Deserves respect at least.
This.
Their modem code is a security nightmare and outside Qualcomms modem teams nobody is allowed to see it.
Even if one were to encrypt all connections, these will probably need to be decrypted on the GPU for processing.
Sadly todays qualcomm hardware has no real memory isolation at all - any bit of on-chip hardware can see all memory.
It isn't perfect, but it's far easier to do that than properly secure a multi-million lines of code codebase with a substantial amount of unpatchable hardware...
Qualcomm (and all Android vendors) look like they have been screwed by this. (To be clear - they are screwed because their processes are to slow to get security updates out).
I have two phones and a tablet, all mid-range devices from 3 different vendors and all are on Android 10 with at least August patches.
Edit: both phones are also more than 2 years old.
My comment referred to the timeline outlined in the post, in particular this part:
Qualcomm gives an update on the progress of a microcode based fix. The plan is that the fix will be available for OEMs by September 7, but Qualcomm will request an extension to patch integration and testing by OEMs.allow more time for patch integration and testing by OEMs.
and for their multiple subsequent requests for an extension and/or grace period.
Your August patches don't fix this - Qualcomm only notified OEMs on 4 August and their plan was to get fixes to OEMs by 7 Sep.
Yet most android devices are lucky to receive a patch within a few months... Don't worry though - that's only a window of a few months where an evil actor can drain your bank account and log your porn browsing sessions...
