System requirements Microsoft Windows 10 bit or bit version. Double-click the EXE file. Make it convenient for you to use your PC manage contacts, messages, pictures, videos, applications and other data.
We use cookies to improve our site and your experience. By continuing to browse our site you accept our cookie policy Find out more.
Account Options
For a better user experience, please use the latest version of Internet Explorer or switch to another browser. Enterprise Products, Solutions and Services for Enterprise. Carrier Products, Solutions and Services for Carrier. All Products Support. Search Menu. Popular Products. Quick View.
Huawei's Honor 9X Pro loses Google apps, but gets an updated processor | Engadget
Compare Phones. Select Language. Find Service Center. System requirements Microsoft Windows 10 bit or bit version Microsoft Windows 8. Microsoft Windows 10 bit or bit version Microsoft Windows 8. Mac download. Manage data and software easily. Download and install network resources in a single click.
With no copyright notice or any kind of ownership claim on the website, there's not much digging that can be done. A whois lookup shows the site is hosted in mainland China and was created just three months ago, and neither of those facts inspires much confidence.
Huawei's Honor 9X Pro loses Google apps, but gets an updated processor
A lot of the write-ups and videos out there gloss over how Lzplay works and just how many permissions it has access to. You visit the website, install the Lzplay app, and then grant it the ultra-powerful device administrator permissions, at which point it does its thing and installs the Google apps.
At this point most of the guides go on to talk about how you are pretty much done and how you might have to reset your device afterward. Almost none of them mention how you still have this Lzplay. Uninstalling the device administrator app is not as easy as uninstalling a normal app, either—you can't remove the app unless you first dig through the settings and remove it as the administrator first. The Android modding scene has always had some issues with security.
Modding often involves encouraging people to install apps with powerful root permissions that could do very nasty, malicious things to a phone if they wanted. The way the community usually works around this is by either installing apps that are open source, where anyone can audit the code and see what it is doing, or by using a handful of trusted root app developers that have been around for years and years and have proven themselves to the community.
In the case of installing Google apps, the normal Google app distributors like Open Gapps have you flash a one-time package to your system partition and you're done. The scripts to do this are open source , and you can verify the proprietary Google applications it installs haven't been tampered with, thanks to Android's APK signing. The Lzplay. As I mentioned before, the site is three months old, hosted in China, and no one knows who owns it.
What is really egregious, though, is this whole remote backdoor situation, assuming you leave Lzplay on your phone, like most of the guides suggest. Lzplay might not do anything malicious today, but since it still has device administrator privileges, tomorrow it could easily fill your phone with bitcoin miners, remotely install ransomware, or brick your phone. I don't recommend using this method at all, and leaving this grossly powerful app around on your phone, forever, is a huge security problem.
Part of the rapid rise of Lzplay over the last week or two is because it just works so darn well for getting Google apps onto the Huawei Mate There really are no alternative methods. Google apps are designed to have access to system-only permissions that allow them to provide services to other apps.
One example is a unified Google Account APK that handles login duties for all the other apps, and you can't do that as a normal userspace app. Since the Google apps always ship as part of the phone on the system partition, depending on these extra permissions is fine. You can't sideload them like a normal app, though, and since the Mate 30 doesn't have an unlocked bootloader that allows users to modify the system partition, there should be no way to put Google apps on the Mate Somehow, though, Lzplay manages to make it work.
The answer is pretty suspicious.
Lzplay plugs into special permissions that only exist on the Huawei Mate 30—permissions that allow a sideloaded app to be flagged as a "system" app and be granted permissions that are not normally available to them. In other words, Huawei added its own backdoor that breaks the Android permission system, and Lzplay makes use of it. This all happened shockingly quickly: Lzplay. The Mate 30 launched in China on September 26, but news articles made the rounds on September John Wu, Android security researcher and the developer of the root-enabling Android app Magisk, recently dug into the Lzplay app and Huawei's Chinese language!
Allowing third-party apps to modify the system partition would be particularly horrible, since, with no unlockable bootloader on the Mate 30, there would be no way to return to a like-new state. They don't go in the system partition, but they still get system-level partitions thanks to Huawei's OS additions.
- What Google's Huawei ban means for millions of Android owners?
- Android Development and Hacking.
- mobile phone number locate program Galaxy A3.
- cell phone Facebook tracker Redmi 7.
- How To Personalize Your Home Screen on HONOR Phone | HONOR Global?
This is something that would never happen on a phone with Google Play, since one of the requirements of licensing the Google Play apps is adherence to the Android Compatibility Definition Document CDD. The CDD has fully codified the way the permission system works, and for a chapter-and-verse quotation you want Section 9. Huawei's "flagging" method for escalating system permissions is specifically prohibited.
With no Google apps, though, the CDD does not apply, and Huawei can make whatever security-breaking changes it wants. If you want a real-world example of just why Google's myriad Android rules are necessary, note that it only took a single non-Google phone release for an OEM to blow up the Android security model. For each project, the developer will have to submit a request, along with justification, a list of the permissions willing to be granted. The developer of this app has to somehow be aware of these undocumented APIs, sign the legal agreements, go through several stages of reviews, and eventually have the app signed by Huawei.
Lzplay somehow knew enough about all of this well in advance of the launch and had time to build an app, go through Huawei's whole process, and launch a website. Once again: Hmmm. Huawei has already been asked if it is behind Lzplay, and honestly, at this point, that would probably be the best-case scenario, given how powerful Lzplay is. Huawei shot down this idea, though, and gave the following statement to Android Central : "Huawei's latest Mate 30 series is not pre-installed with GMS, and Huawei has had no involvement with www.
The whole time I've been writing this article, I've been occasionally refreshing Lzplay. Sometimes it is up, sometimes it is down, sometimes the app download works, and sometimes it doesn't. The site certainly seems to be going through some difficulties right now. It is not known why.