Fixes

Signed-off-by: Tad <tad@spotco.us>
2025-01-11 23:49:34 -05:00 · 2022-04-01 07:35:28 -04:00 · 2022-04-01 07:35:28 -04:00 · e1f5d99e51
commit e1f5d99e51
parent 987122f99e
13 changed files with 474130 additions and 26 deletions
--- a/Patches/LineageOS-17.1/android_prebuilts_abi-dumps_vndk/0001-protobuf-avi.patch
+++ b/Patches/LineageOS-17.1/android_prebuilts_abi-dumps_vndk/0001-protobuf-avi.patch
--- a/Patches/Linux
+++ b/Patches/Linux
@ -1 +1 @@
-Subproject commit 26b3660c376fe7c6dc87d12abf30d040d34e0d08
+Subproject commit aec315881149b05a3c122ceb5bc98d943de477c7
--- a/Scripts/Common/Functions.sh
+++ b/Scripts/Common/Functions.sh
@ -394,6 +394,7 @@ smallerSystem() {
 	echo "SMALLER_FONT_FOOTPRINT := true" >> BoardConfig.mk;
 	#echo "MINIMAL_FONT_FOOTPRINT := true" >> BoardConfig.mk;
 	sed -i 's/common_full_phone.mk/common_mini_phone.mk/' *.mk &>/dev/null || true;
+	echo "Set smaller system args for $PWD";
 }
 export -f smallerSystem;

@ -404,6 +405,7 @@ deblobAudio() {
 		awk -i inplace '!/DOLBY_/' hardware/qcom/audio-caf/*/configs/*/*.mk &>/dev/null || true;
 		#awk -i inplace '!/vendor.audio.dolby/' hardware/qcom/audio-caf/*/configs/*/*.mk &>/dev/null || true;
 	fi;
+	echo "Deblobbed audio!";
 }
 export -f deblobAudio;

@ -415,6 +417,7 @@ export -f imsAllowDiag;

 extremeWiFiDeepSleep() {
       sed -i 's/gEnablePowerSaveOffload=2/gEnablePowerSaveOffload=4/' $1;
+	echo "Enabled extreme Wi-Fi deep sleep for $1";
 }
 export -f extremeWiFiDeepSleep;

@ -538,6 +541,7 @@ export -f hardenBootArgs;

 enableAutoVarInit() {
 	cd "$DOS_BUILD_BASE";
+	echo "auto-var-init: Starting!";
 	for kernel in "${DOS_AUTOVARINIT_KERNELS[@]}"
 	do
 		if [ -d "$DOS_BUILD_BASE/kernel/$kernel" ]; then
@ -563,10 +567,11 @@ enableAutoVarInit() {
 			else
 				echo "auto-var-init: Could not enable for $kernel";
 			fi;
-#		else
-#			echo "auto-var-init: $kernel not in tree";
+		else
+			echo "auto-var-init: $kernel not in tree";
 		fi;
 	done;
+	echo "auto-var-init: Finished!";
 	cd "$DOS_BUILD_BASE";
 }
 export -f enableAutoVarInit;
@ -579,6 +584,7 @@ disableEnforceRRO() {
 	#TODO: Find a new home for these two
 	awk -i inplace '!/persist.device_config.runtime_native.usap_pool_enabled=true/' *.prop &>/dev/null || true;
 	awk -i inplace '!/config_pinnerCameraApp/' overlay/frameworks/base/core/res/res/values/config.xml &>/dev/null || true;
+	echo "Disabled enforced RRO for $1";
 	cd "$DOS_BUILD_BASE";
 }
 export -f disableEnforceRRO;
@ -587,6 +593,7 @@ disableAPEX() {
 	cd "$DOS_BUILD_BASE$1";
 	awk -i inplace '!/DEXPREOPT_GENERATE_APEX_IMAGE/' *.mk &>/dev/null || true;
 	awk -i inplace '!/updatable_apex.mk/' *.mk &>/dev/null || true;
+	echo "Disabled APEX for $1";
 	cd "$DOS_BUILD_BASE";
 }
 export -f disableAPEX;
--- a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_sm7250.sh
+++ b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_sm7250.sh
@ -428,7 +428,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0886/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.19/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23041/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23041/4.19/0005.patch
@ -449,5 +448,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3428/4.19/0011.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3444/^5.11/0001.patch
-editKernelLocalversion "-dos.p449"
+editKernelLocalversion "-dos.p448"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_sm8150.sh
+++ b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_oneplus_sm8150.sh
@ -468,7 +468,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0644/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24448/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24958/4.14/0003.patch
@ -484,5 +483,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/4.14/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.14/0002.patch
-editKernelLocalversion "-dos.p484"
+editKernelLocalversion "-dos.p483"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh
+++ b/Scripts/LineageOS-17.1/CVE_Patchers/android_kernel_xiaomi_sm6150.sh
@ -229,7 +229,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0644/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23040/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24448/4.14/0002.patch
@ -242,5 +241,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-26966/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27223/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
-editKernelLocalversion "-dos.p242"
+editKernelLocalversion "-dos.p241"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-17.1/Patch.sh
+++ b/Scripts/LineageOS-17.1/Patch.sh
@ -331,11 +331,11 @@ applyPatch "$DOS_PATCHES_COMMON/android_packages_inputmethods_LatinIME/0001-Voic
 applyPatch "$DOS_PATCHES_COMMON/android_packages_inputmethods_LatinIME/0002-Disable_Personalization.patch"; #Disable personalization dictionary by default (GrapheneOS)
 fi;

-if [ "$DOS_GRAPHENE_RANDOM_MAC" = true ]; then
-if enterAndClear "packages/modules/NetworkStack"; then
-applyPatch "$DOS_PATCHES/android_packages_modules_NetworkStack/0001-Random_MAC.patch"; #Avoid reusing DHCP state for full MAC randomization (GrapheneOS)
-fi;
-fi;
+#if [ "$DOS_GRAPHENE_RANDOM_MAC" = true ]; then
+#if enterAndClear "packages/modules/NetworkStack"; then
+#applyPatch "$DOS_PATCHES/android_packages_modules_NetworkStack/0001-Random_MAC.patch"; #Avoid reusing DHCP state for full MAC randomization (GrapheneOS) #FIXME: DhcpClient.java:960: error: cannot find symbol
+#fi;
+#fi;

 if enterAndClear "packages/providers/DownloadProvider"; then
 if [ "$DOS_GRAPHENE_NETWORK_PERM" = true ]; then applyPatch "$DOS_PATCHES/android_packages_providers_DownloadProvider/0001-Network_Permission.patch"; fi; #Expose the NETWORK permission (GrapheneOS)
@ -346,6 +346,10 @@ fi;
 #applyPatch "$DOS_PATCHES/android_packages_services_Telephony/0002-More_Preferred_Network_Modes.patch"; #XXX 17REBASE
 #fi;

+if enterAndClear "prebuilts/abi-dumps/vndk"; then
+applyPatch "$DOS_PATCHES/android_prebuilts_abi-dumps_vndk/0001-protobuf-avi.patch"; #Work around ABI changes from compiler hardening (GrapheneOS)
+fi;
+
 if enterAndClear "system/bt"; then
 applyPatch "$DOS_PATCHES_COMMON/android_system_bt/0001-alloc_size.patch"; #Add alloc_size attributes to the allocator (GrapheneOS)
 fi;
--- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_google_coral.sh
+++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_google_coral.sh
@ -227,7 +227,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0644/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23040/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24448/4.14/0002.patch
@ -240,5 +239,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-26966/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27223/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
-editKernelLocalversion "-dos.p240"
+editKernelLocalversion "-dos.p239"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_google_redbull.sh
+++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_google_redbull.sh
@ -247,7 +247,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0886/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.19/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23040/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23041/4.19/0004.patch
@ -264,5 +263,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27223/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.19/0005.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3444/^5.11/0001.patch
-editKernelLocalversion "-dos.p264"
+editKernelLocalversion "-dos.p263"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_google_sunfish.sh
+++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_google_sunfish.sh
@ -223,7 +223,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0644/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23040/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24448/4.14/0002.patch
@ -236,5 +235,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-26966/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27223/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-27950/^5.16/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
-editKernelLocalversion "-dos.p236"
+editKernelLocalversion "-dos.p235"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_oneplus_sm8150.sh
+++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_oneplus_sm8150.sh
@ -286,7 +286,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0644/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24448/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24958/4.14/0003.patch
@ -301,5 +300,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/4.14/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.14/0002.patch
-editKernelLocalversion "-dos.p301"
+editKernelLocalversion "-dos.p300"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh
+++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sm8150.sh
@ -323,7 +323,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0644/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.14/0002.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/^5.17/0001.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24448/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-24958/4.14/0003.patch
@ -338,5 +337,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-0466/4.14/0005.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-24586/4.14/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.14/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.14/0002.patch
-editKernelLocalversion "-dos.p338"
+editKernelLocalversion "-dos.p337"
 cd "$DOS_BUILD_BASE"
--- a/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sm8250.sh
+++ b/Scripts/LineageOS-18.1/CVE_Patchers/android_kernel_xiaomi_sm8250.sh
@ -366,7 +366,6 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0847/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0850/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-0886/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1016/4.19/0003.patch
-git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-1048/^5.17/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23039/4.19/0002.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23041/4.19/0004.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2022-23041/4.19/0005.patch
@ -386,5 +385,5 @@ git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-27830/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2020-29660/4.19/0003.patch
 git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3428/4.19/0011.patch
 #git apply $DOS_PATCHES_LINUX_CVES/CVE-2021-3444/^5.11/0001.patch
-editKernelLocalversion "-dos.p386"
+editKernelLocalversion "-dos.p385"
 cd "$DOS_BUILD_BASE"