Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-06-29 16:12:38 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,610 Commits 1 Branch 0 Tags 89 MiB
349ecd175a
Commit Graph

238 Commits

Author SHA1 Message Date
Tad
59c28bc022 Better ensure extra keys are included 
Signed-off-by: Tad <tad@spotco.us>
 2022-05-12 10:15:03 -04:00
Tad
a9e250afd9 Cleanup 
Signed-off-by: Tad <tad@spotco.us>
 2022-04-07 00:37:20 -04:00
Tad
de764885b3 Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-03-08 12:56:52 -05:00
Tad
bda848a0a1 Fixup 057bedb6 
Sadly this means the option was never enabled :(
Note: these options are only available on 4.4+ kernels

Signed-off-by: Tad <tad@spotco.us>
 2022-03-06 23:05:13 -05:00
Tad
9a6c3f99ed Verify authorship and Change-Id of all contained patches 
- No patches were found with incorrect authorship/From: lines
- The older AndroidHardening patch repos are no longer available to verify CID.
- New GrapheneOS patches do not include a CID.
- *Signature_Spoofing.patch CID could not be found.
- Fixed CID of *Harden_Sig_Spoofing.patch to match 14.1
- Fixed CID of *LGE_Fixes.patch to match 14.1
- Fixed CID of *Harden.patch to match 14.1
- Added edit note to *Harden.patch
- Fixed CID of *PREREQ_Handle_All_Modes.patch to match 14.1
- Fixed CID of *More_Preferred_Network_Modes.patch to match 14.1
- Fixed CID of *AES256.patch to match 14.1
- Fixed CID of *0001-OTA_Keys.patch to match 18.1
- Fixed CID of *Camera_Fix.patch to match 15.1
- Fixed CID of *Connectivity.patch to match 14.1
- Fixed CID of *Fix_Calling.patch to match 14.1
- Fixed CID of *Remove_Analytics.patch to match 14.1
- Fixed CID of Unused-*.patch/audio_extn to match original

Signed-off-by: Tad <tad@spotco.us>
 2022-03-05 13:13:30 -05:00
Tad
bfcf6b18b7 Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-01-12 05:57:08 -05:00
Tad
8b3beeb9fd More analytics disablement 
Signed-off-by: Tad <tad@spotco.us>
 2021-12-27 23:24:03 -05:00
Tad
ee1f466211 Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2021-12-27 18:16:42 -05:00
Tad
2c1d8d5e78 Hamper analytics improvements 
Signed-off-by: Tad <tad@spotco.us>
 2021-12-27 17:35:53 -05:00
Tad
621441349e Fixup the sensors permission patches on 7, 8, and 9. 
Switch these patches to MODE_ALLOWED from MODE_ASK to fix breakage
of system services.

Also remove some code that adds a likely security issue.

Will need some extra regression testing.

Signed-off-by: Tad <tad@spotco.us>
 2021-11-04 10:24:06 -04:00
Tad
b6575a362e Small tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2021-11-02 22:47:34 -04:00
Tad
042b9063d1 More fixes 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 17:12:13 -04:00
Tad
4ce35a3c60 Refresh most branch specific patches 
Fixed up:
LineageOS-16.0/android_packages_apps_Backgrounds/308977.patch
LineageOS-16.0/android_packages_apps_Settings/0001-Captive_Portal_Toggle.patch
LineageOS-17.1/android_packages_apps_Settings/0001-Captive_Portal_Toggle.patch
LineageOS-18.1/android_packages_apps_Settings/0001-Captive_Portal_Toggle.patch

Must review again:
LineageOS-14.1/android_packages_apps_PackageInstaller/64d8b44.patch

Signed-off-by: Tad <tad@spotco.us>
 2021-10-16 15:19:55 -04:00
Tad
0ac035a48e Fixup e4a4e7f8 
Signed-off-by: Tad <tad@spotco.us>
 2021-10-06 05:31:40 -04:00
Tad
e4a4e7f8de Fix BT on apollo/thor 
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/16

Signed-off-by: Tad <tad@spotco.us>
 2021-10-06 04:52:14 -04:00
Tad
84c7d230ab Permission for sensors access patches from @MSe1969 
Signed-off-by: Tad <tad@spotco.us>
 2021-09-24 23:35:33 -04:00
Tad
a9f44dee41 Fix hamper analytics patches 
These must all be strings.
Sadly meant this likely hasn't worked for years.
:\

Signed-off-by: Tad <tad@spotco.us>
 2021-09-13 15:27:29 -04:00
Tad
bdccb5fb39 Hamper ad_personalization_signals 
Signed-off-by: Tad <tad@spotco.us>
 2021-08-27 13:46:11 -04:00
Tad
27d55efdff Hamper ssaid collection 
Signed-off-by: Tad <tad@spotco.us>
 2021-08-27 13:41:57 -04:00
Tad
050da06eba Move n_asb_09-2018-qcom in tree 2021-07-09 21:04:08 -04:00
Tad
f3e672fb18 Failed attempt at fixing signing 
PRODUCT_OTA_PUBLIC_KEYS is meant to be set by a vendor tree, something
we don't use.

Override it at the source and set it explicitely as well.

This ensures that the compiled recovery.img and the one generated by
sign_target_files_apks.py includes the real public keys for verification.

11.0 signing is ignored.

This will need to be extensively tested as breakage can mean brick on locked
devices.
Although in failure cases it seems test-keys are accepted.

--

After much testing there appears to be a deeper issue with how keys
are inserted into the recovery and handled
 2021-04-06 04:07:18 -04:00
Tad
5d14e4b4f7 Small changes 
- Add m7 and avicii (untested)
- Use low_ram target on <2GB devices
  Silly me, this never did anything due to the git reset...
- Update Chromium WebView cherrypick
 2021-03-24 14:43:12 -04:00
Tad
c23646ebd5 More cleanup 2021-03-20 16:37:15 -04:00
Tad
a3fbed9da5 Update cherrypicks and small tweaks 2021-03-07 03:04:44 -05:00
Tad
d53a4f4e41 Update CVE patchers 
- Drop tcp_sack=0 sysctl, as most devices are now patched
 2020-10-12 18:38:07 -04:00
Tad
d16a362141 ASB cherry picks + Fixup 2f83043c 
TODO: rm -v kernel/*/*/drivers/staging/greybus/tools/Android.mk
 2020-09-12 08:29:09 -04:00
Tad
2f83043c68 14.1+15.1: GPS week rollover fix 
16.0: 279492
17.1: 278135

also switch to alternate Xtra servers
https://developer.gemalto.com/threads/gps-time-info-error
 2020-08-09 12:30:47 -04:00
Tad
a6a59309ed More small fixes 2020-07-13 21:28:17 -04:00
Tad
2675404f86 14.1: move n-netd cherry picks in tree 2020-07-13 20:15:08 -04:00
Tad
f5462dd23c Minor tweaks 2020-05-13 17:38:39 -04:00
Tad
7ef8a2726d Minor tweaks 2019-11-28 12:03:40 -05:00
Tad
a8cc390c3d 14.1: cherrypicks 2019-11-24 20:14:23 -05:00
Tad
640ef60b83 Move many old cherry picks in tree for archival/support purposes 2019-10-19 22:03:59 -04:00
Tad
e01e457b24 Per-device signing keys 
- also fix OTA/recovery key regression
- Update cherrypicks
 2019-09-15 22:18:04 -04:00
Tad
e10a865b05 Improve release processing to support deltas and archiving 2019-08-29 19:09:31 -04:00
Tad
057bedb65b Minor tweaks 
- 14.1+15.1+16.0: enable kernel protections for files
 - protected_*: hardlinks, symlinks, fifos, regular
 - from GrapheneOS
- defconfig: enable more verity options
- cleanup
 2019-08-28 20:24:59 -04:00
Tad
6458d6785f Enable IPv6 privacy extensions 2019-07-05 16:47:59 -04:00
Tad
c15105d945 Update CVE patchers 2019-06-17 23:26:38 -04:00
Tad
40d6db0326 divestos.xyz > divestos.org 2019-05-23 11:34:26 -04:00
Tad
25cc717ec2 Use GrapheneOS' hardened memory allocator 
+ 16.0: some other misc hardening patches from GrapheneOS
  - always restrict access to Build.SERIAL
  - don't grant location permission to system browsers
  - fbe: pad filenames more
+ 16.0: Contacts: remove Privacy Policy and Terms of Service links
 2019-04-04 01:07:58 -04:00
Tad
afe719ffc4 16.0: Initial bringup 
- 14.1/15.1: Remove @ValdikSS' bluetooth patches
- 15.1: Cleanup
 2019-03-04 02:45:54 -05:00
Tad
fccc124868 tuna fixes + fdroid priv changes 2019-02-14 04:36:50 -05:00
Tad
ffabfb3616 14.1: fix maguro denials 2019-02-09 14:47:55 -05:00
Tad
9178760d1a Updater: Fix downloads over Tor 
+ Update TODO
+ Minor tweaks
 2019-02-08 20:58:15 -05:00
Tad
378971497c 14.1: Support unified tuna 2019-02-01 02:53:13 -05:00
Tad
c27f226269 Properly fix network mode patch 2018-12-29 12:19:27 -05:00
Tad
66a38a4705 Fixup network modes patch on 14.1 2018-12-28 14:53:23 -05:00
Tad
0df749ef73 Add more preferred network modes such as LTE Only, LTE/3G only, and 3G only 2018-12-28 08:02:24 -05:00
Tad
776be6f992 Backport Updater Tor support patch to 14.1 2018-09-24 06:46:54 -04:00
Tad
08c65c8334 Patches to add captive portal check toggle from @MSe1969 2018-09-22 21:05:41 -04:00