Google play crashes when restricted DCL from memory

ACuriousFellow

I decided to restrict google play services and have started receiving this crash

```
type: storage_DCL
osVersion: google/shiba/shiba:15/BP1A.250405.007.B1/2025041100:user/release-keys
userType: full.secondary
package: com.google.android.gms:251036035, targetSdk 35

package: com.google.android.gms:251036035

DCL denial type: DexFileOpen
process: com.google.android.gms.unstable
thread: binder:13859_3

java.lang.SecurityException: DCL via storage, path: /data/user/10/com.google.android.gms/app_dg_cache/18C5B41EA396685FB58369434F5284598653FC52/the.apk
at android.ext.dcl.DynCodeLoading.checkDexFileOpen(DynCodeLoading.java:131)
at dalvik.system.DexFile.openDexFileNative(Native Method)
at dalvik.system.DexFile.openDexFile(DexFile.java:406)
at dalvik.system.DexFile.<init>(DexFile.java:128)
at dalvik.system.DexFile.<init>(DexFile.java:101)
at dalvik.system.DexPathList.loadDexFile(DexPathList.java:438)
at dalvik.system.DexPathList.makeDexElements(DexPathList.java:397)
at dalvik.system.DexPathList.<init>(DexPathList.java:166)
at dalvik.system.BaseDexClassLoader.<init>(BaseDexClassLoader.java:160)
at dalvik.system.BaseDexClassLoader.<init>(BaseDexClassLoader.java:105)
at dalvik.system.DexClassLoader.<init>(DexClassLoader.java:55)
at azmj.d(:com.google.android.gms@251036035@25.10.36 (260400-739992411):96)
at azmj.c(:com.google.android.gms@251036035@25.10.36 (260400-739992411):5)
at azku.c(:com.google.android.gms@251036035@25.10.36 (260400-739992411):118)
at azid.f(:com.google.android.gms@251036035@25.10.36 (260400-739992411):44)
at azid.a(:com.google.android.gms@251036035@25.10.36 (260400-739992411):5)
at azkh.fy(:com.google.android.gms@251036035@25.10.36 (260400-739992411):30)
at rod.onTransact(:com.google.android.gms@251036035@25.10.36 (260400-739992411):97)
at android.os.Binder.transact(Binder.java:1282)
at bjou.onTransact(:com.google.android.gms@251036035@25.10.36 (260400-739992411):148)
at android.os.Binder.execTransactInternal(Binder.java:1450)
at android.os.Binder.execTransact(Binder.java:1389)```

My question is , is there a way to get hold of the apk its trying to download and then is there a way to analysis what it is and what it might be trying to do?

I've tried to look in the file path in the error on my phone but can't see the file there

GrapheneOS

ACuriousFellow Play services and a subset of the apps depending on it require DCL via storage to be permitted. They're in the process of migrating away from the approach which causes apps depending on it to require DCL but Play services itself will likely still require it far into the future due to using it for a bunch of different things.

Oggyo

I believe that DCL via memory and DCL via storage should be Allowed for GPServices to work properly.

ACuriousFellow

GrapheneOS thanks so much for replying, from your response, it sounds like you've been in dialogue with google to understand they are migrating away at some point .

I understand gms might need this for whatever reason, my question was based on my curiosity to what the apk might contain and how to get hold of it to analysis it. I'm no security researcher but I would like to know how to get ahold of the apk, for example, would adb have access to it?

de0u

ACuriousFellow I understand gms might need this for whatever reason, my question was based on my curiosity to what the apk might contain and how to get hold of it to analysis it.

There may well be multiple such APKs.

ACuriousFellow I'm no security researcher but I would like to know how to get ahold of the apk, for example, would adb have access to it?

I believe a userdebug build of GrapheneOS would allow access to internal app storage.