How To Guide January 3, 2022 firmware (TQ1A.230105.002) - Unlock bootloader / Root Pixel 6 Pro [Raven] / all relevant links

Search This thread

roirraW "edor" ehT

Forum Moderator
Staff member
Hoping someone can provide some assistance......

I updated to the latest Magisk Canary release last night. After the app was updated, I was expecting to flash the updated boot image from within the app, but I kept getting a message that the "full Magisk Manager to finish the setup"

Similar to this thread: https://forum.xda-developers.com/t/magisk-manager-app-refuse-to-open-after-recent-update.4252663/

I uninstalled Magisk, reinstalled, patched, and flashed a new boot image manually using fastboot, but was still getting the error.

Then I downloaded the new October Google system image, manually extracted the boot image, patched it, and flashed, along with the bootloader, radio, update.zip, using fastboot.

The update went smoothly and I am 100% rooted, but Magisk shows it is not installed, even though I pass SafetyNet.

It is annoying because I am not able to install or remove modules or manage my Zygisk Hide App List.

View attachment 5733091
When things were working fine as is on Magisk Stable, I highly recommend not "fixing" it. :)

Try this: Flash the stock unrooted boot.img to your phone. Then with the Magisk Canary 25205 rooted boot.img on your computer:
Code:
fastboot boot boot-magisk_patched-25200_1a2B3c.img

Then when the phone boots, hopefully normally and rooted, then click Install beside Magisk in the app and choose direct install. I hope that works for you.

If that doesn't help, I'd suggest dirty flashing using the Official Google Android Flash Tool (OEM Unlocking needs to be toggled on - you may not have to manually unlock the bootloader - the "site" will do that on its own). The flash site can fix problems that even the factory image zip can't. Just make sure you have the following options unchecked:
  • Wipe
  • Force flash all partitions
  • Re-lock bootloader
After that, then try the directions I gave above starting with "Then with the Magisk Canary 25205 rooted boot.img on your computer".

Good luck!
 

diesteldorf

Senior Member
Nov 22, 2010
79
51
In case someone missed it, there was a second canary magisik pushed yesterday, my guess is that it fixes something wrong with the first release
Can you please look at my screen shot above and tell me if I have the latest Canary build installed? What is the build number?

When I opened Magisk recently, it wasn't prompting me to automatically update.
 

Lughnasadh

Senior Member
Mar 23, 2015
4,655
5,261
Google Nexus 5
Huawei Nexus 6P
Hoping someone can provide some assistance......

I updated to the latest Magisk Canary release last night. After the app was updated, I was expecting to flash the updated boot image from within the app, but I kept getting a message to " upgrade to the full Magisk Manager to finish the setup"

Similar to this thread: https://forum.xda-developers.com/t/magisk-manager-app-refuse-to-open-after-recent-update.4252663/

I uninstalled Magisk, reinstalled, patched, and flashed a new boot image manually using fastboot, but was still getting the error.

Then I downloaded the new October Google system image, manually extracted the boot image, patched it, and flashed, along with the bootloader, radio, update.zip, using fastboot.

The update went smoothly and I am 100% rooted, but Magisk shows it is not installed, even though I pass SafetyNet.

It is annoying because I am not able to install or remove modules or manage my Zygisk Hide App List.

View attachment 5733091
There is an issue opened up for the "upgrade to the full Magisk Manager to finish the setup" bug. Check out the workarounds posted in there.
 
  • Like
Reactions: roirraW "edor" ehT

Nergal di Cuthah

Senior Member
Sep 20, 2013
1,922
996
Google Pixel 6 Pro
Can you please look at my screen shot above and tell me if I have the latest Canary build installed? What is the build number?

When I opened Magisk recently, it wasn't prompting me to automatically update.
Looks like latest to me. Here's mine
Screenshot_20221012-115522.png
 

Ghisy

Senior Member
Mar 27, 2010
1,973
802
HTC Desire
Google Nexus 4
Now we have to wait for Android 13 support, but...

How come TWRP is always so far behind now? Is it technical difficulties? Or because people are not really asking for it nowadays?

Although I have to say I do miss it sometimes.
 
  • Like
Reactions: roirraW "edor" ehT

roirraW "edor" ehT

Forum Moderator
Staff member
How come TWRP is always so far behind now? Is it technical difficulties? Or because people are not really asking for it nowadays?

Although I have to say I do miss it sometimes.
I don't really have any insight into it. Any combination of all of those plus that it's just voluntary work, so as time allows. Everyone has real life and real jobs. Despite that there are users who still want it, I feel that there must be less demand for it than ever. I haven't missed out on anything, not having TWRP.
 

diesteldorf

Senior Member
Nov 22, 2010
79
51
For those that were able to install Magisk correctly, and have it hidden, can you please tell me what the hidden app is typically called and/or where it is stored?

I've received a lot of good tips, and I'll have a chance to troubleshoot tonight, but I also want to make sure Magisk, if it is still hidden, is completely uninstalled.
 
  • Like
Reactions: roirraW "edor" ehT

roirraW "edor" ehT

Forum Moderator
Staff member
For those that were able to install Magisk correctly, and have it hidden, can you please tell me what the hidden app is typically called and/or where it is stored?

I've received a lot of good tips, and I'll have a chance to troubleshoot tonight, but I also want to make sure Magisk, if it is still hidden, is completely uninstalled.
You have to name it whatever you want, I believe, if you want to know what it's called. At least, that's what I've always done. When you go to hide it, you have the opportunity to choose what it's called. Hopefully, someone has a better answer for you - about what happens if you don't choose a name for it.
 

Nergal di Cuthah

Senior Member
Sep 20, 2013
1,922
996
Google Pixel 6 Pro
For those that were able to install Magisk correctly, and have it hidden, can you please tell me what the hidden app is typically called and/or where it is stored?

I've received a lot of good tips, and I'll have a chance to troubleshoot tonight, but I also want to make sure Magisk, if it is still hidden, is completely uninstalled.
At the bottom of the app section in magisk it says the package name (e.g. Com.freefall.flyzone)

But that doesn't help if you have two magisks one hidden and one not
 
  • Like
Reactions: roirraW "edor" ehT

diesteldorf

Senior Member
Nov 22, 2010
79
51
When things were working fine as is on Magisk Stable, I highly recommend not "fixing" it. :)

Try this: Flash the stock unrooted boot.img to your phone. Then with the Magisk Canary 25205 rooted boot.img on your computer:
Code:
fastboot boot boot-magisk_patched-25200_1a2B3c.img

Then when the phone boots, hopefully normally and rooted, then click Install beside Magisk in the app and choose direct install. I hope that works for you.

If that doesn't help, I'd suggest dirty flashing using the Official Google Android Flash Tool (OEM Unlocking needs to be toggled on - you may not have to manually unlock the bootloader - the "site" will do that on its own). The flash site can fix problems that even the factory image zip can't. Just make sure you have the following options unchecked:
  • Wipe
  • Force flash all partitions
  • Re-lock bootloader
After that, then try the directions I gave above starting with "Then with the Magisk Canary 25205 rooted boot.img on your computer".

Good luck!
I appreciate your detailed directions, and willingness to help me. However, I tried everything, including the dirty flash, and patched boot image, and still can't get Magisk installed. On the plus side, I also realized I don't really have root access, even though it says I do.

At this point, one of my primary reasons for retaining root is to run SWIFT backup, so I can easily transfer apps and data to my upcoming Pixel 7 Pro.

I definitely have the latest adb and fastboot images, an unlocked bootloader, and the latest October Android 13 firmware installed. Is there anything, short of a full wipe, that I can try, or flash in adb/fastboot to try and get root back?

It looks like I am somehow missing the SuperUser Binary files. If anyone is willing to posted an already patched boot image of Android 13, I can try flashing that.

In the future, I'll always remember to unhide Magisk before updating, assuming that is part of the problem.

I am open to any ideas at this point...LOL :)

root1.png root2.png
 
Last edited by a moderator:
  • Like
Reactions: roirraW "edor" ehT

badabing2003

Recognized Contributor
Sep 17, 2012
1,564
1,843
I appreciate your detailed directions, and willingness to help me. However, I tried everything, including the dirty flash, and patched boot image, and still can't get Magisk installed. On the plus side, I also realized I don't really have root access, even though it says I do.

At this point, one of my primary reasons for retaining root is to run SWIFT backup, so I can easily transfer apps and data to my upcoming Pixel 7 Pro.

I definitely have the latest adb and fastboot images, an unlocked bootloader, and the latest October Android 13 firmware installed. Is there anything, short of a full wipe, that I can try, or flash in adb/fastboot to try and get root back?

It looks like I am somehow missing the SuperUser Binary files. If anyone is willing to posted an already patched boot image of Android 13, I can try flashing that.

In the future, I'll always remember to unhide Magisk before updating, assuming that is part of the problem.

I am open to any ideas at this point...LOL :)

View attachment 5733565 View attachment 5733567
You can try the attached patched boot to this post.
I think you have two versions of Magisk manager installed, one hidden and one not, and they are not playing nice to each other.
You probably are rooted, what do you get when you do adb shell, and then do su ? (assuming that you had previously granted root access to adb shell)

The hidden Magisk's default name is Settings, unless you changed that, look for an app on your phone that is named Settings, and launch it and see what you get.
 

roirraW "edor" ehT

Forum Moderator
Staff member
I appreciate your detailed directions, and willingness to help me. However, I tried everything, including the dirty flash, and patched boot image, and still can't get Magisk installed. On the plus side, I also realized I don't really have root access, even though it says I do.

At this point, one of my primary reasons for retaining root is to run SWIFT backup, so I can easily transfer apps and data to my upcoming Pixel 7 Pro.

I definitely have the latest adb and fastboot images, an unlocked bootloader, and the latest October Android 13 firmware installed. Is there anything, short of a full wipe, that I can try, or flash in adb/fastboot to try and get root back?

It looks like I am somehow missing the SuperUser Binary files. If anyone is willing to posted an already patched boot image of Android 13, I can try flashing that.

In the future, I'll always remember to unhide Magisk before updating, assuming that is part of the problem.

I am open to any ideas at this point...LOL :)

View attachment 5733565 View attachment 5733567
I highly suggest the Official Google Android Flash Tool (OEM Unlocking needs to be toggled on - you may not have to manually unlock the bootloader - the "site" will do that on its own), but this time I suggest a full wipe and force flash all partitions (but don't re-lock bootloader). Obviously, this will wipe everything, but this may be the only way to recover root on your device - to start from scratch. Sorry for the bad news.

Edit: I believe I had to do this once for the exact same or a similar reason.
 

badabing2003

Recognized Contributor
Sep 17, 2012
1,564
1,843
Obviously, this will wipe everything, but this may be the only way to recover root on your device - to start from scratch. Sorry for the bad news.
Don't you want to exhaust all possibilities before resorting to that?
Wipe should be the last resort.
Of course it's a personal choice, but a sheer determination of @gecowa6967 here trying to avoid a wipe came up with a ingenious solution, and it was far worse for him as he would bootloop with a patched image.
 

roirraW "edor" ehT

Forum Moderator
Staff member
Don't you want to exhaust all possibilities before resorting to that?
Wipe should be the last resort.
Of course it's a personal choice, but a sheer determination of @gecowa6967 here trying to avoid a wipe came up with a ingenious solution, and it was far worse for him as he would bootloop with a patched image.
I couldn't think of anything else to try, which is why I suggested the flash tool.
 

diesteldorf

Senior Member
Nov 22, 2010
79
51
I highly suggest the Official Google Android Flash Tool (OEM Unlocking needs to be toggled on - you may not have to manually unlock the bootloader - the "site" will do that on its own), but this time I suggest a full wipe and force flash all partitions (but don't re-lock bootloader). Obviously, this will wipe everything, but this may be the only way to recover root on your device - to start from scratch. Sorry for the bad news.

Edit: I believe I had to do this once for the exact same or a similar reason.
Just wanted to publicly thank badabing2003 and Edor for all their suggestions and advice. I wasn't ready to wipe my device and kept thinking about when badabing2003 said I may still be rooted....

I used a couple of file managers and searched for anything MAGISK-related and deleted as much as I could. Then I uninstalled the Magisk App that I could still see.

I noticed 2 files system/bin/magisk and system/bin/magiskpolicy and was unable to delete them, so I tried using the adb shell rm command and was DENIED.

Then I went into fastboot and tried to use the erase and format commands to delete those same READ-ONLY FILES, and was also DENIED.

However, I still had a patched boot image on my computer and decided to reflash it to see what would happen.,,,,

After I rebooted the phone, I went back in to ADB SHELL and attempted to execute the SU command.

My phone perked up immediately and I got the message that Magisk was not fully installed, prompting me to download the FULL VERSION.

I did, and rebooted again. Everything works!!!! Magisk is fully installed!!!! All of my root apps began prompting me for root access, including SWIFT BACKUP.

Now that I got this fixed, I can really look forward to setting up my new Pixel 7 Pro!!!

Thanks again guys...You definitely didn't have to take the time to respond, but gave me the motivation to keep plugging along.... I really appreciate it.
 

Top Liked Posts

  • There are no posts matching your filters.
  • 6
    @kdrag0n has some interesting work going on for the official Universal SafetyNet Fix (USNF) v2.4.0, that's now in testing.
    5
    13.0.0 (TQ1A.230105.002, Jan 2023)FlashLink924ad4baa13f6611a85bf3d1b2f26f8f61e4e90230b7b69618208323e47a94bb

    Android Security Bulletin—January 2023​

    bookmark_border
    Published January 3, 2022
    The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2023-01-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version.
    Android partners are notified of all issues at least a month before publication. Source code patches for these issues will be released to the Android Open Source Project (AOSP) repository in the next 48 hours. We will revise this bulletin with the AOSP links when they are available.
    The most severe of these issues is a high security vulnerability in the Framework component that could lead to local escalation of privilege with no additional execution privileges needed. The severity assessment is based on the effect that exploiting the vulnerability would possibly have on an affected device, assuming the platform and service mitigations are turned off for development purposes or if successfully bypassed.
    Refer to the Android and Google Play Protect mitigations section for details on the Android security platform protections and Google Play Protect, which improve the security of the Android platform.
    Note: Information on the latest over-the-air update (OTA) and firmware images for Google devices is available in the January 2023 Pixel Update Bulletin.

    Android and Google service mitigations​

    This is a summary of the mitigations provided by the Android security platform and service protections such as Google Play Protect. These capabilities reduce the likelihood that security vulnerabilities could be successfully exploited on Android.
    • Exploitation for many issues on Android is made more difficult by enhancements in newer versions of the Android platform. We encourage all users to update to the latest version of Android where possible.
    • The Android security team actively monitors for abuse through Google Play Protect and warns users about Potentially Harmful Applications. Google Play Protect is enabled by default on devices with Google Mobile Services, and is especially important for users who install apps from outside of Google Play.

    2023-01-01 security patch level vulnerability details​

    In the sections below, we provide details for each of the security vulnerabilities that apply to the 2023-01-01 patch level. Vulnerabilities are grouped under the component they affect. Issues are described in the tables below and include CVE ID, associated references, type of vulnerability, severity, and updated AOSP versions (where applicable). When available, we link the public change that addressed the issue to the bug ID, like the AOSP change list. When multiple changes relate to a single bug, additional references are linked to numbers following the bug ID. Devices with Android 10 and later may receive security updates as well as Google Play system updates.

    Framework​

    The most severe vulnerability in this section could lead to local escalation of privilege with no additional execution privileges needed.
    CVEReferencesTypeSeverityUpdated AOSP versions
    CVE-2022-20456A-242703780EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20489A-242703460EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20490A-242703505EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20492A-242704043EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20493A-242846316EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20912A-246301995EoPHigh13
    CVE-2023-20916A-229256049EoPHigh12, 12L
    CVE-2023-20918A-243794108EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20919A-252663068EoPHigh13
    CVE-2023-20920A-204584366EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20921A-243378132EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20494A-243794204DoSHigh10, 11, 12, 12L, 13
    CVE-2023-20908A-239415861DoSHigh10, 11, 12, 12L, 13
    CVE-2023-20922A-237291548DoSHigh11, 12, 12L, 13

    System​

    The most severe vulnerability in this section could lead to local escalation of privilege of BLE with no additional execution privileges needed.
    CVEReferencesTypeSeverityUpdated AOSP versions
    CVE-2022-20461A-228602963EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20904A-246300272EoPHigh12L, 13
    CVE-2023-20905A-241387741EoPHigh10
    CVE-2023-20913A-246933785EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20915A-246930197EoPHigh10, 11, 12, 12L, 13

    Google Play system updates​

    The following issues are included in Project Mainline components.
    SubcomponentCVE
    MediaProviderCVE-2023-20912

    2023-01-05 security patch level vulnerability details​

    In the sections below, we provide details for each of the security vulnerabilities that apply to the 2023-01-05 patch level. Vulnerabilities are grouped under the component they affect. Issues are described in the tables below and include CVE ID, associated references, type of vulnerability, severity, and updated AOSP versions (where applicable). When available, we link the public change that addressed the issue to the bug ID, like the AOSP change list. When multiple changes relate to a single bug, additional references are linked to numbers following the bug ID.

    Kernel​

    The most severe vulnerability in this section could lead to remote code execution with no additional execution privileges needed.
    CVEReferencesTypeSeveritySubcomponent
    CVE-2022-42719A-253642087
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalmac80211
    CVE-2022-42720A-253642015
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalWLAN
    CVE-2022-42721A-253642088
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalMultiple Modules
    CVE-2022-2959A-244395411
    Upstream kernel
    EoPHighPipe

    Kernel components​

    The most severe vulnerability in this section could lead to remote code execution with no additional execution privileges needed.
    CVEReferencesTypeSeveritySubcomponent
    CVE-2022-41674A-253641805
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalWLAN
    CVE-2023-20928A-254837884
    Upstream kernel
    EoPHighBinder driver

    Kernel LTS​

    The following kernel versions have been updated. Kernel version updates are dependent on the version of Android OS at the time of device launch.
    ReferencesAndroid Launch VersionKernel Launch VersionMinimum Launch Version
    A-224575820125.105.10.101

    Imagination Technologies​

    This vulnerability affects Imagination Technologies components and further details are available directly from Imagination Technologies. The severity assessment of this issue is provided directly by Imagination Technologies.
    CVEReferencesSeveritySubcomponent
    CVE-2022-20235A-259967780 *HighPowerVR-GPU

    MediaTek components​

    These vulnerabilities affect MediaTek components and further details are available directly from MediaTek. The severity assessment of these issues is provided directly by MediaTek.
    CVEReferencesSeveritySubcomponent
    CVE-2022-32635A-257714327
    M-ALPS07573237 *
    Highgps
    CVE-2022-32636A-257846591
    M-ALPS07510064 *
    Highkeyinstall
    CVE-2022-32637A-257860658
    M-ALPS07491374 *
    Highhevc decoder

    Unisoc components​

    These vulnerabilities affect Unisoc components and further details are available directly from Unisoc. The severity assessment of these issues is provided directly by Unisoc.
    CVEReferencesSeveritySubcomponent
    CVE-2022-44425A-258731891
    U-2028856 *
    HighKernel
    CVE-2022-44426A-258728978
    U-2028856 *
    HighKernel
    CVE-2022-44427A-258736883
    U-1888565 *
    HighKernel
    CVE-2022-44428A-258741356
    U-1888565 *
    HighKernel
    CVE-2022-44429A-258743555
    U-1981296 *
    HighKernel
    CVE-2022-44430A-258749708
    U-1888565 *
    HighKernel
    CVE-2022-44431A-258741360
    U-1981296 *
    HighKernel
    CVE-2022-44432A-258743558
    U-1981296 *
    HighKernel
    CVE-2022-44434A-258760518
    U-2064988 *
    HighAndroid
    CVE-2022-44435A-258759189
    U-2064988 *
    HighAndroid
    CVE-2022-44436A-258760519
    U-2064988 *
    HighAndroid
    CVE-2022-44437A-258759192
    U-2064988 *
    HighAndroid
    CVE-2022-44438A-258760781
    U-2064988 *
    HighAndroid

    Qualcomm components​

    These vulnerabilities affect Qualcomm components and are described in further detail in the appropriate Qualcomm security bulletin or security alert. The severity assessment of these issues is provided directly by Qualcomm.
    CVEReferencesSeveritySubcomponent
    CVE-2022-22088A-231156521
    QC-CR#3052411
    CriticalBluetooth
    CVE-2022-33255A-250627529
    QC-CR#3212699
    HighBluetooth

    Qualcomm closed-source components​

    These vulnerabilities affect Qualcomm closed-source components and are described in further detail in the appropriate Qualcomm security bulletin or security alert. The severity assessment of these issues is provided directly by Qualcomm.
    CVEReferencesSeveritySubcomponent
    CVE-2021-35097A-209469821 *CriticalClosed-source component
    CVE-2021-35113A-209469998 *CriticalClosed-source component
    CVE-2021-35134A-213239776 *CriticalClosed-source component
    CVE-2022-23960A-238203772 *HighClosed-source component
    CVE-2022-25725A-238101314 *HighClosed-source component
    CVE-2022-25746A-238106983 *HighClosed-source component
    CVE-2022-33252A-250627159 *HighClosed-source component
    CVE-2022-33253A-250627591 *HighClosed-source component
    CVE-2022-33266A-250627569 *HighClosed-source component
    CVE-2022-33274A-250627236 *HighClosed-source component
    CVE-2022-33276A-250627271 *HighClosed-source component
    CVE-2022-33283A-250627602 *HighClosed-source component
    CVE-2022-33284A-250627218 *HighClosed-source component
    CVE-2022-33285A-250627435 *HighClosed-source component
    CVE-2022-33286A-250627240 *HighClosed-source component

    Common questions and answers​

    This section answers common questions that may occur after reading this bulletin.
    1. How do I determine if my device is updated to address these issues?
    To learn how to check a device's security patch level, see Check and update your Android version.
    • Security patch levels of 2023-01-01 or later address all issues associated with the 2023-01-01 security patch level.
    • Security patch levels of 2023-01-05 or later address all issues associated with the 2023-01-05 security patch level and all previous patch levels.
    Device manufacturers that include these updates should set the patch string level to:
    • [ro.build.version.security_patch]:[2023-01-01]
    • [ro.build.version.security_patch]:[2023-01-05]
    For some devices on Android 10 or later, the Google Play system update will have a date string that matches the 2023-01-01 security patch level. Please see this article for more details on how to install security updates.
    2. Why does this bulletin have two security patch levels?
    This bulletin has two security patch levels so that Android partners have the flexibility to fix a subset of vulnerabilities that are similar across all Android devices more quickly. Android partners are encouraged to fix all issues in this bulletin and use the latest security patch level.
    • Devices that use the 2023-01-01 security patch level must include all issues associated with that security patch level, as well as fixes for all issues reported in previous security bulletins.
    • Devices that use the security patch level of 2023-01-05 or newer must include all applicable patches in this (and previous) security bulletins.
    Partners are encouraged to bundle the fixes for all issues they are addressing in a single update.
    3. What do the entries in the Type column mean?
    Entries in the Type column of the vulnerability details table reference the classification of the security vulnerability.
    AbbreviationDefinition
    RCERemote code execution
    EoPElevation of privilege
    IDInformation disclosure
    DoSDenial of service
    N/AClassification not available
    4. What do the entries in the References column mean?
    Entries under the References column of the vulnerability details table may contain a prefix identifying the organization to which the reference value belongs.
    PrefixReference
    A-Android bug ID
    QC-Qualcomm reference number
    M-MediaTek reference number
    N-NVIDIA reference number
    B-Broadcom reference number
    U-UNISOC reference number
    5. What does an * next to the Android bug ID in the References column mean?
    Issues that are not publicly available have an * next to the corresponding reference ID. The update for that issue is generally contained in the latest binary drivers for Pixel devices available from the Google Developer site.
    6. Why are security vulnerabilities split between this bulletin and device / partner security bulletins, such as the Pixel bulletin?
    Security vulnerabilities that are documented in this security bulletin are required to declare the latest security patch level on Android devices. Additional security vulnerabilities that are documented in the device / partner security bulletins are not required for declaring a security patch level. Android device and chipset manufacturers may also publish security vulnerability details specific to their products, such as Google, Huawei, LGE, Motorola, Nokia, or Samsung.

    Versions​

    VersionDateNotes
    1.0January 3, 2022Bulletin Published
    3
    Kush M.

    Community Manager•Original Poster


    Google Pixel Update - January 2023​

    Announcement
    Hello Pixel Community,

    We have provided the monthly software update for January 2023. All supported Pixel devices running Android 13 will receive these software updates starting today. The rollout will continue over the next few weeks in phases depending on carrier and device. Users will receive a notification once the OTA becomes available for their device. We encourage you to check your Android version and update to receive the latest software.

    Details of this month’s security fixes can be found on the Android Security Bulletin: https://source.android.com/security/bulletin

    This update also includes support for static spatial audio, which will provide surround sound for any connected headset. Another update will roll out to Pixel Buds Pro in the coming weeks that will enable spatial audio with head tracking.

    Thanks,
    Google Pixel Support Team


    Software versions

    Global
    • Pixel 4a: TQ1A.230105.001
    • Pixel 4a (5G): TQ1A.230105.001
    • Pixel 5: TQ1A.230105.001
    • Pixel 5a (5G): TQ1A.230105.001
    • Pixel 6: TQ1A.230105.002
    • Pixel 6 Pro: TQ1A.230105.002
    • Pixel 6a: TQ1A.230105.001.A2
    • Pixel 7: TQ1A.230105.001.A2
    • Pixel 7 Pro: TQ1A.230105.002

    Canada
    • Pixel 4a: TQ1A.230105.001.B1

    Telstra (AU)
    • Pixel 7: TQ1A.230105.001.A3
    • Pixel 7 Pro: TQ1A.230105.002.A1
    What’s included

    The January 2023 update includes bug fixes and improvements for Pixel users – see below for details.

    Audio
    • Add support for Spatial Audio with certain devices and accessories *[1]

    Biometrics
    • Additional improvements for fingerprint recognition and response in certain conditions *[2]

    Bluetooth
    • Fix for issue occasionally preventing certain Bluetooth Low Energy devices or accessories from pairing or reconnecting
    • Fix for issue preventing audio from playing over certain headphones or accessories while connected in certain conditions

    Camera
    • Fix for issue occasionally causing captured photos to appear corrupted or distorted while zoomed in *[3]

    Display & Graphics
    • Fix for issue occasionally preventing display from waking or appearing turned off while device is powered on *[3]

    User Interface
    • Fix for issue occasionally causing UI to display in landscape layout while device is held in portrait mode
    ---------------------------------------------------------------

    Device Applicability

    Fixes are available for all supported Pixel devices unless otherwise indicated below.

    *[1] Included on Pixel 6, Pixel 6 Pro, Pixel 7, Pixel 7 Pro
    *[2] Included on Pixel 6a, Pixel 7
    *[3] Included on Pixel 7, Pixel 7 Pro

    Details
    Other
    1
    Thanks for the links. I have updated to January keeping root and data. I am still on the November Play-systemupdate though...
  • 62
    13.0.0 (TQ1A.230105.002, Jan 2023)FlashLink924ad4baa13f6611a85bf3d1b2f26f8f61e4e90230b7b69618208323e47a94bb

    Android Security Bulletin—January 2023​

    bookmark_border
    Published January 3, 2022
    The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2023-01-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version.
    Android partners are notified of all issues at least a month before publication. Source code patches for these issues will be released to the Android Open Source Project (AOSP) repository in the next 48 hours. We will revise this bulletin with the AOSP links when they are available.
    The most severe of these issues is a high security vulnerability in the Framework component that could lead to local escalation of privilege with no additional execution privileges needed. The severity assessment is based on the effect that exploiting the vulnerability would possibly have on an affected device, assuming the platform and service mitigations are turned off for development purposes or if successfully bypassed.
    Refer to the Android and Google Play Protect mitigations section for details on the Android security platform protections and Google Play Protect, which improve the security of the Android platform.
    Note: Information on the latest over-the-air update (OTA) and firmware images for Google devices is available in the January 2023 Pixel Update Bulletin.

    Android and Google service mitigations​

    This is a summary of the mitigations provided by the Android security platform and service protections such as Google Play Protect. These capabilities reduce the likelihood that security vulnerabilities could be successfully exploited on Android.
    • Exploitation for many issues on Android is made more difficult by enhancements in newer versions of the Android platform. We encourage all users to update to the latest version of Android where possible.
    • The Android security team actively monitors for abuse through Google Play Protect and warns users about Potentially Harmful Applications. Google Play Protect is enabled by default on devices with Google Mobile Services, and is especially important for users who install apps from outside of Google Play.

    2023-01-01 security patch level vulnerability details​

    In the sections below, we provide details for each of the security vulnerabilities that apply to the 2023-01-01 patch level. Vulnerabilities are grouped under the component they affect. Issues are described in the tables below and include CVE ID, associated references, type of vulnerability, severity, and updated AOSP versions (where applicable). When available, we link the public change that addressed the issue to the bug ID, like the AOSP change list. When multiple changes relate to a single bug, additional references are linked to numbers following the bug ID. Devices with Android 10 and later may receive security updates as well as Google Play system updates.

    Framework​

    The most severe vulnerability in this section could lead to local escalation of privilege with no additional execution privileges needed.
    CVEReferencesTypeSeverityUpdated AOSP versions
    CVE-2022-20456A-242703780EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20489A-242703460EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20490A-242703505EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20492A-242704043EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20493A-242846316EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20912A-246301995EoPHigh13
    CVE-2023-20916A-229256049EoPHigh12, 12L
    CVE-2023-20918A-243794108EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20919A-252663068EoPHigh13
    CVE-2023-20920A-204584366EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20921A-243378132EoPHigh10, 11, 12, 12L, 13
    CVE-2022-20494A-243794204DoSHigh10, 11, 12, 12L, 13
    CVE-2023-20908A-239415861DoSHigh10, 11, 12, 12L, 13
    CVE-2023-20922A-237291548DoSHigh11, 12, 12L, 13

    System​

    The most severe vulnerability in this section could lead to local escalation of privilege of BLE with no additional execution privileges needed.
    CVEReferencesTypeSeverityUpdated AOSP versions
    CVE-2022-20461A-228602963EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20904A-246300272EoPHigh12L, 13
    CVE-2023-20905A-241387741EoPHigh10
    CVE-2023-20913A-246933785EoPHigh10, 11, 12, 12L, 13
    CVE-2023-20915A-246930197EoPHigh10, 11, 12, 12L, 13

    Google Play system updates​

    The following issues are included in Project Mainline components.
    SubcomponentCVE
    MediaProviderCVE-2023-20912

    2023-01-05 security patch level vulnerability details​

    In the sections below, we provide details for each of the security vulnerabilities that apply to the 2023-01-05 patch level. Vulnerabilities are grouped under the component they affect. Issues are described in the tables below and include CVE ID, associated references, type of vulnerability, severity, and updated AOSP versions (where applicable). When available, we link the public change that addressed the issue to the bug ID, like the AOSP change list. When multiple changes relate to a single bug, additional references are linked to numbers following the bug ID.

    Kernel​

    The most severe vulnerability in this section could lead to remote code execution with no additional execution privileges needed.
    CVEReferencesTypeSeveritySubcomponent
    CVE-2022-42719A-253642087
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalmac80211
    CVE-2022-42720A-253642015
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalWLAN
    CVE-2022-42721A-253642088
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalMultiple Modules
    CVE-2022-2959A-244395411
    Upstream kernel
    EoPHighPipe

    Kernel components​

    The most severe vulnerability in this section could lead to remote code execution with no additional execution privileges needed.
    CVEReferencesTypeSeveritySubcomponent
    CVE-2022-41674A-253641805
    Upstream kernel [2] [3] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13] [14]
    RCECriticalWLAN
    CVE-2023-20928A-254837884
    Upstream kernel
    EoPHighBinder driver

    Kernel LTS​

    The following kernel versions have been updated. Kernel version updates are dependent on the version of Android OS at the time of device launch.
    ReferencesAndroid Launch VersionKernel Launch VersionMinimum Launch Version
    A-224575820125.105.10.101

    Imagination Technologies​

    This vulnerability affects Imagination Technologies components and further details are available directly from Imagination Technologies. The severity assessment of this issue is provided directly by Imagination Technologies.
    CVEReferencesSeveritySubcomponent
    CVE-2022-20235A-259967780 *HighPowerVR-GPU

    MediaTek components​

    These vulnerabilities affect MediaTek components and further details are available directly from MediaTek. The severity assessment of these issues is provided directly by MediaTek.
    CVEReferencesSeveritySubcomponent
    CVE-2022-32635A-257714327
    M-ALPS07573237 *
    Highgps
    CVE-2022-32636A-257846591
    M-ALPS07510064 *
    Highkeyinstall
    CVE-2022-32637A-257860658
    M-ALPS07491374 *
    Highhevc decoder

    Unisoc components​

    These vulnerabilities affect Unisoc components and further details are available directly from Unisoc. The severity assessment of these issues is provided directly by Unisoc.
    CVEReferencesSeveritySubcomponent
    CVE-2022-44425A-258731891
    U-2028856 *
    HighKernel
    CVE-2022-44426A-258728978
    U-2028856 *
    HighKernel
    CVE-2022-44427A-258736883
    U-1888565 *
    HighKernel
    CVE-2022-44428A-258741356
    U-1888565 *
    HighKernel
    CVE-2022-44429A-258743555
    U-1981296 *
    HighKernel
    CVE-2022-44430A-258749708
    U-1888565 *
    HighKernel
    CVE-2022-44431A-258741360
    U-1981296 *
    HighKernel
    CVE-2022-44432A-258743558
    U-1981296 *
    HighKernel
    CVE-2022-44434A-258760518
    U-2064988 *
    HighAndroid
    CVE-2022-44435A-258759189
    U-2064988 *
    HighAndroid
    CVE-2022-44436A-258760519
    U-2064988 *
    HighAndroid
    CVE-2022-44437A-258759192
    U-2064988 *
    HighAndroid
    CVE-2022-44438A-258760781
    U-2064988 *
    HighAndroid

    Qualcomm components​

    These vulnerabilities affect Qualcomm components and are described in further detail in the appropriate Qualcomm security bulletin or security alert. The severity assessment of these issues is provided directly by Qualcomm.
    CVEReferencesSeveritySubcomponent
    CVE-2022-22088A-231156521
    QC-CR#3052411
    CriticalBluetooth
    CVE-2022-33255A-250627529
    QC-CR#3212699
    HighBluetooth

    Qualcomm closed-source components​

    These vulnerabilities affect Qualcomm closed-source components and are described in further detail in the appropriate Qualcomm security bulletin or security alert. The severity assessment of these issues is provided directly by Qualcomm.
    CVEReferencesSeveritySubcomponent
    CVE-2021-35097A-209469821 *CriticalClosed-source component
    CVE-2021-35113A-209469998 *CriticalClosed-source component
    CVE-2021-35134A-213239776 *CriticalClosed-source component
    CVE-2022-23960A-238203772 *HighClosed-source component
    CVE-2022-25725A-238101314 *HighClosed-source component
    CVE-2022-25746A-238106983 *HighClosed-source component
    CVE-2022-33252A-250627159 *HighClosed-source component
    CVE-2022-33253A-250627591 *HighClosed-source component
    CVE-2022-33266A-250627569 *HighClosed-source component
    CVE-2022-33274A-250627236 *HighClosed-source component
    CVE-2022-33276A-250627271 *HighClosed-source component
    CVE-2022-33283A-250627602 *HighClosed-source component
    CVE-2022-33284A-250627218 *HighClosed-source component
    CVE-2022-33285A-250627435 *HighClosed-source component
    CVE-2022-33286A-250627240 *HighClosed-source component

    Common questions and answers​

    This section answers common questions that may occur after reading this bulletin.
    1. How do I determine if my device is updated to address these issues?
    To learn how to check a device's security patch level, see Check and update your Android version.
    • Security patch levels of 2023-01-01 or later address all issues associated with the 2023-01-01 security patch level.
    • Security patch levels of 2023-01-05 or later address all issues associated with the 2023-01-05 security patch level and all previous patch levels.
    Device manufacturers that include these updates should set the patch string level to:
    • [ro.build.version.security_patch]:[2023-01-01]
    • [ro.build.version.security_patch]:[2023-01-05]
    For some devices on Android 10 or later, the Google Play system update will have a date string that matches the 2023-01-01 security patch level. Please see this article for more details on how to install security updates.
    2. Why does this bulletin have two security patch levels?
    This bulletin has two security patch levels so that Android partners have the flexibility to fix a subset of vulnerabilities that are similar across all Android devices more quickly. Android partners are encouraged to fix all issues in this bulletin and use the latest security patch level.
    • Devices that use the 2023-01-01 security patch level must include all issues associated with that security patch level, as well as fixes for all issues reported in previous security bulletins.
    • Devices that use the security patch level of 2023-01-05 or newer must include all applicable patches in this (and previous) security bulletins.
    Partners are encouraged to bundle the fixes for all issues they are addressing in a single update.
    3. What do the entries in the Type column mean?
    Entries in the Type column of the vulnerability details table reference the classification of the security vulnerability.
    AbbreviationDefinition
    RCERemote code execution
    EoPElevation of privilege
    IDInformation disclosure
    DoSDenial of service
    N/AClassification not available
    4. What do the entries in the References column mean?
    Entries under the References column of the vulnerability details table may contain a prefix identifying the organization to which the reference value belongs.
    PrefixReference
    A-Android bug ID
    QC-Qualcomm reference number
    M-MediaTek reference number
    N-NVIDIA reference number
    B-Broadcom reference number
    U-UNISOC reference number
    5. What does an * next to the Android bug ID in the References column mean?
    Issues that are not publicly available have an * next to the corresponding reference ID. The update for that issue is generally contained in the latest binary drivers for Pixel devices available from the Google Developer site.
    6. Why are security vulnerabilities split between this bulletin and device / partner security bulletins, such as the Pixel bulletin?
    Security vulnerabilities that are documented in this security bulletin are required to declare the latest security patch level on Android devices. Additional security vulnerabilities that are documented in the device / partner security bulletins are not required for declaring a security patch level. Android device and chipset manufacturers may also publish security vulnerability details specific to their products, such as Google, Huawei, LGE, Motorola, Nokia, or Samsung.

    Versions​

    VersionDateNotes
    1.0January 3, 2022Bulletin Published

    Kush M.

    Community Manager•Original Poster


    Google Pixel Update - January 2023​

    Announcement
    Hello Pixel Community,

    We have provided the monthly software update for January 2023. All supported Pixel devices running Android 13 will receive these software updates starting today. The rollout will continue over the next few weeks in phases depending on carrier and device. Users will receive a notification once the OTA becomes available for their device. We encourage you to check your Android version and update to receive the latest software.

    Details of this month’s security fixes can be found on the Android Security Bulletin: https://source.android.com/security/bulletin

    This update also includes support for static spatial audio, which will provide surround sound for any connected headset. Another update will roll out to Pixel Buds Pro in the coming weeks that will enable spatial audio with head tracking.

    Thanks,
    Google Pixel Support Team


    Software versions

    Global
    • Pixel 4a: TQ1A.230105.001
    • Pixel 4a (5G): TQ1A.230105.001
    • Pixel 5: TQ1A.230105.001
    • Pixel 5a (5G): TQ1A.230105.001
    • Pixel 6: TQ1A.230105.002
    • Pixel 6 Pro: TQ1A.230105.002
    • Pixel 6a: TQ1A.230105.001.A2
    • Pixel 7: TQ1A.230105.001.A2
    • Pixel 7 Pro: TQ1A.230105.002

    Canada
    • Pixel 4a: TQ1A.230105.001.B1

    Telstra (AU)
    • Pixel 7: TQ1A.230105.001.A3
    • Pixel 7 Pro: TQ1A.230105.002.A1
    What’s included

    The January 2023 update includes bug fixes and improvements for Pixel users – see below for details.

    Audio
    • Add support for Spatial Audio with certain devices and accessories *[1]

    Biometrics
    • Additional improvements for fingerprint recognition and response in certain conditions *[2]

    Bluetooth
    • Fix for issue occasionally preventing certain Bluetooth Low Energy devices or accessories from pairing or reconnecting
    • Fix for issue preventing audio from playing over certain headphones or accessories while connected in certain conditions

    Camera
    • Fix for issue occasionally causing captured photos to appear corrupted or distorted while zoomed in *[3]

    Display & Graphics
    • Fix for issue occasionally preventing display from waking or appearing turned off while device is powered on *[3]

    User Interface
    • Fix for issue occasionally causing UI to display in landscape layout while device is held in portrait mode
    ---------------------------------------------------------------

    Device Applicability

    Fixes are available for all supported Pixel devices unless otherwise indicated below.

    *[1] Included on Pixel 6, Pixel 6 Pro, Pixel 7, Pixel 7 Pro
    *[2] Included on Pixel 6a, Pixel 7
    *[3] Included on Pixel 7, Pixel 7 Pro

    Details
    Other

    Regarding Developer Support Android 12 images, see @Lughnasadh's post here.

    I am not linking directly to the Developer Support Android 12 images because I don't want them to be confused with Stable Android 12, and since the Developer Support images won't receive any OTAs...ever. They likely also will never be manually updated on the Developer Support images site, so they will forever be stuck with the security patch level they're currently on, which will become further out of date every month. You can Google search Developer Support Android images if you want to find them.

    Platform Tools has been updated slightly to v33.0.3:

    Windows: https://dl.google.com/android/repository/platform-tools-latest-windows.zip

    Mac: https://dl.google.com/android/repository/platform-tools-latest-darwin.zip

    Linux: https://dl.google.com/android/repository/platform-tools-latest-linux.zip

    Release Notes https://developer.android.com/studio/releases/platform-tools:

    33.0.3 (Aug 2022)​

    • adb
      • Don't retry adb root if first attempt failed.
      • Fix track-devices duplicate entry.
      • Add receive windowing (increase throughput on high-latency connections).
      • More specific error messages in the "more than one device" failure cases.
      • Reject unexpected reverse forward requests.
      • Fix install-multi-package on Windows.
    • fastboot
      • Remove e2fsdroid as part of SDK platform-tools.
      • Print OemCmdHandler return message on success.

    TL;DR regarding the PSA. If you update one slot to Android 13, you can fastboot reboot bootloader after and then fastboot --set-active=other to change slots in order to flash Android 13 to the new slot, but IF you have Android 13 on one slot and still have Android 12 (including Android 12 bootloader) on the other slot and you try to fully boot into Android 12, you will be permanently bricked and have to seek repair from Google. No one has yet found a way to repair this on our own. I will update if there is any progress. At least a small handful, and probably more, people have done this already.

    At a minimum, do this first: fastboot flash bootloader --slot all bootloader-devicename-slider-1.2-3456789.img (change the name of the bootloader file to the one for your device), then you *should* be much safer than without doing that first. Also note that the bootloader is NOT the same as boot.img (kernel). The bootloader image file has "bootloader" in the filename.

    IF you have already bricked your phone and the screen is blank - there is likely nothing we can do to help. You should seek to get a repair from Google, possibly under warranty.


    You CANNOT go back to Android 12 Stable. It *seems* as if you can, but Android 12 will not work 100% correctly after updating to the Android 13 bootloader.

    My tiny, early, very mini-review of Android 13 is here.

    Note that this is mainly for the officially listed "Unlocked" Pixel 6 Pro, available directly from the Google Store. All of this will also apply to any other (carrier-specific) variant of the Pixel 6 Pro which you can achieve an unlocked bootloader on. This includes T-Mobile and AT&T variants. It's likely Verizon variants will never be able to unlock their bootloader, or if so it will require paying the right person to do so.

    Feel free to ask about general questions, but for anything that's specific to your variant, you should use one of the other already existing threads. You'll find Verizon, AT&T, and T-Mobile-related threads in those respective search results.

    Here there be dragons. 🐉 I am not responsible for anything at all. 😹

    Unlocking or locking the bootloader will wipe the device every single time, so be sure to have your data backed up before doing so, or better yet, just unlock it as soon as you get the device.


    Keep in mind that unlocking the bootloader or rooting might affect your phone's capability to use banking apps such as Google Pay, your local bank's app, or even the ability to install some apps like NetFlix. See @Pekempy's thread Working SafetyNet with Pixel 6 Pro Android 12

    If you're going to re-lock the bootloader, make sure the ROM you have on your phone is completely stock (by flashing the latest official firmware) BEFORE re-locking it.

    There are no negative consequences if you unlock or re-lock the bootloader other than it will wipe your phone, and while unlocked you get a brief screen when you boot the phone telling you (and anyone who sees your phone at the time) that the bootloader is unlocked. You will also continue to receive updates (if you've merely unlocked the bootloader, you can take updates as normal) unlike Samsung, Sony, et cetera, which have permanent major consequences with reduced functionality even if you un-root and re-lock your bootloader. If you're actually rooted (not just bootloader unlocked), you'll have to perform extra steps to manually update each month, and to keep root/re-root.


    All posts about Google Pay or banking will be reported to be deleted. Please keep this thread on-topic. There are at least one or two other How To Guide threads in this section in which folks discuss how to get around banking app restrictions when you're rooted or just have an unlocked bootloader. See @Pekempy's thread Working SafetyNet with Pixel 6 Pro Android 12
    If users persist in discussing banking apps in this thread, I will have this thread locked and only update this first post when there is new and updated information regarding the subjects of the title of the thread: Unlocking the Pixel 6 Pro bootloader, rooting, and TWRP. See @Pekempy's thread Working SafetyNet with Pixel 6 Pro Android 12

    Honorable mention to @Jawomo's aodNotify - Notification Light / LED for Pixel 6 Pro! (XDA link) / Notification light / LED for Pixel - aodNotify (Play Store link), which in my opinion restores useful functionality missing in most phones these days. It also solves some subjective issues some folks have with AOD (Always On Display), and/or solves/works around the problem where AOD is required for the optical fingerprint reader to work without the screen being on.​


    Check warranty status - *may* reveal if a phone is refurbished, only if the phone was refurbished through Google - thanks to @Alekos for making me aware of the site.
    Official Google Pixel Update and Software Repair (reported as of January 23, 2022 to still not be updated for the Pixel 6/Pro yet)

    Google's Help Page for Find problem apps by rebooting to safe mode - this can be a lifesaver and keep you from having to do a restore to 100% complete stock or even from having to do a factory reset. This will deactivate all Magisk modules, and they'll remain deactivated even after you boot normally after briefly booting to safe mode. You can reenable the Magisk modules as you wish to try to narrow down the problem if it was caused by a Magisk module. This can even get things working again after a Magisk Module wasn't finished installing and potentially causing a bootloop.

    Official Google Pixel Install fingerprint calibration software (also available at the bottom of the Update and Software Repair page above) - I believe this is only helpful if you've replaced the screen
    Official Google Android Flash Tool (OEM Unlocking needs to be toggled on - you may not have to manually unlock the bootloader - the "site" will do that on its own)
    OEM unlocking in developer options needs to be toggled on. I don't "believe" you have to actually do the "fastboot flashing unlock" command.

    ADB/Fastboot, Windows Drivers, and unlocking the bootloader (thanks @sidhaarthm for confirming unlocking the bootloader works as intended, be sure to thank him in his post)
    • You'll need this if you're going to unlock the bootloader on your Pixel 6 Pro: SDK Platform Tools (download links for Windows, Mac, and Linux). Note that you can find links to download the tools elsewhere, but I wouldn't trust them - you never know if they've been modified. Even if the person providing the link didn't do anything intentionally, the tools could be modified without them being aware. Why take a chance of putting your phone security further at risk?
    • For Windows, get Google's drivers here Get the Google USB Driver (ADB will likely work while the phone is fully booted, but if you're like me, you'll need these drivers for after you "adb reboot-bootloader", to be able to use ADB and Fastboot.
    • Thanks to @96carboard for posting the details of unlocking the bootloader, be sure to thank him in his post. Unlocking or locking the bootloader will wipe the device every single time, so be sure to have your data backed up before doing so, or better yet, just unlock it as soon as you get the device. Keep in mind that unlocking the bootloader or rooting might affect your phone's capability to use banking apps such as Google Pay, or your local bank's app. If you're going to re-lock the bootloader, make sure the ROM you have on your phone is completely stock (by flashing the latest official firmware) BEFORE re-locking it. My experience on my Pixel 1 was that there were no negative consequences if you unlock or re-lock the bootloader other than it will wipe your phone, and while unlocked you get a brief screen when you boot the phone telling you (and anyone who sees your phone at the time) that the bootloader is unlocked. All of this should still be the case. You will also continue to receive updates. Unlike Samsung, Sony, et cetera, which have major consequences with reduced functionality even if you un-root and re-lock your bootloader. If you're actually rooted (not just bootloader unlocked), you'll have to perform extra steps to keep root/re-root.:


      The unlock process works like this:

      1) Take brand new fresh phone out of box. Do NOT put sim card in it, just power it on (you can put a SIM card if you want, you just don't have to).
      2) When it starts harassing you to join Google, hit "skip" and "remind me tomorrow" as applicable until you reach home screen. YOU DO NOT need to plug in a google account.
      3) Settings --> About --> Build number. Repeatedly tap it until it says you're a developer.
      4) Back --> Network --> WiFi and connect it.
      5) Back --> System --> Developer --> OEM unlocking (check), USB debugging (check), plug in USB, authorize on the phone when requested.

      Using the Platform Tools previously mentioned in command line/terminal:
      6) #
      Code:
      adb reboot-bootloader
      7) #
      Code:
      fastboot flashing unlock

      Now that you've unlocked it, it has been wiped, so repeat 1-4, then disable all the google spyware, and go ahead and start using it while waiting for aosp and root.

      Official Instructions for Locking/Unlocking the Bootloader
    Personally, I would always use the official drivers Google provides unless they just don't work for whatever reason: Get the Google USB Driver (this is for Windows). They work for me. They are rarely updated, but they are every once in a great while, sometimes years in-between.
    I agree with this. be careful using drivers or adb/fastboot tools. Some are fine, but there's no need for it really anymore. Google has made it very easy to install drivers and Platform-Tools (adb/fastboot tool).

    Google provides the Fastboot/ADB tool (Platform-Tools) and Google USB Drivers (adb/fastboot interface). This will allow any Pixel to interface with Windows using the fastboot/adb protocol. Official Google USB Driver includes support for both the Fastboot and ADB driver interface. There are 3 main drivers (Fastboot, ADB and MTP/Portable File Transfer). The MTP/Portable File Transfer driver is built-in to Windows 7-11.

    Fastboot/ADB Driver Interface - Official Download Link:
    When flashing a full image or unlocking your bootloader, the fastboot interface is being used.

    First Download official Google USB Drivers (it's a zip file). Extract the zip (important!). Right-click on the android_winusb.inf file and hit install. You can then restart your phone to the Bootloader Screen (hold vol-down while it restarts or turns on). When you plug in your phone, Windows Device Manager will show a new device at the top: Android Device: Android Bootloader Interface.

    Using the ADB interface: It's the same driver. Enable USB Debugging on your phone, then plug it in to your computer. A prompt will appear on your phone (to allow USB Debugging). The driver in Device Manager will appear as Android Device: Android Composite ADB interface.

    Now you can download and use Platform-Tools to flash an Android Image, OTA or run adb/fastboot commands.
    Official Download Page
    "Android SDK Platform-Tools is a component for the Android SDK. It includes tools that interface with the Android platform, such as adb, fastboot, and systrace"

    It's best to make Platform-Tools available system-wide. Download Platform-Tools from the above link and extract it to your C:\ drive - that way you will have a folder to add to the PATH Environment under Window System Properties Menu, Advanced, Environment Variables, System Variables, PATH (google how to do this, very easy). What this does is allow adb/fastboot commands to be run from anywhere in the system, so you don't have to be in the platform-tools folder to run adb/fastboot commands and flash an Android Image (Official or Android Fork such as ProtonAOSP).

    Rooting-related


    No longer applies - Things that make rooting more complicated on Android 12
    @V0latyle posted a new thread with some very important and fascinating information about the increased difficulty to root Android 12: Read this before rooting. Be sure to thank him there.

    A list of the other important guides - be sure to thank the respective OPs
    For all relevant guide threads just click the yellow "How To Guide" quick filter above the list of threads in the Pixel 6 Pro section.


    TWRP (not made for the Pixel 6 Pro yet - will update when it has)
    I would guess that this should be the appropriate URL for official TWRP custom recovery for the Pixel 6 Pro, but who knows when/if that will actually be made available, and it may become available unofficially in these forum sections before being made official. I'll adjust this URL as needed. https://twrp.me/google/googlepixel6pro.html.

    Custom kernels for stock ROM(s)

    Factory Images (requires an unlocked bootloader)
    It's also handy to have to the full official firmware available, whether it's to recovery from accidents or for actual development. Note the official link to the general Factory Images for Nexus and Pixel Devices page. The following link goes directly to the Pixel 6 Pro (Raven) section: Pixel 6 Pro Factory Images. I prefer to actually bookmark a link to the device listed immediately below the device I want the firmware for, because Google dumbly (in my opinion) puts the latest firmware at the bottom of the list for each particular device, and that ends up making you scroll a lot after a year or two of monthly updates.

    Note: You can still get the December 2021 Factory Images and OTA from this thread, if you need them for any reason: Alternate links to December - all full factory images and OTAs available

    Full OTA Images (doesn't require an unlocked bootloader)

    The usefulness of having Verity and Verification enabled (now that it's not needed for root) - post #2 below.

    Regarding P6P 5G model numbers and capabilities - post #3 below.

    List of all Pixel monthly security bulletins and Play System Updates - post #4 below.

    How I root and update (which is identical whether rooting the first time or updating):
    • Use the latest Magisk Stable (in my case, I keep the app "hidden" / renamed)
    • Used the full firmware zip, extracted to the same folder as the latest Platform Tools (S:\platform-tools)
    • Extracted the new boot.img
    • Copied new boot.img to the phone
    • Patched the new boot.img with Magisk Stable
    • Renamed Magisk'd boot.img so I know what version of firmware it's for
    • Copied the Magisk'd boot.img back to the computer
    • Disabled all my Magisk Modules
    • Removed the "-w " from the flash-all.bat
    • Re-edited the flash-all.bat to verify I saved it with the "-w " taken out
    • Open a Command Prompt, navigated to S:\platform-tools
    • adb reboot bootloader
    • flash-all.bat
    • Let phone boot, unlock it, check that it's working, allow the update process to finish (gave it five minutes or so)
    • adb reboot bootloader
    • fastboot flash boot kernel.img (renamed Magisk'd boot.img)
    • fastboot reboot
    • Unlock, check everything's working
    • Re-enabled the most basic Magisk Modules which I was sure wouldn't cause a critical issue
    • Reboot, unlock, made sure everything's working
    Back to modding!

    I may append these first four posts with further useful information or links as needed.
    15
    SDK Platform Tools updated to v33.0.1 (March 2022):

    33.0.1 (March 2022)​

    • adb
      • Fixes Windows mdns crashes.
      • Fixes enable-verity/disable-verity on old devices.
      • Fixes "install multiple" on old devices
      • Improves the help output to include all supported compression methods.
    15
    The unlock process works like this;

    1) Take brand new fresh phone out of box. Do NOT put sim card in it, just power it on.
    2) When it starts harassing you to join google, hit "skip" and "remind me tomorrow" as applicable until you reach home screen. YOU DO NOT need to plug in a google account.
    3) Settings --> About --> Build number. Tap it until it says you're a developer.
    4) Back --> Network --> Wifi and connect it.
    5) Back --> System --> Developer --> OEM unlocking (check), USB debugging (check), plug in USB, authorize when requested.
    6) # adb reboot-bootloader
    7) # fastboot flashing unlock

    Now that you've unlocked it, it has been wiped, so repeat 1-4, then disable all the google spyware, and go ahead and start using it while waiting for aosp and root.
    13
    Just to let everyone know, updating to .037 and re-rooting (without wiping anything) worked with no problems. My method is to just replace -w with --disable-verity --disable-verification in the flash-all.bat file and run the flash-all command. I then let it reboot, patch the boot image, return to bootloader and flash the patched boot image.

    Canary 23014

    EDIT: Thank you @ipdev for confirming my inquiry that this method would work back on Nov. 4 👍
    12
    I'm less concerned about the steps/commands as I am with how you updated (auto OTA, sideload, factory image), whether you booted to Android 13, and what happened when you rolled back (I assume using the factory image)
    Used a factory image and booted into Android 13. Auto OTA and a sideload of the full OTA will end in the same result as both use update_engine. I did boot into Android 13 so the ARB counter did get incremented.
    Downgraded by just forcing Android 12 system image with a wipe, switched slots, and did it again. It might be able to be done with a full OTA, but I didn't test it because of the following issue:

    Android 12 doesn't work properly on the Android 13 bootloader.

    It boots up just fine, appears to work just fine, made and received calls and texts, however the issue @bush911 had with WebView crashing is true. It's more than just WebView, the media DRM APEX immediately crashes. WebView crashes sometime after launch when it tries to find out if ClearPlay or WideVine are functional, and DRM Info crashes immediately when I try to launch it. Without DRM working that means you won't be able to play some music or movies and won't be able to use Netflix or any other streaming app.
    There might be more systems or modules nonfunctional, but without working browsers your smartphone isn't going to be more useful than a dumbphone.

    @roirraW "edor" ehT
    So I guess it's time to retract that you can revert to Android 12, because until a modder comes along to cook up a custom Android 12 ROM with Android 13 APEXs or patched ones it won't work.