Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-10-01 01:35:54 -04:00
Code Issues Packages Projects Releases Wiki Activity
1,600 Commits 1 Branch 0 Tags 101 MiB
1165450d18
Commit Graph

154 Commits

Author SHA1 Message Date
Tad
1878cd19ab Fix/Add hardened malloc patchsets from GrapheneOS 
11 8c0f3c0e04
11 4e6320c247
11 108754debb
10 818be3fc1d
10 010949662f
10 ede5e38f5b
9 80754c93bf
9 20160b8161

Signed-off-by: Tad <tad@spotco.us>
 2022-03-15 16:24:56 -04:00
Tad
209481c53e Fix/Add exec based spawning patchsets from GrapheneOS 
11 14c3c1d4cd
   ac1943345e
   1abb805041
   2e07ab8c24
   0044836677
   c561811fad
   7a848373ef
   89646bdeb1
   2a70bbac4a
   d414dcaa35
   b4cd877e3a
   98634286bb
11 4c2635390c
11 add34a4bc6
11 a2b51906de
10 527787f3c8
   ffde474ad7
   aa87e487c4
   c906fe9722
   c69c3eecd4
   b2303adccc
   5bb05db6f7
   536b497688
   24802a832b
   ce6dcc2368
   3d3d5c4d38
   2eda592b79
10 29f28b53c0
10 13a992c716
9  750efbf6bc
   ed563b6f26
   aad3c7d750
   da3180f9a8
   68773a29b7
   283b3fa09c
   f133136b65
   01a01ce5f6
   17c309c098
   8806ec3ef1

Signed-off-by: Tad <tad@spotco.us>
 2022-03-15 15:55:13 -04:00
Tad
f015dd348f Add the JNINativeMethod table constification patchsets from GrapheneOS 
11 63b9f96a12
11 d8a62b5156
11 e3a4d64f29
11 e41f1d7f8e
11 c34b037486
11 dce2d0f64f
11 c99c35cb2a
10 07071814db
10 a48ba29b98
10 157fa78115
10 b914409e05
10 20a51f508b
10 b8afb8af37
10 e1b6653db7
9 ff688b68a7
9 866f0df315
9 77c9fa981a
9 fbf620e59c
9 ceaf63c790
9 253247fc39
9 76bf4c46f0

Signed-off-by: Tad <tad@spotco.us>
 2022-03-15 15:26:48 -04:00
Tad
ad579b6681 Misc hardening from GrapheneOS 
11 62f81c237b

11 1f05db99ab

11 f242089d3f
10 abcf485dcf
9x c5db5a9f9e

Signed-off-by: Tad <tad@spotco.us>
 2022-03-15 14:40:05 -04:00
Tad
844227a4f4 18.1: add the ptrace_scope patchset from GrapheneOS 
ad017fba58
3b89605581
8b0419ac04
52ea603339

Signed-off-by: Tad <tad@spotco.us>
 2022-03-15 14:29:34 -04:00
Tad
07bd5a3a0e Automatic reboot and Bluetooth/Wi-Fi shutoff from GrapheneOS and CalyxOS 
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/59
Tested on 18.1
Untested on 17.1

Signed-off-by: Tad <tad@spotco.us>
 2022-03-15 01:27:08 -04:00
Tad
e61e288b4a Optionally allow the official Bromite WebView to be used, credit @MSe1969 
This also replaces the overrides for all versions
And should allow the Google WebView on 14/15/16
And lastly only leaves the bundled version as default

This is a merge of the LineageOS 14/15/16 and 17/18 overlay
With the addition of the Bromite signature from @MSe1969

Signed-off-by: Tad <tad@spotco.us>
 2022-03-14 22:59:40 -04:00
Tad
9ba3a061c6 Tweak 
Signed-off-by: Tad <tad@spotco.us>
 2022-03-14 11:57:34 -04:00
Tad
bda848a0a1 Fixup 057bedb6 
Sadly this means the option was never enabled :(
Note: these options are only available on 4.4+ kernels

Signed-off-by: Tad <tad@spotco.us>
 2022-03-06 23:05:13 -05:00
Tad
927b9bfbc5 Fix random reboots on broken kernels when an app has data restricted 
I don't like this

Reading:
- 24b3bdcf71
- https://review.lineageos.org/c/LineageOS/android_kernel_essential_msm8998/+/320470
- https://review.lineageos.org/c/LineageOS/android_system_bpf/+/264702
- https://gitlab.com/LineageOS/issues/android/-/issues/2514
- https://gitlab.com/LineageOS/issues/android/-/issues/3144
- https://gitlab.com/LineageOS/issues/android/-/issues/3287

Test:
- restrict mobile data for an app
- toggle wifi on and off a few times
- watch systemui crash and soft-reboot

Tested working on cheeseburger

Signed-off-by: Tad <tad@spotco.us>
 2022-03-03 17:51:46 -05:00
Tad
5e1521700f Port the GrapheneOS NETWORK permission to 17.1 and 18.1 
Some patches were ported from 12 to 10/11
Some patches from 11 were ported to 10
This 10/11 port should be very close to 12

BOUNS: 16.0 patches, disabled

Signed-off-by: Tad <tad@spotco.us>
 2022-02-25 16:52:51 -05:00
Tad
512673d97d Bump marlin/sailfish to 18.1 
Signed-off-by: Tad <tad@spotco.us>
 2022-02-23 13:33:28 -05:00
Tad
b6da59d24f Drop FairEmail, Vanilla, and their AOSP equivalents 
Signed-off-by: Tad <tad@spotco.us>
 2022-02-11 14:25:30 -05:00
Tad
bc3a9cddba Small tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2022-02-09 00:22:02 -05:00
Tad
65584e96ce Switch to official Etar 
The Lineage forks have fallen behind

Signed-off-by: Tad <tad@spotco.us>
 2022-02-08 14:10:04 -05:00
Tad
58b53de17a Multi user tweaks from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2022-01-24 06:30:39 -05:00
Tad
2400cf0964 App updates 
- Drops Calendar, Eleven, and Email
- Adds a variable for Silence inclusion
- Adds a NONE option for microG inclusion flag to disable NLP inclusion

Signed-off-by: Tad <tad@spotco.us>
 2022-01-24 06:30:15 -05:00
Tad
6329922104 Disable the Hamper Analytics patches 
Rely on the HOSTS to do any blocking.
With the last update this causes app crashes, due to boolean/string mismatch.
Need to figure out exactly how string in manifest can become a boolean when wanted.

Signed-off-by: Tad <tad@spotco.us>
 2022-01-23 16:55:24 -05:00
Tad
7ccaecd6d6 Small tweak 
Signed-off-by: Tad <tad@spotco.us>
 2022-01-20 19:13:08 -05:00
Tad
5e18ec4dfe Tiny tweak 
Signed-off-by: Tad <tad@spotco.us>
 2022-01-16 16:42:26 -05:00
Tad
6ec0c63126 Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-01-13 11:08:22 -05:00
Tad
8a45dc4696 18.1: Device additions 
h910
lavender
pioneer, voyager, discovery
akari, aurora, xz2c

Signed-off-by: Tad <tad@spotco.us>
 2022-01-06 21:04:17 -05:00
Tad
68771721d5 Update oneplus/sdm845 to 4.8.282 
Signed-off-by: Tad <tad@spotco.us>
 2021-12-29 11:51:52 -05:00
Tad
6e604e8703 Small update 
Signed-off-by: Tad <tad@spotco.us>
 2021-12-13 21:33:04 -05:00
Tad
8b85bf9719 Small change 
Signed-off-by: Tad <tad@spotco.us>
 2021-12-12 12:10:47 -05:00
Tad
c5c3998593 Guess what? f̵͖̲̙̝̩̌̌̌̑͆̔͐̏͋̓̅̔̒̈́͠i̴͍̗̦͕̅̓̿͋̓̑̽͌͐͊͘͠͠s̵̡̬͙͚̃͑̓̊̌́̾́͠ḥ̴̬͓͚̹̱̰͕͚͈̞̳͒̊ ̵̢̟̞̖͈͖͕̥̙̤͉̮̍́̅̀̾b̵̛̹̝̙̖̱̲͉͚̝̪̲̓̿͛̔̆͋̎́͐̃͆̀̕͝u̸̞̺͓͎̰̦̯̘̺̬͔̬͆͛̋̍̂͒̓͛̐̈́̋̚͝ṫ̵̠t̶̻̳̜̪̗͖͛̂̒̃̑̏͝ 
Tested on 14.1 and 15.1 targets

Signed-off-by: Tad <tad@spotco.us>
 2021-11-29 21:14:00 -05:00
Tad
c4dbc73c56 Alter the glibc fix 
Signed-off-by: Tad <tad@spotco.us>
 2021-11-27 15:52:09 -05:00
Tad
df3b54fa20 Fixup camera on flox 
Camera works in OpenCamera, but it can't actually take pictures.
Switch to Camera2 instead, tested pictures and videos working.

Also fixup compile issue with oneplus/msm8998-common
And refresh some patchers

Signed-off-by: Tad <tad@spotco.us>
 2021-11-15 18:01:27 -05:00
Tad
f950398fa1 glibc 2.34 fix 
Tested working to compile mako on Fedora 35

Signed-off-by: Tad <tad@spotco.us>
 2021-11-14 20:16:48 -05:00
Tad
1ce0093d9f More verified boot fixes 
Signed-off-by: Tad <tad@spotco.us>
 2021-11-08 09:36:56 -05:00
Tad
5c8250bbdd Disable the per-app sensor permission patches 
Breaks camera on angler

Signed-off-by: Tad <tad@spotco.us>
 2021-11-05 14:46:32 -04:00
Tad
6567937b05 ASB picks 
Signed-off-by: Tad <tad@spotco.us>
 2021-11-05 13:29:50 -04:00
Tad
809e03833e Verity enablement overhaul 
No change to AVB devices except for enabling on more
Verity devices have the potential to regress by not booting
No change to non-verity/avb devices
Tested working on: mata, cheeseburger, fajita

Signed-off-by: Tad <tad@spotco.us>
 2021-11-02 10:24:07 -04:00
Tad
bc77ca416c Verity fixups 
Not sure how I missed all of these?

Signed-off-by: Tad <tad@spotco.us>
 2021-11-01 20:55:22 -04:00
Tad
ecc4688ce0 Denial fixes for clark, osprey, surnia, and g3-common 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-28 00:47:59 -04:00
Tad
e6beba4b15 Small tweaks 
Sad churn from git version.
Will be removed next build cycle.

Signed-off-by: Tad <tad@spotco.us>
 2021-10-27 14:16:37 -04:00
Tad
a0918b5222 18.1: add z2_plus 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-22 13:37:53 -04:00
Tad
fe8e8201a9 Add more 'Private DNS' options 
Based off of patches from CalyxOS as noted in each included patch.

Tested and verified working on klte and mata 18.1

Signed-off-by: Tad <tad@spotco.us>
 2021-10-21 23:39:46 -04:00
Tad
70b96aa211 Update oneplus/sdm845 from 4.9.227 to 4.9.277 
Pulls us into August 2021

Tested working:
- boot
- usb mtp
- wifi
- bluetooth
- cameras
- audio
- gps
- brightness

Signed-off-by: Tad <tad@spotco.us>
 2021-10-21 00:12:59 -04:00
Tad
b78944933c More fixes 
Ensure new shells have the correct settings too.

Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 22:57:43 -04:00
Tad
042b9063d1 More fixes 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 17:12:13 -04:00
Tad
256b1db98b Hard fail on error 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 16:08:43 -04:00
Tad
a5cdb9ab58 Fix patch ordering 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 15:21:22 -04:00
Tad
f7194d1f13 Switch to applyPatch 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 14:01:44 -04:00
Tad
7ba42f052a Small changes 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-14 15:58:22 -04:00
Tad
d5d3846f2c Small tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-10 19:44:59 -04:00
Tad
2af0e1201e Re-enable the recovery downgrade check 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-06 17:03:22 -04:00
Tad
7b28a193f1 Include the Support app 
This is a very basic app with zero permissions and has quick links to
various related resources.

Signed-off-by: Tad <tad@spotco.us>
 2021-10-06 06:21:38 -04:00
Tad
870382ff40 Switch to the Mulch WebView 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-02 01:44:46 -04:00
Tad
7f98aad299 18.1: Drop DnsResolver patches 
Merged upstream

Signed-off-by: Tad <tad@spotco.us>
 2021-10-01 17:54:54 -04:00
Tad
9f9d418060 18.1: forward port the hosts cache and wildcard support 
These were likely missed when resolv/ moved out of netd into DnsResolver.

Signed-off-by: Tad <tad@spotco.us>
 2021-09-26 22:41:30 -04:00
Tad
c6df37ca23 Expose the Sensors Off tile 
This removes the hidden development 'Sensors off' tile from Settings app,
adds it back to SystemUI, and enables it by default.

Tested working on 18.1

Signed-off-by: Tad <tad@spotco.us>
 2021-09-26 16:36:15 -04:00
Tad
84c7d230ab Permission for sensors access patches from @MSe1969 
Signed-off-by: Tad <tad@spotco.us>
 2021-09-24 23:35:33 -04:00
Tad
f5a58bd35f Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2021-09-23 20:56:00 -04:00
Tad
35036e694d Small tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2021-09-08 22:59:33 -04:00
Tad
e84111aaa8 Small changes 
- Include TalkBack
- Fixup hosts inclusion, due to path mismatch
- 14.1: bump patch level to match the picked ASB
- 14.1: m7-common: deblobber fix

Signed-off-by: Tad <tad@spotco.us>
 2021-09-06 14:32:37 -04:00
Tad
043b194210 17.1: add surnia + other changes 
- 17.1: fixup invalid line in marlin from deblobber
- 18.1: fixup audiofx removal
- all: change repo sync to 8 threads from 20, for google HTTP 429 error

Signed-off-by: Tad <tad@spotco.us>
 2021-08-26 21:02:28 -04:00
Tad
de22605785 18.1: add sunfish, bramble, and redfin 
Signed-off-by: Tad <tad@spotco.us>
 2021-08-14 04:52:08 -04:00
Tad
3a79316ddb Fix camera on taimen/walleye/alioth 
+ typo fix for last commit
+ cherrypick cleanups

Signed-off-by: Tad <tad@spotco.us>
 2021-08-10 00:21:02 -04:00
Tad
0b4ad0e7cc 18.1: add raphael, lmi, alioth 
+ verity fixes
+ 16.0: drop beryllium, 18.1 builds now
+ deblob: better handle device makefiles

Signed-off-by: Tad <tad@spotco.us>
 2021-08-09 20:54:44 -04:00
Tad
3f311f84ad Changes 
- WebView update
- 14.1: drop osprey, tested compiling on 17.1
- comment updates
- small patcher fixes

Signed-off-by: Tad <tad@spotco.us>
 2021-08-06 18:36:57 -04:00
Tad
189cf4d801 Update comments 
Signed-off-by: Tad <tad@spotco.us>
 2021-08-04 22:18:00 -04:00
Tad
702ea9c91f Move FP3 to 18.1 
Signed-off-by: Tad <tad@spotco.us>
 2021-07-30 11:55:03 -04:00
Tad
914bed8556 Reimplement fe6f8537 
LTE tested working with hybrid 33-107 modem.
Phone calls drop to HSPA as expected.
No issues if using stock modem either compared to without this patch.

In my area, without this patch, my makos are useless cell-wise.

Gives extra life to the Nexus 4.

Signed-off-by: Tad <tad@spotco.us>
 2021-07-29 15:25:05 -04:00
Tad
40c356371a Small tweaks 2021-07-25 22:41:56 -04:00
Tad
eea1d0e7cd 18.1: add hotdog, hotdogb, aura 2021-07-20 12:58:22 -04:00
Tad
c2b2aa5830 16.0+: Add captive portal toggle from @MSe1969 
Source:
0045a97cb4
b483b4e9ab
18.1 is the 17.1 patch rebased

Wording was altered.

Already included in 14.1+15.1
 2021-07-10 22:48:45 -04:00
Tad
ca857913ef Directory sanity 2021-07-09 07:09:27 -04:00
Tad
dd3a611d0e Cherrypicks 2021-07-08 20:08:24 -04:00
Tad
ef8573b29c Small fixes 2021-06-26 22:59:46 -04:00
Tad
881c24d8b2 Various patches from GrapheneOS 2021-06-26 18:57:46 -04:00
Tad
d6dca6e66d Small tweaks 2021-06-26 14:13:03 -04:00
Tad
eb3e51e7e3 Small tweaks 2021-06-23 13:00:43 -04:00
Tad
d9d564ebd3 Cherrypick updates 2021-06-16 02:41:22 -04:00
Tad
d42c8f033d Small changes 
- Fixup CVE-2020-36386 breakage
- Move some cherrypicks in tree (gerrit down right now, pulled from reflog)
- Update cherrypicks
 2021-06-15 05:46:30 -04:00
Tad
50c670c477 Small tweaks 
- June ASB cherrypicks
- Change default NTP. only 2*.pool.ntp.org supports IPv6
 2021-06-10 22:45:32 -04:00
Tad
94b91c6afd Incall privacy warning from CalyxOS 2021-06-08 12:11:13 -04:00
Tad
143bec97a9 Small tweaks 2021-06-07 21:32:10 -04:00
Tad
5c3d3b4d35 Reverts + disable mm-pp removal 
Revert d7fd127e5f
Partial revert 1c9a66f896
 2021-05-30 10:39:34 -04:00
Tad
1c9a66f896 Ensure mm-pp-daemon is disabled 
When not in late_start appears to break boot if not available.
Seems to fix oneplus2 and likely ether + others
 2021-05-29 18:24:37 -04:00
Tad
4af81f4d66 Update CVE patchers 2021-05-27 14:54:07 -04:00
Tad
1cde58eaa4 Tiny tweaks 2021-05-12 03:15:41 -04:00
Tad
d601ecc611 18.1: bump crosshatch/blueline 2021-05-10 09:15:17 -04:00
Tad
2cf0b314d8 Various changes 
- Cherrypick May ASB topics
- 18.1: bump enchilada, fajita, and guacamole
 2021-05-06 14:37:52 -04:00
Tad
febec1b60a Update CVE patchers 2021-05-02 17:05:53 -04:00
Tad
3770bf469d Add a list of potentially bad commits from umn.edu addresses 2021-04-21 21:40:40 -04:00
Tad
e9fa7b0127 Tiny fixes 2021-04-19 15:55:00 -04:00
Tad
4362cf4e63 Small changes 
- 16.0: drop cheeseburger/dumpling, tested working on 18.1
- Fix some conflicts
 2021-04-18 13:42:23 -04:00
Tad
83fe8f0434 More small tweaks 
- Really fix yylloc sed line
- Drop merged ASB cherrypicks
- Edit vendor gps.conf files too
 2021-04-16 20:31:57 -04:00
Tad
bdf990a638 Small tweaks 
- Remove some changes that have been commented for a while
- Don't remove the QCOM VR repos
- Adjust the default quick tiles
- Don't force hardware layers for recents
- Only generate deltas for update_engine devices
- Cherrypick: Update WebView to 90.0.4430.66
- Adjust yylloc sed line
- Add comments to 17.1 devices explaining why they aren't removed for 18.1 yet
 2021-04-14 21:29:12 -04:00
Tad
b07a8f3058 Move g3 to 18.1 
d852 tested working
 2021-04-14 13:42:03 -04:00
Tad
2f2d94c9b5 Small tweaks 2021-04-13 11:59:08 -04:00
Tad
cc08a358ce 18.1: replace PicoTTS with eSpeak-NG 2021-04-12 21:24:12 -04:00
Tad
f3e672fb18 Failed attempt at fixing signing 
PRODUCT_OTA_PUBLIC_KEYS is meant to be set by a vendor tree, something
we don't use.

Override it at the source and set it explicitely as well.

This ensures that the compiled recovery.img and the one generated by
sign_target_files_apks.py includes the real public keys for verification.

11.0 signing is ignored.

This will need to be extensively tested as breakage can mean brick on locked
devices.
Although in failure cases it seems test-keys are accepted.

--

After much testing there appears to be a deeper issue with how keys
are inserted into the recovery and handled
 2021-04-06 04:07:18 -04:00
Tad
ad178961e4 Improvements and fixes 
- 18.1: disable m8, thermanager is not yet ready
- 17.1: drop cheeseburger/dumpling, it is absolutely broken
- deblobber: remove euicc + others
- deblobber: hack to remove vintf fragments
 2021-04-05 18:09:22 -04:00
Tad
d60f2ab05c 18.1 Add victara 2021-04-02 11:58:28 -04:00
Tad
c3271c38da Small fixes 2021-04-01 20:58:04 -04:00
Tad
9db9215d6b Small changes 
- Disable generation of unused OTA to reduce compile time
- 17.1+: Disable APEX, breaks signing, and is also useless since no Play Store.
- 18.1: Fixup signing
 2021-03-31 01:30:17 -04:00
Tad
398f663e47 Small changes 2021-03-29 23:14:33 -04:00
Tad
9c70bfc6a3 Small fixes 
- Bring 17.1 recovery in line with 18.1
- flox: fix sensors on 17.1
- flo 15.1: sensors might still be broken due to denial
- flox 17.1: reboot issue is likely fixed
- 18.1: fix my Wi-Fi (wpa2-eap with a cert, but no domain)
 2021-03-27 13:48:55 -04:00