.2.21.212158

This release fixes two major bugs introduced with v0.2.20.212158.

Notice regarding updates from v0.2.20.212158

If you already updated to v0.2.20.212158 and you can't install the update to v0.2.21.212158 the usual way, you may need to connect your device to a compute with adb installed and invoke the following commands in a shell:

adb push path/to/play-services-core-212158042.apk /data/local/tmp/play-services-core-212158042.apk
adb shell pm install-create -r --staged # This returns a session id in brackets
adb shell pm install-write *session-id* base /data/local/tmp/play-services-core-212158042.apk
adb shell pm install-commit *session-id*
adb shell rm /data/local/tmp/play-services-core-212158042.apk
adb reboot

If this doesn't work, you might need to directly update the .apk on your /system-partition or wait for the ROM developer to update to v0.2.21.212158.

v0.2.20.212158

• Add support for Cronet. Thanks @dimaryaz.
• Add dummy code for
  • Font provider. Thanks @grote.
  • Credentials API
  • TapAndPay API
• Improvements and bug fixes

Important Notice: Some users reported issues with this release when using a system that has #microG installed on /system partition (including problems up- or downgrading after installing v0.2.20) or when using apps that make use of a Google account.

v0.2.19.211515

This release includes several bug fixes and improvements for Exposure Notification API integration with CCTG.

v0.2.18.204714

• Exposure Notifications: Adjustments for API 1.8 See Google release notes.
• Small bugfixes

v0.2.17.204714

• Bug fixes for Exposure Notifications API
• Improve translations. Thanks @heyarne (de), @Vavun (be, ru), @oscfdezdz (es)