Tweaks

- Disable slub_debug=P for devices with INIT_ON_ALLOC/FREE_DEFAULT_ON
- Disable slub_debug=Z due to known breakage
- Disable many debug options on Linux 4.x and up
- 19.1: fixup missing manifests for vayu :\

Signed-off-by: Tad <tad@spotco.us>

Scripts/LineageOS-19.1/CVE_Patchers/android_kernel_oneplus_sm8350.sh

@@ -6,7 +6,7 @@ git apply $DOS_PATCHES_LINUX_CVES/0003-syzkaller-Misc2/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/0008-Graphene-Kernel_Hardening/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2016-3695/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2017-0627/ANY/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5873/ANY/0001.patch
+#git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-5873/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2018-9415/ANY/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-9444/ANY/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2019-15291/5.4/0008.patch

Scripts/LineageOS-19.1/Functions.sh

@@ -60,7 +60,7 @@ buildAll() {
 	buildDevice discovery;
 	#SD835
 	buildDevice cheryl verity;
-	buildDevice cheeseburger verity; #unb
+	buildDevice cheeseburger verity;
 	buildDevice dumpling verity;
 	buildDevice mata verity;
 	buildDevice taimen avb;
@@ -76,17 +76,17 @@ buildAll() {
 	#SD730
 	buildDevice sunfish avb;
 	#SD855
-	buildDevice guacamole avb;
-	buildDevice guacamoleb avb;
-	buildDevice hotdog avb;
-	buildDevice hotdogb avb;
+	buildDevice guacamole avb; #unb
+	buildDevice guacamoleb avb; #unb
+	buildDevice hotdog avb; #unb
+	buildDevice hotdogb avb; #unb
 	buildDevice coral avb;
 	buildDevice flame avb;
-	#buildDevice vayu avb; #unb
+	buildDevice vayu avb; #unb
 	#SD865
-	buildDevice instantnoodle avb;
-	buildDevice instantnoodlep avb;
-	buildDevice kebab avb;
+	buildDevice instantnoodle avb; #unb
+	buildDevice instantnoodlep avb; #unb
+	buildDevice kebab avb; #unb
 	buildDevice lmi avb;
 	#SD870
 	buildDevice alioth avb;
@@ -96,6 +96,7 @@ buildAll() {
 	#SD765
 	buildDevice bramble avb;
 	buildDevice redfin avb;
+	#TODO: barbet
 	#SD670
 	buildDevice bonito avb;
 	buildDevice sargo avb;

Scripts/LineageOS-19.1/Patch.sh

@@ -96,6 +96,7 @@ if [ "$DOS_GRAPHENE_EXEC" = true ]; then applyPatch "$DOS_PATCHES/android_build/
 sed -i '75i$(my_res_package): PRIVATE_AAPT_FLAGS += --auto-add-overlay' core/aapt2.mk; #Enable auto-add-overlay for packages, this allows the vendor overlay to easily work across all branches.
 awk -i inplace '!/updatable_apex.mk/' target/product/generic_system.mk; #Disable APEX
 sed -i 's/PLATFORM_MIN_SUPPORTED_TARGET_SDK_VERSION := 23/PLATFORM_MIN_SUPPORTED_TARGET_SDK_VERSION := 28/' core/version_defaults.mk; #Set the minimum supported target SDK to Pie (GrapheneOS)
+#sed -i 's/PRODUCT_OTA_ENFORCE_VINTF_KERNEL_REQUIREMENTS := true/PRODUCT_OTA_ENFORCE_VINTF_KERNEL_REQUIREMENTS := false/' core/product_config.mk; #broken by hardenDefconfig
 fi;
 
 if enterAndClear "build/soong"; then
@@ -435,8 +436,7 @@ enableAutoVarInit || true;
 #enableLowRam "device/sony/pioneer" "pioneer";
 
 #Fix broken options enabled by hardenDefconfig()
-sed -i "s/CONFIG_DEBUG_FS=y/# CONFIG_DEBUG_FS is not set/" kernel/google/redbull/arch/arm64/configs/redbull_defconfig; #Breaks vintf check
-sed -i "s/CONFIG_DEBUG_FS=y/# CONFIG_DEBUG_FS is not set/" kernel/xiaomi/sm8250/arch/arm64/configs/vendor/*_defconfig; #Breaks vintf check
+#none yet
 
 sed -i 's/^YYLTYPE yylloc;/extern YYLTYPE yylloc;/' kernel/*/*/scripts/dtc/dtc-lexer.l*; #Fix builds with GCC 10
 rm -v kernel/*/*/drivers/staging/greybus/tools/Android.mk || true;