Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-10-01 01:35:54 -04:00
Code Issues Packages Projects Releases Wiki Activity
2,400 Commits 1 Branch 0 Tags 101 MiB
1f2932452f
Commit Graph

1420 Commits

Author SHA1 Message Date
Tad
7d2c184d1f
Bonus patches 
Signed-off-by: Tad <tad@spotco.us>
 2023-10-03 15:17:06 -04:00
Tad
af360bc9ea
20.0: October ASB picks 
wget c873988898.patch -O telecomm-01.patch
wget 0fb5786dbf.patch -O mediaprovider-01.patch
wget 1a4b9ef510.patch -O wifi-01.patch
wget 364a1d9962.patch -O bluetooth-01.patch
wget 87a06448b9.patch -O settings-01.patch
wget aaba724a68.patch -O settings-02.patch
wget 507304e1f5.patch -O native-01.patch
wget 89489ff5dd.patch -O base-01.patch
wget d1765c4715.patch -O base-02.patch
wget cbb1a0ecd6.patch -O base-03.patch
wget 4725772c0b.patch -O base-04.patch
wget 19747f6923.patch -O base-05.patch
wget e7a1aa9ed0.patch -O base-06.patch
wget 922a7860b1.patch -O base-07.patch
wget ed183ed912.patch -O base-08.patch
wget c6fbe1330a.patch -O base-09.patch
wget 9141cac175.patch -O base-10.patch
wget 41235bcc67.patch -O av-01.patch
wget a89f704701.patch -O av-02.patch
wget 6d7cd80d77.patch -O av-03.patch
wget 75fc175a08.patch -O av-04.patch
wget b023ec300f.patch -O av-05.patch
wget c8117d1539.patch -O av-06.patch
wget f06d23d824.patch -O av-07.patch
wget 9c7408ab07.patch -O av-08.patch
wget cfbfcefb3c.patch -O launcher-01.patch
wget 4a27a7f162.patch -O libxml-01.patch

Signed-off-by: Tad <tad@spotco.us>
 2023-10-03 14:42:00 -04:00
Tad
d80f272b54
Update CVE patchers 
CVE-2023-4128 replaces CVE-2023-4208

Signed-off-by: Tad <tad@spotco.us>
 2023-10-02 21:41:34 -04:00
Tad
5bf0ecf173
Bump 
Signed-off-by: Tad <tad@spotco.us>
 2023-10-02 12:12:06 -04:00
Tad
fcf4f812cc
CVE-2023-5217 
untested

Signed-off-by: Tad <tad@spotco.us>
 2023-09-28 09:17:29 -04:00
Tad
24420a7150
20.0: LatinIME patches rebased by @danielk43 
closes https://github.com/Divested-Mobile/DivestOS-Build/issues/248

Signed-off-by: Tad <tad@spotco.us>
 2023-09-26 14:17:59 -04:00
Tad
19f4964036
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-21 16:52:35 -04:00
Tad
b39b2f2feb
Churn + Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-21 16:12:28 -04:00
Tad
25f02f4177
14.1 though 17.1: patch CVE-2023-4863, thanks to @syphyr 
run tested on 14.1, 15.1, and 17.1
compile tested on 16.0

Signed-off-by: Tad <tad@spotco.us>
 2023-09-20 04:16:17 -04:00
Tad
de7d2a2a62
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-19 01:53:33 -04:00
Tad
724b742b64
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-18 15:34:11 -04:00
Tad
1b4f6d3bd8
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-17 01:30:23 -04:00
Tad
095753ffaf
Tweak 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-17 00:28:29 -04:00
Tad
cbf76ea4eb
18.1+: patch CVE-2023-4863 
TODO:
- 17.1 uses v1.0.2, needs backport
  patch for v1.0.3: 8d9916da90

Signed-off-by: Tad <tad@spotco.us>
 2023-09-15 14:38:14 -04:00
Tad
cbc5a339e6
20.0: LatinIME patches rebased by @danielk43 
closes https://github.com/Divested-Mobile/DivestOS-Build/issues/244

Signed-off-by: Tad <tad@spotco.us>
 2023-09-13 15:30:11 -04:00
Tad
5eb6190931
Fixup 15.1/16.0 backport: system/bt: Fix UAF in gatt_cl.cc 
thanks to @syphyr for this!

Signed-off-by: Tad <tad@spotco.us>
 2023-09-12 16:55:46 -04:00
Tad
3aa7e02455
15.1 September ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-11 20:09:30 -04:00
Tad
033c600eac
16.0 September ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-11 16:14:15 -04:00
Tad
aa4464d1c4
17.1 September ASB work 
+ an August backport from @flamefire

Signed-off-by: Tad <tad@spotco.us>
 2023-09-11 01:23:37 -04:00
Tad
84a84c4742
Picks + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-10 21:12:24 -04:00
Tad
6e5745143f
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-08 20:00:23 -04:00
Tad
b0800a1479
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-07 21:23:50 -04:00
Tad
964877bbf6
20.0: September ASB picks 
wget b96ee4a2d1.patch -O telephony-01.patch
wget c16e6e78c1.patch -O media-01.patch
wget d5771450d7.patch -O media-02.patch
wget a1370bd00c.patch -O nn-01.patch
wget ce2776f4ca.patch -O bt-01.patch
wget 585f583ef5.patch -O bt-02.patch
wget c9905e7968.patch -O bt-03.patch
wget c93ec045f5.patch -O bt-04.patch
wget 89fb17d172.patch -O bt-05.patch
wget 14aed2455e.patch -O bt-06.patch
wget cd438ebc52.patch -O bt-07.patch
wget 27e7cdc4e5.patch -O nfc-01.patch
wget dfeb4270b8.patch -O launcher-01.patch
wget b1993f6cec.patch -O native-01.patch
wget df4a9362cd.patch -O fwb-01.patch
wget b55563bb9d.patch -O fwb-02.patch
wget a80971a281.patch -O fwb-03.patch
wget 7e173b4383.patch -O fwb-04.patch
wget 44191b1c6b.patch -O fwb-05.patch
wget 8dc8dfe572.patch -O fwb-06.patch
wget 00a4224100.patch -O av-01.patch
wget 21623d1f43.patch -O settings-01.patch
wget fa5ec443d9.patch -O settings-02.patch
wget ba4da9c7b3.patch -O settings-03.patch

Signed-off-by: Tad <tad@spotco.us>
 2023-09-06 15:42:52 -04:00
Tad
3e8effa345
ASB cherrypicks 
https://review.lineageos.org/q/topic:%22n-asb-2023-09%22

Signed-off-by: Tad <tad@spotco.us>
 2023-09-05 20:50:36 -04:00
Tad
0ec3c25d86
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-09-05 20:42:14 -04:00
Tad
ababe54a0c
14.1: Disable dexpreopt 
causes many bizarre issues on devices
- apps crashing on certain functions
- apps loading content from other apps
- etc.

Signed-off-by: Tad <tad@spotco.us>
 2023-09-04 15:36:57 -04:00
Tad
a17a425265
14.1: Fixup Freetype 
90b7894627

Signed-off-by: Tad <tad@spotco.us>
 2023-09-03 17:36:24 -04:00
Tad
9e954ea987
Restore face unlock for Pixel 4 series 
We keep fingerprint reader blobs, so why not these?

Signed-off-by: Tad <tad@spotco.us>
 2023-09-01 20:51:49 -04:00
Tad
6d52d2f6ce
m8: Fix display corruption 
Fixes the screen shifting vertically when in a full screen task like camera

Signed-off-by: Tad <tad@spotco.us>
 2023-08-31 21:55:13 -04:00
Tad
56b71651c5
Tweak 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-30 15:22:00 -04:00
Tad
4afb99b6d1
Fixup fc903251 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-30 12:48:37 -04:00
Tad
8acec36989 20.0: eUICC for all 
TODO: move this setting to the cell menu

Signed-off-by: Tad <tad@spotco.us>
 2023-08-30 12:41:30 -04:00
Tad
fc9032513f
Update CVE patchers 
Likely issue CVE-2023-3773/^6.4

Signed-off-by: Tad <tad@spotco.us>
 2023-08-27 17:13:53 -04:00
Tad
bf55f7d572
Remove more face unlock blobs and unbreak camera on Pixel 4 series 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-26 18:22:51 -04:00
Tad
aa0ab3c1ba
Revert "Try to fixup cell service on crackling" 
didn't work

This reverts commit 43e55668fd.
 2023-08-25 09:56:20 -04:00
Tad
fa030fcbf4
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-24 21:38:33 -04:00
Tad
52a0c55c41
Fixups 
- Revert Freetype branch switching for 15.1+, broken
- Don't include OpenEUICC on Pixel 2 and 3 series, they won't work
- Churn

Signed-off-by: Tad <tad@spotco.us>
 2023-08-24 03:06:02 -04:00
Tad
1fde0f9c45
More branch switching, thanks to @syphyr 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-23 11:05:05 -04:00
Tad
7835c2b2ae
18.1+: Restrict tile usage when locked, credit @GrapheneOS 
TODO: backport to older branches

Signed-off-by: Tad <tad@spotco.us>
 2023-08-22 17:54:19 -04:00
Tad
8b51c3cd0f
Fixup OpenEUICC inclusion 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-21 20:00:31 -04:00
Tad
d6c3b6c8fa
More eSIM work 
- Add the GrapheneOS package hook mechanism
- Ensure OpenEUICC and EuiccSupportPixel are only enabled in the system user
- Prevent EuiccSupportPixel interactions
- Remove INTERNET permission from EuiccSupportPixel

Signed-off-by: Tad <tad@spotco.us>
 2023-08-21 16:50:51 -04:00
Tad
c070e856b2
eSIM enablement via @PeterCxy's OpenEUICC 
tested working on bluejay

Signed-off-by: Tad <tad@spotco.us>
 2023-08-21 09:25:10 -04:00
Tad
c90920965f
Remove some garbage 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-20 16:11:44 -04:00
Tad
43e55668fd
Try to fixup cell service on crackling 
netmgrd appears incompatible with hmalloc
noted by @fishy1337
https://github.com/Divested-Mobile/DivestOS-Build/issues/204#issuecomment-1676439970

Signed-off-by: Tad <tad@spotco.us>
 2023-08-18 11:24:04 -04:00
Tad
ceec1584a9
Fixup hosts cache thanks to patch from @danielk43 
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/198

Signed-off-by: Tad <tad@spotco.us>
 2023-08-18 11:17:14 -04:00
Tad
2142e2e763
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-17 17:18:10 -04:00
Tad
9707326c4f
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-13 16:16:21 -04:00
Tad
160aee5049
Backport patch to handle verity with openssl 3.0 
ref: https://github.com/Divested-Mobile/DivestOS-Website/pull/19

Signed-off-by: Tad <tad@spotco.us>
 2023-08-11 18:53:01 -04:00
Tad
3a32beaad5
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-10 12:40:34 -04:00
Tad
cd0ede5a0d
Fix an inconsistency 
As noted by @syphyr

Signed-off-by: Tad <tad@spotco.us>
 2023-08-09 16:15:29 -04:00
Tad
877257692e
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-09 12:58:32 -04:00
Tad
974878988b
Fixup 
Will regen later

Signed-off-by: Tad <tad@spotco.us>
 2023-08-09 00:46:44 -04:00
Tad
51bcf23dac
14.1 August ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-08 23:41:40 -04:00
Tad
79e3fb6fb4
15.1 August ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-08 09:35:44 -04:00
Tad
4b2160cf56
16.0 August ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-08 07:48:57 -04:00
Tad
f52adb2bc5
17.1 August ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-08 06:31:22 -04:00
Tad
566decb5dd
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-08 05:14:44 -04:00
Tad
e627cdee05
Sync with @flamefire's Q_asb_2023-07 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-08 05:01:00 -04:00
Tad
eef09ae519
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-07 18:07:19 -04:00
Tad
7ef5d9a9c4
Broken EUICC handling 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-05 18:57:32 -04:00
Tad
180280b233
Update CVE patchers 
TODO: adjust min version of CVE-2023-4132

Signed-off-by: Tad <tad@spotco.us>
 2023-08-04 21:00:29 -04:00
Tad
c777c74717 16.0 Backports 
- hosts toggle
- auto reboot
- bluetooth timeout
- unprivileged microG
- ptrace toggle
- exec spawning toggle

TODO: needs work

Signed-off-by: Tad <tad@spotco.us>
 2023-07-27 16:35:00 -04:00
Tad
95a57748ea
Fix the fix 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-25 13:03:44 -04:00
Tad
e458e9ddd4
Unbreak the F-Droid additional repos 
microG pubkey was wrongly spanning multiple lines
likely from copy/paste of old diff

addresses https://gitlab.com/fdroid/fdroidclient/-/issues/2662

Signed-off-by: Tad <tad@spotco.us>
 2023-07-25 13:01:45 -04:00
Tad
73414e76d2
Update CVE patchers 
two lpes

Signed-off-by: Tad <tad@spotco.us>
 2023-07-25 12:04:05 -04:00
Tad
c8d3354113
Patch from CalyxOS to make AOSP less spyware 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-24 14:35:24 -04:00
Tad
e74f861c8e
Fixes + Churn 
- Fix instances of awk failing on missing globs
- Remove unwanted packages from work/user/managed profiles
- Remove proprietary camera extensions

Signed-off-by: Tad <tad@spotco.us>
 2023-07-24 03:59:51 -04:00
Tad
4bab1c31d7
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-19 16:05:51 -04:00
Tad
af57c5c857
Tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-19 04:43:13 -04:00
Tad
aa6bfad801
Various 
- Drop OpenCamera, it doesn't work on lock screens anymore?
- microG on 18.1+:
  - set packages forceQueryable
  - spoof some sources as Play Store
    TODO: backport this to 17.1
- Remove camera extensions
- Churn
- Wording

Signed-off-by: Tad <tad@spotco.us>
 2023-07-15 18:22:07 -04:00
Tad
1c9076fffe
KSM tuning 
- Only enable on Linux 3.0 through 4.9
- Always enable defer option
- Only run twice a second, instead of fifty times a second

Signed-off-by: Tad <tad@spotco.us>
 2023-07-14 20:27:10 -04:00
Tad
11c286ecd4
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-14 17:27:20 -04:00
Tad
192c73146a
Add a toggle for KSM 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-14 17:11:21 -04:00
Tad
b5bb498248
Many tweaks 
- 19.1/20.0: Enable low ram for <6GB devices
- 20.0: support RROs with exec spawning patch from GrapheneOS
- allow work profiles when low ram is enabled
- churn
- cherrypicks

Signed-off-by: Tad <tad@spotco.us>
 2023-07-13 16:40:05 -04:00
Tad
eff7a69bed
Small changes 
- Another fix
- Deblobber tweaks
- Patch from GrapheneOS
- Cherrypick

Signed-off-by: Tad <tad@spotco.us>
 2023-07-13 10:58:41 -04:00
Tad
fdeceb5c9c
Fixups 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-10 22:50:33 -04:00
Tad
7a53edc390
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-10 17:11:15 -04:00
Tad
fc01bcba7f
Churn 
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/222

Signed-off-by: Tad <tad@spotco.us>
 2023-07-09 21:23:25 -04:00
Tad
ad8e5b631a
16.0+17.1: Extra July ASB backport from @MSe1969 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-09 14:49:51 -04:00
Tad
fb0064ffbf
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-09 14:43:06 -04:00
Tad
83cbcfa39b
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-08 15:21:06 -04:00
Tad
9d6662dee7
15.1 July ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-07 18:00:23 -04:00
Tad
293f97d678
16.0 July ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-07 17:24:47 -04:00
Tad
4db68c3de1
Fixup b92655da 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-07 15:28:55 -04:00
Tad
b92655dac4
17.1 July ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-07 14:17:23 -04:00
Tad
2651f33e5c
ASB cherrypicks 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-07 13:44:00 -04:00
Tad
5bc210f135
Adjust microg config path 
/product can't be used for now
https://github.com/microg/GmsCore/issues/1976

also move the wording around so it can be easier to remove later
after a new release is tagged

Signed-off-by: Tad <tad@spotco.us>
 2023-07-07 13:33:48 -04:00
Tad
492ed24ca2
Fixups 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-06 17:59:25 -04:00
Tad
34f2d0d15a
Tweak micorG defaults 
New options added
4772008582

Signed-off-by: Tad <tad@spotco.us>
 2023-07-06 14:39:38 -04:00
Tad
c4666a33b7
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-05 19:42:40 -04:00
Tad
c9a7ff8bba
Override all microG defaults to disabled 
TODO after fixed:
SafetyNet: https://github.com/microg/GmsCore/issues/1971
Geocoder: https://github.com/microg/GmsCore/issues/1972

Signed-off-by: Tad <tad@spotco.us>
 2023-07-04 14:48:18 -04:00
Tad
a96f74ca28
Enable the opt-in unprivileged microG enablement patchset 
Runtime tested: 17.1, 18.1, 20.0
Compile tested: 19.1

Signed-off-by: Tad <tad@spotco.us>
 2023-07-03 21:50:08 -04:00
Tad
b7d37053c3
Further harden signature spoofing with targetSdk and versionCode checks 
- Also fix compile for 17.1, rest should be fine

Signed-off-by: Tad <tad@spotco.us>
 2023-07-03 17:33:34 -04:00
Tad
f2c8005853
16.0: switch to upstream P_asb_2023-06 
Has two extra patches for Traceur, but misses a patch for CarSettings

Signed-off-by: Tad <tad@spotco.us>
 2023-07-03 15:22:32 -04:00
Tad
4282c7c35f
Backports of 0f4044e2 to 17.1/18.1/19.1 
Also don't grant any special location permissions

Signed-off-by: Tad <tad@spotco.us>
 2023-07-03 15:17:56 -04:00
Tad
0f4044e242
20.0: opt-in hardened unprivileged microG ability 
Unlike other systems which ship privileged microG out of the box:
- User must enable microG repo in F-Droid
- User must install official microG apps (GmsCore/FakeStore/GSF)
- User must enable the microG toggle in Settings
- NOT a privileged app, not all features will work
- gmscore SELinux domain is still disabled

Signed-off-by: Tad <tad@spotco.us>
 2023-07-03 13:45:06 -04:00
Tad
2e2ac4557d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-26 19:41:11 -04:00
Tad
dc4d6b0901
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-20 18:36:31 -04:00
Tad
1e7f10d6b6
20.0: drop June ASB patches 
QPR3 has been merged

Signed-off-by: Tad <tad@spotco.us>
 2023-06-20 16:22:02 -04:00
Tad
5146f67cee
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-18 07:34:03 -04:00
Tad
cda898f141
Certificate Authority store updates 
- Remove some untrustworthy CAs
- Update CA store for all branches to aosp/e302aa968334b3c3fc9cd709a7c7661e0cf534eb

Signed-off-by: Tad <tad@spotco.us>
 2023-06-17 15:13:54 -04:00
Tad
41e2669884
17.1: switch to flamefire's ASB topics 
This gets us ~9 extra patches

Signed-off-by: Tad <tad@spotco.us>
 2023-06-17 15:13:46 -04:00
Tad
a07133a064
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-16 11:03:46 -04:00
Tad
e2ca79c607
20.0: add dot.sb DNS preset 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-14 19:42:30 -04:00
Tad
0dde119d7e
20.0 June ASB work + churn 
QPR3 is delayed a week now

Patches pulled from GrapheneOS and checked against CalyxOS

Signed-off-by: Tad <tad@spotco.us>
 2023-06-12 21:06:42 -04:00
Tad
8c7f3daa00
15.1+16.0 June ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-10 05:16:45 -04:00
Tad
ab52996e4f
16.0: switch to upstream topic for May ASB patches 
They're identical
I'll likely eventually pull them back in anyway

Signed-off-by: Tad <tad@spotco.us>
 2023-06-10 01:57:59 -04:00
Tad
67dd049bf6
17.1 June ASB work 
Note: 358555 is prone to mismerge

Signed-off-by: Tad <tad@spotco.us>
 2023-06-09 23:42:54 -04:00
Tad
e7b390d7e6
Picks 
https://review.lineageos.org/q/topic:%22n-asb-2023-06%22

Signed-off-by: Tad <tad@spotco.us>
 2023-06-09 21:59:53 -04:00
Tad
78fa476749
Churn + Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-09 16:19:07 -04:00
Tad
04b4a1a45f
Picks + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-08 22:48:40 -04:00
Tad
ffe020a7a0
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-07 18:01:35 -04:00
Tad
f31b5f6ac9
Update CVE patchers 
No change :(

Signed-off-by: Tad <tad@spotco.us>
 2023-06-05 16:26:16 -04:00
Tad
11d228c7c3
Switch CensurfriDNS to anycast domain 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-05 15:47:21 -04:00
Tad
2ee99fe3ef
Update CVE patchers 
CVE-2020-36694 appears to be a duplicate of CVE-2021-29650

Signed-off-by: Tad <tad@spotco.us>
 2023-06-01 21:12:08 -04:00
Tad
e696cceac9
20.0 Private DNS work 
- Simplify Private DNS preset patchsets
  based on updated CalyxOS patchset
  TODO: backport this

- Add DoH endpoints for all of the presets
  Disabled, very few hosts actually support DoH/3

Signed-off-by: Tad <tad@spotco.us>
 2023-05-31 19:02:10 -04:00
Tad
8a43be3c58
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-30 15:17:29 -04:00
Tad
59bda0360e
Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-30 13:59:28 -04:00
Tad
5aa8f42e7a
Update commons 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-24 11:08:49 -04:00
Tad
8463705798
Update CVE patchers 
- Includes CVE-2023-32233 fixes for more devices
- Upstream has reverted the LVT patches, maybe consider handling them

Signed-off-by: Tad <tad@spotco.us>
 2023-05-22 20:33:47 -04:00
Tad
71c169d326
Promote LGE G5, G6, and V20 to 19.1 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-17 02:52:11 -04:00
Tad
cd0a29d69b
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-12 23:28:44 -04:00
Tad
6fb0a581c3
15.1 and 16.0 May ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-07 21:28:27 -04:00
Tad
8503986acb
17.1 May ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-07 14:29:54 -04:00
Tad
21702e1fc7
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-07 00:36:02 -04:00
Tad
0004c224cf
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-06 00:15:27 -04:00
Tad
14c191ffb5
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-04 21:19:33 -04:00
Tad
c544c28b94
Prevent Qualcomm location stack from reading chipset serial number 
The deblobber already removes xtra-daemon which is what actually performs the requests.
This is just extra sanctity.

Signed-off-by: Tad <tad@spotco.us>
 2023-05-03 21:41:20 -04:00
Tad
366b4eb5ef
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-02 18:01:39 -04:00
Tad
39b0c9e036
Remove broken emoji updates 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-02 15:31:57 -04:00
Tad
7b2eb1079a
Update emoji list in LatinIME too and disable 
tested not working on 15.1
shows as cross boxes or double characters

Signed-off-by: Tad <tad@spotco.us>
 2023-04-29 16:56:13 -04:00
Tad
86b7525400
Update the emojis, untested 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-29 16:17:00 -04:00
Tad
e7d8f7598b
17.1 extra backports, credit @Flamefire 
Includes 2 extra patches from
https://github.com/Flamefire/android_device_sony_lilac/tree/lineage-17.1/patches/asb-2023-04

Santiy checked patches against
https://github.com/Flamefire/android_device_sony_lilac/tree/lineage-17.1/patches/asb-2023-03

Signed-off-by: Tad <tad@spotco.us>
 2023-04-29 11:17:21 -04:00
Tad
ab4eceb830
17.1 April ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-28 17:17:54 -04:00
Tad
18f72663e8
Fix + churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-25 02:03:40 -04:00
Tad
47136145e5
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-23 23:20:36 -04:00
Tad
26cf500dad
15.1 April ASB work + picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-18 23:12:22 -04:00
Tad
9ba61642de
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-17 23:19:28 -04:00
Tad
aad60b7567
Promotions 
16.0 santoni/land to 20.0 Mi8937 unified
17.1 griffin to 18.1
17.1 star*/crownlte to 20.0
20.0 add pro1x

Signed-off-by: Tad <tad@spotco.us>
 2023-04-17 21:36:49 -04:00
Tad
7263a6fd6e
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-17 12:27:05 -04:00
Tad
baeec11627
Picks + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-16 01:24:20 -04:00
Tad
a3807ca12d
Picks + churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-12 20:47:31 -04:00
Tad
ed25b69f5f
Pull in n-asb-2023-04 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-12 15:30:59 -04:00
Tad
2cc87c4dc7
Switch fingerprint locked to 5 attempts instead of 3 + churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-12 15:26:26 -04:00
Tad
6433756d9f
F-Droid repo updates 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-08 17:38:08 -04:00
Tad
9a97c7013b
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-05 12:43:36 -04:00
Tad
4435c200ed
15.1+: vCard 4.0 support from GrapheneOS 
8fbeedd002

Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/202

Signed-off-by: Tad <tad@spotco.us>
 2023-04-04 12:50:42 -04:00
Tad
e8adaec3d6
Update commons 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-04 10:27:10 -04:00
Tad
750f244304
Updates, logging, and churn 
also add an extra March ASB patch for 17.1

Signed-off-by: Tad <tad@spotco.us>
 2023-03-31 12:38:46 -04:00
Tad
ca93ef33ce
Slightly improve compatibility with apps that want GSF 
38a5ca05e9

Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 23:45:58 -04:00
Tad
9039ae3ed1
17 extra March patch 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 23:42:28 -04:00
Tad
332c469151
Silence some log spam 
As repoted on FP3

Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 23:40:31 -04:00
Tad
2907be1be5
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 00:48:08 -04:00
Tad
c4a23756a5 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-25 20:44:13 -04:00
Tad
790eeebc90
14/15 extra March patch 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-25 20:35:40 -04:00
Tad
2c17747c82
15.1 March ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-22 22:13:31 -04:00
Tad
f9cee4664b
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-22 19:20:44 -04:00
Tad
b522a16298
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-22 07:21:15 -04:00
Tad
44fa294eca
17.1 March ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-21 15:01:12 -04:00
Tad
b4dbe27f23
Fixes 
- 18.1: Fix exempted background tasks when dozing (GrapheneOS)
- 20.0: pick a fix for some colors after qpr2
- 20.0: fix the missing notification backdrop

Signed-off-by: Tad <tad@spotco.us>
 2023-03-20 17:51:09 -04:00
Tad
9475615e77
A13 QPR2 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-19 20:52:48 -04:00
Tad
ec38522af9
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-18 20:52:59 -04:00
Tad
8bcb5c734d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-17 19:27:22 -04:00
Tad
38626e1b0c
Picks + Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-14 16:58:27 -04:00
Tad
162b40a39d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-13 18:13:54 -04:00
Tad
0b294c1601
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 16:01:49 -05:00
Tad
7e3bbc174a
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-06 22:57:45 -05:00
Tad
9c6087f4a8
Update commons 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-06 20:39:36 -05:00
Tad
804786aa23
Update CVE patchers 
Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/193

Signed-off-by: Tad <tad@spotco.us>
 2023-03-06 19:54:15 -05:00
danielk43
11039a156d Update LOS20 hardened_malloc patches 2023-02-27 10:10:41 -05:00
Tad
b8f39716f1
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-26 12:21:36 -05:00
Tad
2706fc9d59
Missing pick 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-19 15:37:16 -05:00
Tad
b2913e8170
15.1 February ASB work + Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-19 13:07:11 -05:00
Tad
2993b459f0
Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-18 23:53:28 -05:00
Tad
b08bf0356f
Small additions + churn 
- 18.1+: Disable NTP fully when automatic time is off, credit GrapheneOS
- 20.0: Handle Tor-over-Orbot when killswitch enabled, credit CalyxOS, BROKEN

Signed-off-by: Tad <tad@spotco.us>
 2023-02-18 13:52:46 -05:00
Tad
9f82763c53
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-17 23:57:04 -05:00
Tad
742a2fb7e2
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-13 10:32:56 -05:00
Tad
e9f58cfd3c
VPN fixes 
Some devices still don't have these in 2023
https://gitlab.com/LineageOS/issues/android/-/issues/2193

Note, the following still aren't patched:
15.1
kernel/google/msm
kernel/lge/hammerhead

16.0
kernel/cyanogen/msm8974
kernel/lge/hammerhead

18.1
kernel/motorola/msm8974

Signed-off-by: Tad <tad@spotco.us>
 2023-02-12 21:34:23 -05:00
Tad
a845f59546
Fixup persistent IPv6 privacy address issue + churn 
Backports of rfc4941bis from Google/Linaro
and workaround for legacy kernels from GrapheneOS

already has rfc4941bis patch:
fairphone_sdm632
google_gs101
google_gs201
google_msm-4.14
google_msm-4.9
google_redbull
oneplus_sdm845
razer_sdm845
xiaomi_sdm845

Signed-off-by: Tad <tad@spotco.us>
 2023-02-11 20:26:24 -05:00
Tad
62b2318078 Backports + Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-11 19:20:28 -05:00
Tad
49f5f1c674
19.1+: Add the SUPL toggle setting from GrapheneOS 
Will need some work to apply on 17.1/18.1

Signed-off-by: Tad <tad@spotco.us>
 2023-02-10 23:57:04 -05:00
Tad
046f35c66c
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-08 15:00:42 -05:00
Tad
9c2c5a444e
Update CVE patchers 
no actual changes

Signed-off-by: Tad <tad@spotco.us>
 2023-02-07 20:12:03 -05:00
Tad
fa067a3f89
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-06 23:06:34 -05:00
Tad
ef51b5e5af
Updated strict package check patches from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-03 17:57:15 -05:00
Tad
6e75c0dbd3
Fix boot failure after WebView signature changes 
Tested working on:
- 14.1: toroplus
- 15.1: bullhead, hammerhead
- 17.1: clark

This is the same issue which resulted in e61e288b being reverted.
Still unclear why this happens.

Signed-off-by: Tad <tad@spotco.us>
 2023-02-03 00:02:44 -05:00
Tad
dc853bfdae
WebView: Switch to dedicated package name 
And remove the F-Droid repo for it, will be moved to the 'DivestOS Official' repo
This simplifies release management and also allows other systems to benefit from the repo

Downside is users who don't update to this build won't receive any updates for it anymore

Signed-off-by: Tad <tad@spotco.us>
 2023-02-02 17:17:30 -05:00
Tad
48ce0ad7d9 Fixup + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-01 21:36:47 -05:00
Tad
1511176a07
Update CVE patchers 
Maybe some breakage

Signed-off-by: Tad <tad@spotco.us>
 2023-01-28 20:33:44 -05:00
Tad
3231979ef4
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 20:55:42 -05:00
Tad
fb7bf503b1
Pull in the special permissions reset bugfix from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:20:00 -05:00
Tad
b1da856762
Cleanup 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:14:26 -05:00
Tad
8abf9a0031
Finish e81cd558 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:12:05 -05:00
Tad
da1df44c8f
GrapheneOS kernel hardening patches update 
Maybe some compile breakage

Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:03:01 -05:00
Tad
e81cd5586d
Add even more captive portal servers + sorting 
TODO: apply to other branches

Signed-off-by: Tad <tad@spotco.us>
 2023-01-23 16:42:00 -05:00
Tad
2529515b33
19.1+: Fixup DHCP hostname handling 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-22 15:52:20 -05:00
Tad
a96d2221cd
Fix off-by one 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-22 00:09:02 -05:00
Tad
9558a7d0e9 Switch to the Broadcom PSDS server for Pixel 6/7 series 
Instead of agnss.goog cache
Based off of a patch from GrapheneOS

Signed-off-by: Tad <tad@spotco.us>
 2023-01-21 04:08:26 -05:00
Tad
ad466bd3e4
Various changes 
- 17.1: Add more captive portal server options like 18.1+, disabled: needs fixes
- 17.1: Add the hosts toggle like 18.1+
- 18.1: fix junk in patch
- 17.1+: hosts toggle: bugfix: fixup localhost handling by switching to strcmp
- 15.1: fixes to get hmalloc to compile, does NOT boot

Signed-off-by: Tad <tad@spotco.us>
 2023-01-20 18:59:02 -05:00
Tad
84a9a1326c
18.1+: add multiple captive potal server options 
This also switches 18.1 from @MSe1969's patch to the GrapheneOS patch
Can maybe port to 17.1 too

Signed-off-by: Tad <tad@spotco.us>
 2023-01-20 00:21:30 -05:00
Tad
5ce2d33162
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-18 14:13:33 -05:00
Tad
b01e902988 m8: boost microphone volume patch from @Ke1i 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-14 14:01:30 -05:00
Tad
2153422bb0
Potentially unbreak video playback on vayu, davinci, guacamole*, and hotdog*. 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-13 21:27:18 -05:00
Tad
14f40e024f
Update CVE patchers 
This adds loose versioning applying 4.14 patches to 4.9

Signed-off-by: Tad <tad@spotco.us>
 2023-01-13 13:23:12 -05:00
Tad
207bdd2406
Strict versionCode checks for system apps from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-11 12:19:41 -05:00
Tad
7dbdcdf751 Tweak Aperture defaults 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-08 21:20:36 -05:00
Tad
c92c084ca1
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-08 20:49:57 -05:00
Tad
b143ffcd8b
15.1 January ASB work 
+ a missing patch from 2019-08

Signed-off-by: Tad <tad@spotco.us>
 2023-01-08 16:31:54 -05:00
Tad
57d951ccb5
Missing patches for 16.0 + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-08 13:22:50 -05:00
Tad
10c1d825c2
Revert e10d4b17 
17.1 is plagued with the same issue, no reason to use it

Signed-off-by: Tad <tad@spotco.us>
 2023-01-07 11:17:21 -05:00
Tad
efa31534a9
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-07 10:52:03 -05:00
Tad
f2d87b1e81
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-03 20:18:40 -05:00
Tad
06eed1fba9
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-31 21:41:46 -05:00
Tad
e10d4b1799
17.1: restore m8 
18.1 has some display artifacting issues and hangs

Signed-off-by: Tad <tad@spotco.us>
 2022-12-28 14:38:05 -05:00
Tad
06254708be
Many fixes to get bluejay booting & working proper 
- Enable APEX for Pixel 6/7, necessary for camera and pKVM
  - Also drop hack removing pKVM for Pixel 6/7
  - patch from GrapheneOS

- Extend hmalloc workaround to /apex

- Deblobber:
  - actually handle wildcard f/w/b overlays
  - move some stuff around
  - remove some more Pixel blobs
  - flag and disable removal of camera extensions, being able to use the second camera is nice

- Adjust what hardenDefconfig disables, caused boot issues
  minimal impact as most of these are already default-disabled
  can be narrowed down in future

- Disable some of the bionic hardening patches, causing more boot issues
  annoying to lose, but having a phone that boots is more important

- Add LTE only mode to 17.1, 18.1, 19.1, and 20.0, credit GrapheneOS

- Remove Pixel 2 ramdisk compression reverts, fixed upstream

And yes, I know I should've split up this commit...

Signed-off-by: Tad <tad@spotco.us>
 2022-12-25 13:21:37 -05:00
Tad
751d1e8d72
Misc patches 
- 20.0: updated and enabled burnIn patch
- 19.1: fixup apps having data restrictions wrongly applied

Signed-off-by: Tad <tad@spotco.us>
 2022-12-23 10:09:37 -05:00
Tad
7d6b8e3aeb
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-22 11:33:47 -05:00
Tad
b5bc269743
SBC dualchannel picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-18 21:47:22 -05:00
Tad
03293f6b52
Fixup 
Messy, but better to have CVE-2022-42896 applied to *some* 3.18 kernels

Signed-off-by: Tad <tad@spotco.us>
 2022-12-17 00:42:25 -05:00
Tad
c2fc228f3b Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-16 22:06:13 -05:00
Tad
ad5de60266
More Pixel 6/7 work 
compiles, but fails to generate release due to pvmfw failure

Signed-off-by: Tad <tad@spotco.us>
 2022-12-15 20:49:30 -05:00
Tad
4f1c1b343c
Update commons 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-15 17:45:18 -05:00
Tad
1eb373d1e0
15.1 December ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-12 21:01:34 -05:00
Tad
5e918c5506
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-12 19:30:56 -05:00
Tad
29c9826c11
20.0: QPR1 churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-10 20:57:17 -05:00
Tad
b78f573eb9
Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-10 20:30:22 -05:00
Tad
63cbd1f483
14.1 December ASB, thanks to @syphyr 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-10 20:17:48 -05:00
Tad
abb616d2f3
Updates 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-09 17:23:20 -05:00
Tad
ce47fdae34
Small updates + Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-07 18:41:50 -05:00
Tad
a62922e72d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-06 15:00:40 -05:00
Tad
0aa4fd0fc3
Update CVE patchers 
Appears I skipped 20.0 by accident last update

Signed-off-by: Tad <tad@spotco.us>
 2022-12-05 14:23:06 -05:00
Tad
3c8c235758
Ugly workaround 
For bug exposed after:
https://review.lineageos.org/c/LineageOS/android_frameworks_base/+/344890

Signed-off-by: Tad <tad@spotco.us>
 2022-12-03 23:58:36 -05:00
Tad
178e127338
Small tweaks + churn 
Fixes recovery not booting on 20.0

Signed-off-by: Tad <tad@spotco.us>
 2022-12-03 16:19:31 -05:00
Tad
038fca449b
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-30 08:28:40 -05:00
Tad
680bf51e05
Ugly hack 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-22 07:24:21 -05:00
Tad
fd0e3e8117
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-22 07:11:30 -05:00
Tad
c4fe56a307
Update CVE patchers 
This fixes CVE-2018-9422 which was primarily added via b56fabac

May still need to be fixed:
16.0/kernel_google_yellowstone
16.0/kernel_xiaomi_msm8937

Signed-off-by: Tad <tad@spotco.us>
 2022-11-21 08:39:10 -05:00
Tad
7f24df22f7 Small updates 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-21 06:09:29 -05:00
Tad
9d1efb33c3
More 14.1 picks + 15.1 November ASB work 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-13 23:21:41 -05:00
Tad
14f7f1db32
Updates + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-13 02:06:05 -05:00
Tad
decf46084c
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-12 10:26:28 -05:00
Tad
b81d39c969
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-11 16:05:22 -05:00
Tad
27395374e1
Fixup + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-11 13:54:57 -05:00
Tad
8bfedda18b
14/15/16: Fix compile failure with modern kernels 
https://android-review.googlesource.com/c/platform/art/+/2226578
https://groups.google.com/g/Android-building/c/ZfUQQWt_ABI

Signed-off-by: Tad <tad@spotco.us>
 2022-11-10 18:26:36 -05:00
Tad
8d4d73d65c
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-09 18:11:48 -05:00
Tad
807a08210a
Tweaks 
- 20.0: pick fixes for the deny usb toggle
- 20.0: pull in a patch from GrapheneOS removing a package list leak

Signed-off-by: Tad <tad@spotco.us>
 2022-11-07 20:30:36 -05:00
Tad
ac3dc319c7
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-07 15:51:17 -05:00
Tad
b9f4074226 20.0: disable the broken monet toggle patch 
Has some weird inconsistencies

Signed-off-by: Tad <tad@spotco.us>
 2022-11-03 14:49:28 -04:00
Tad
7fb334d825
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-03 13:25:38 -04:00
Tad
aa4ffdb014
20.0: add taimen/walleye 
not stable yet, ims crashes invoking rescueparty

Signed-off-by: Tad <tad@spotco.us>
 2022-10-31 18:31:55 -04:00
Tad
11780d890f Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-24 22:53:41 -04:00
Tad
c051cb282d Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-22 21:39:01 -04:00
Tad
94d7ea9bb3
20.0: fixup exec spawning toggle and also default disable it like 42c9d22d 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-22 18:04:44 -04:00
Tad
dfcbf14c17
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-19 22:13:14 -04:00
Tad
006f128fc5
15.1: October 2022 ASB picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-19 16:08:18 -04:00
Tad
8ddbd86d44
20.0: more devices 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-19 15:22:20 -04:00
Tad
148df59b7e
Cleanup: Drop UnifiedNlp, FDroidPrivExt, and Silence 
These haven't been included for a while

+remove some old cruft from 20.0

Signed-off-by: Tad <tad@spotco.us>
 2022-10-19 12:15:24 -04:00
Tad
d2096c86d9
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-18 22:44:01 -04:00
Tad
0c4db149e1
20.0: Network & Sensors permission from GrapheneOS 
This revokes the permissions to all user installed apps on update.
Likely an expected quirk of being on 20.0 without the permission.
19.1 upgrades and new 20.0 installs should be fine.

TODO: update 19.1 with the SpecialRuntimePermAppUtils too

Signed-off-by: Tad <tad@spotco.us>
 2022-10-18 22:14:56 -04:00
Tad
91b908a78a
20.0: more fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-17 06:39:55 -04:00
Tad
e8248e4938
20.0: fixes + r11 churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-16 17:18:06 -04:00
Tad
4524eb43d3
20.0: It boots! 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-16 08:54:04 -04:00
Tad
5b114cacf8
20.0: More fixes 
It compiles, but fails to sign:
> TypeError: cannot use a string pattern on a bytes-like object

Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 17:20:41 -04:00
Tad
5cada3a769
20.0: Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 15:53:17 -04:00
Tad
055ed9bfad
20.0: Initial bringup 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 10:39:48 -04:00
Tad
2acd454f13
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-13 23:42:20 -04:00
Tad
820c47caea
Update Carrier Configs 
CarrierConfig@6563341442262a4b79a4a2674679615f010b9837
TelephonyProvider@20a6228381b3e89e8c0972d115d422c08e0c9adb

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 21:41:08 -04:00
Tad
e3125dd7de
Update VVM and MMS configs from GrapheneOS 
VVM: 2637686af5
MMS: 0c7e979f05

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 21:33:47 -04:00
Tad
9b6b9e7090
Fixup 75abc8b9 
Copy/paste error

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 19:30:19 -04:00
Tad
2166491d5d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 17:11:06 -04:00
Tad
75abc8b9ec
19.1: add a modified patch from GrapheneOS to disable connectivity checks 
This removes their option for their servers

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 16:14:41 -04:00
Tad
fe95f700d8 Remove the CNE and DPM blobs + churn 
Just say no!

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 01:23:45 -04:00
Tad
e7968e1269
Picks + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-09 16:35:12 -04:00
Tad
bf66d5db45
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 20:59:55 -04:00
Tad
348b392f03
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 10:24:04 -04:00
Tad
d78121a1c0
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 10:22:17 -04:00
Tad
da2e44c5f3
Add back the CNE and DPM blobs + churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-02 11:47:58 -04:00
Tad
598d78bb61
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-25 13:49:45 -04:00
Tad
25568706e1
Various 
- Add back the SIM ToolKit app
- 17.1: CarrierConfig testing
- 19.1: Enable op5 firmware inclusion, needs testing
- Don't disable coresight bits on op8, breaks compile
- 19.1: Add a patch from GrapheneOS to display/share logs when a crash happens

Signed-off-by: Tad <tad@spotco.us>
 2022-09-23 22:53:12 -04:00
Tad
411fcc08e1
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-15 14:11:58 -04:00
Tad
eb200546ea
17.1+: Update carrier configs for improved compatibility 
CarrierConfig@c2819f8
TelephonyProvider@af5c1386

Signed-off-by: Tad <tad@spotco.us>
 2022-09-14 14:58:01 -04:00
Tad
b6b698966c
Fixup 
Stray files

Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 23:29:13 -04:00
Tad
4573f6d7c3
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 22:41:48 -04:00
Tad
ec42acceb6
Various fixes from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 10:24:26 -04:00
Tad
3b0c05fe7c
Pull VVM config from GrapheneOS instead of LineageOS 
79.0.438914483 instead of 72.0.407683083

Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 10:14:05 -04:00
Tad
115edfe2a4
Update MMS database for Messaging app 
This is a squashed import of these two commits from GrapheneOS:
2d95f1ee9e
c297a079e4

Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 10:13:50 -04:00
Tad
202033c013
Pull in old cherrypicks + 5 missing patches from syphyr 
This adds 3 expat patches for n-asb-2022-09
from https://github.com/syphyr/android_external_expat/commits/cm-14.1
and also applies 2 of them to 15.1

Signed-off-by: Tad <tad@spotco.us>
 2022-09-11 14:02:35 -04:00
Tad
df3db92d5a
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-10 22:09:18 -04:00
Tad
e2b314da3c
15.1+16.0: September 2022 ASB picks 
16.0 backports thanks to MSe1969 as usual:
https://github.com/lin16-microg/android_system_bt/commits/lineage-16.0 - last 3 commits
https://github.com/lin16-microg/android_frameworks_base/commits/lineage-16.0 - last 4 commits
https://github.com/lin16-microg/android_external_expat/commits/lineage-16.0 - last 4 commits

Signed-off-by: Tad <tad@spotco.us>
 2022-09-10 18:32:25 -04:00
Tad
2bc43f195c
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-07 10:04:28 -04:00
Tad
b6e9f50cb5
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-04 14:05:36 -04:00
Tad
5fe5a4f898
Compile fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-29 14:26:47 -04:00
Tad
da15dc05d5
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 14:00:52 -04:00
Tad
adb61b0fb2
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 12:15:45 -04:00
Tad
4973d22c3a
Updates 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-22 17:20:23 -04:00
Tad
d8d8e457a1 Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-21 10:44:12 -04:00
Tad
7918347d1c Updates 
- Add a script to update commons like APNs, VVM configs, and contributors cloud
- Add the latest contributors cloud to all branches
- Update wireless-regdb to 2022.08.12 release
- Add some shell opts to some scripts

Signed-off-by: Tad <tad@spotco.us>
 2022-08-15 16:37:42 -04:00
Tad
ebdf629cbc 15.1 ASB work 
Compile tested

Signed-off-by: Tad <tad@spotco.us>
 2022-08-12 21:10:31 -04:00
Tad
8b67d5c41e Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-10 22:02:37 -04:00
Tad
12c56938cb Improve CVE-2021-1048 patching on 3.x kernels 
It is still actively being used by malware.

This largely handles 3.0, 3.4, and 3.10 kernels.
It works for select 3.18 kernels too.

TODO: need alternate get_file_rcu backport for the following:
15.1/lge_msm8996
15.1/zte_msm8996
16.0/xiaomi_msm8937
17.1/motorola_msm8996
18.1/google_marlin
18.1/lge_msm8996
18.1/oneplus_msm8996

Signed-off-by: Tad <tad@spotco.us>
 2022-08-09 21:39:25 -04:00