What does "optimizing apps" do?

827482

After an update to GOS it displays "optimizing apps" and it sometimes takes quite long. What does that mean?

matchboxbananasynergy

You can find a recent response to this question here:
https://x.com/GrapheneOS/status/1845094724694073671

Dumdum

Nitter link, in case access to above link is not possible for any reason:
https://nitter.poast.org/GrapheneOS/status/1845094724694073671#m

827482

Ok thanks for the clarification.

nullable

in other words (over simplified english), it's just those apps starting up premptively.

Samsung used to do this, maybe still do.

Does your phone feel optimized after? i guess it beats looking at a bunch of round circles spinning.

point being it makes the phone feel faster as u use it.

GrapheneOS

nullable No, that's not what it refers to at all and starting apps doesn't take nearly that long.

Scott

Something went wrong. Try reloading.

Please copy+paste the X posting here. For me X and Nitter not working. I use Mullvad Browser on Debian with a WG tunnel.

ryrona

Scott Please copy+paste the X posting here. For me X and Nitter not working. I use Mullvad Browser on Debian with a WG tunnel.

Odd. Twitter works just fine even over the Tor network. It should definitely work over a regular anonymous VPN.

But anyway, here you go:

GrapheneOS optimizes (compiles) apps at install time and app/OS update time. Standard Android does it dynamically in-memory while you use the app, which is a security weakness. It's listed in https://grapheneos.org/features#exploit-mitigations.

Android Runtime Just-In-Time (JIT) compilation/profiling is fully disabled and replaced with full ahead-of-time (AOT) compilation. The only JIT compilation in the base OS is the V8 JavaScript JIT which is disabled by default for the Vanadium browser with per-site exception support.

https://x.com/GrapheneOS/status/1845094724694073671

It doesn't explain the why though, why it is a security weakness to do just-in-time compilation instead of ahead-of-time compilation. I suspect it might be because multiple profiles share the same app binaries, and thus just-in-time compilation would leak information cross profile, such as timing information based on what is already compiled and not, and how it was compiled because of usage in the other profile. But the GrapheneOS developers have not confirmed this, nor said anything about why they think just-in-time compilation is a weakness.