Commit Graph

2215 Commits

Author SHA1 Message Date
Tavi
b060b68316
Better patching of CVE-2024-43047
All 4.9 and higher Qualcomm devices are now patched

Signed-off-by: Tavi <tavi@divested.dev>
2024-10-10 22:25:15 -04:00
Tavi
4256660b1a
20.0: October 2024 ASB Picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-10-10 21:23:51 -04:00
Tavi
a2f68a96c1
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-10-10 16:59:41 -04:00
Tavi
d663857820
Update CVE patchers
maybe breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-10-10 16:00:19 -04:00
Tavi
3ca3f835d6
Update CVE patchers
dramatically improved qualcomm module patching support

Signed-off-by: Tavi <tavi@divested.dev>
2024-10-10 14:54:44 -04:00
Tavi
c220a2329a
Fixup
smoke tested:
taimen/4.4, fajita/4.9, flame/4.14, bluejay/5.10

Signed-off-by: Tavi <tavi@divested.dev>
2024-10-09 15:05:48 -04:00
Tavi
48f5e5dd63
Update CVE patchers
maybe breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-10-09 12:36:24 -04:00
Tavi
0af36393f5
14.1: October 2024 ASB picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-10-07 20:36:30 -04:00
Tavi
5589be638e
Update commons
Signed-off-by: Tavi <tavi@divested.dev>
2024-10-07 20:32:38 -04:00
Tavi
75b96a2218
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-10-07 15:58:50 -04:00
Tavi
d1e37f25e1
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-28 10:37:40 -04:00
Tavi
b8c8cfe1c3
Reconcile picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-24 08:50:30 -04:00
Tavi
a458d91293
18.1: Reconcile picks
no effective change

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-21 12:02:00 -04:00
Tavi
e7bd924196
Fixup
smoke tested:
taimen/4.4, fajita/4.9, flame/4.14, bluejay/5.10

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-19 18:59:57 -04:00
Tavi
bcc3d7f47a
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-19 14:37:27 -04:00
Tavi
474f2911f2
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-18 13:03:24 -04:00
Tavi
b79472a3fb
Fixup
compile tested:
taimen/4.4, fajita/4.9, flame/4.14, bluejay/5.10

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-16 13:04:13 -04:00
Tavi
127ceac8c3
Churn
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-16 09:51:07 -04:00
Tavi
b8a754c18c
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-16 09:50:36 -04:00
Tavi
bdcde818b9
15.1: September 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-15 18:17:15 -04:00
Tavi
f2eed12bab
16.0: September 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-15 16:07:03 -04:00
Tavi
40f1367bdc
17.1: September 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-15 13:08:03 -04:00
Tavi
5c166d2039
18.1: September 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-14 16:57:56 -04:00
Tavi
a4f9a76fb9
Reconcile picks
Gains 3 backports for 17.1
and an expat backport for 16.0 and 17.1
thanks to @flamefire

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-14 12:10:39 -04:00
Tavi
6bca4eaf77
19.1: Picks + Churn
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-08 14:03:20 -04:00
Tavi
d3a6439cca
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-08 13:10:13 -04:00
Tavi
6ac71b418a
Churn
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-08 10:00:38 -04:00
Tavi
363b0ad58a
14.1 & 15.1: Prereq patches and backport of CVE-2024-45490 thanks to @syphyr
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-08 09:32:38 -04:00
Tavi
1245d6fad3
Churn + Fixes
Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/338

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-07 22:07:05 -04:00
Tavi
c6299eef89
Picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-06 14:52:17 -04:00
Tavi
b9216efdb3
Update CVE patchers
Maybe breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-06 14:49:10 -04:00
Tavi
1501bea6f2
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-05 14:42:02 -04:00
Tavi
d2b34c7a34
Update commons & pull in the latest helplines too
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-04 14:02:43 -04:00
Tavi
1f2932452f
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-04 13:55:32 -04:00
Tavi
3f55f4df58
Pull in some expat CVE patches
CVE-2024-28757
CVE-2024-45490
CVE-2024-45491
CVE-2024-45492

Signed-off-by: Tavi <tavi@divested.dev>
2024-09-04 12:50:50 -04:00
Tavi
8bc2c3ef3a
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-09-03 16:25:13 -04:00
Tavi
6d3e192fdb
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-31 10:35:42 -04:00
Tavi
1751f66c06
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-27 10:00:46 -04:00
Tavi
4dae73c77d
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-25 12:30:55 -04:00
Tavi
b40a1f97d4
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-22 12:42:37 -04:00
Tavi
09b570fa5d
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-21 14:11:35 -04:00
Tavi
d1271c3224
Update CVE patchers
Maybe breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-21 10:41:53 -04:00
Tavi
5a9f63caaa
Adjust zram defaults
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-19 16:38:49 -04:00
Tavi
f4e498a956
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-19 14:59:27 -04:00
Tavi
44f54b0486
Update CVE patchers
Likely breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-19 14:14:02 -04:00
Tavi
f7bb9e0c06
Fixup + Churn
run tested: flame, fajita

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-17 22:17:10 -04:00
Tavi
22c1d450ce
Update CVE patchers
Likely breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-17 20:42:49 -04:00
Tavi
03a3bdbeda
15.1: August 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-17 13:19:18 -04:00
Tavi
a892dbaa4a
16.0: Picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-17 10:06:44 -04:00
Tavi
439af0cc9d
17.1: August 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-17 10:04:17 -04:00
Tavi
4b0bf74d68
Picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-16 19:39:52 -04:00
Tavi
e3894395a7
Reconcile picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-16 19:37:04 -04:00
Tavi
69bd4382ac
Picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-11 21:26:34 -04:00
Tavi
dda4cd7ab5
Fixups + Churn
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-11 01:09:10 -04:00
Tavi
dbfbdc93cf
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-09 14:57:56 -04:00
Tavi
ce04374a01
Picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-09 14:18:31 -04:00
Tavi
653819edcd
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-08 15:02:19 -04:00
Tavi
e876478d40 Revert "Push marlin/sailfish to 20"
This reverts commit d021933c6c.
2024-08-07 20:03:39 -04:00
Tavi
d021933c6c
Push marlin/sailfish to 20
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-07 20:03:25 -04:00
Tavi
e1586ec317
Always handle alternative property files for oem_unlock_supported
Some of these devices were not being patched, such as:
- pro1x
- oneplus/sm8150-common
- oneplus/sm8250-common
- oneplus/sm8350-common

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-07 15:19:36 -04:00
Tavi
8f6fa700a4
Fix an issue with property additions being added on same line
This caused the OEM unlock toggle to not appear on select devices such as:
- taimen/walleye
- enchilada/fajita
- FP3
- FP4

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-07 14:50:55 -04:00
Tavi
63829126db
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-07 14:24:05 -04:00
Tavi
4d5d69cf34
Update CVE patchers
Likely some breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-07 12:25:52 -04:00
Tavi
9abdaa0d51
CVE-2024-41020
required changes to the patcher

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-05 21:30:00 -04:00
Tavi
9936408a59
Better patching of CVE-2024-41012
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-05 21:02:44 -04:00
Tavi
2187d4bf36
Better patching of CVE-2024-36971
4.6 and higher is impacted
need backport for 4.9 and 4.14

not patched kernels:
	LineageOS-17.1
		kernel_xiaomi_sm6150

	LineageOS-19.1
		kernel_xiaomi_sm8150

	LineageOS-20.0
		kernel_fairphone_sdm632
		kernel_google_msm-4.14
		kernel_google_msm-4.9
		kernel_oneplus_sdm845
		kernel_oneplus_sm8150
		kernel_razer_sdm845
		kernel_samsung_exynos9810
		kernel_sony_sdm845
		kernel_xiaomi_msm8937
		kernel_xiaomi_sdm845
		kernel_xiaomi_sm6150
		kernel_xiaomi_vayu

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-05 20:25:40 -04:00
Tavi
aed895e1ad
More backports
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-05 16:49:08 -04:00
Tavi
d2d0c48a25
Reconcile picks
no effective change:
https://review.lineageos.org/q/topic:%22P_asb_2024-05%22

gains 8 patches:
https://review.lineageos.org/q/topic:%22Q_asb_2024-06%22
https://review.lineageos.org/q/topic:%22Q_asb_2024-07%22

Signed-off-by: Tavi <tavi@divested.dev>
2024-08-05 16:27:33 -04:00
Tavi
f07e0f4722
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-05 16:01:39 -04:00
Tavi
2bb4d94f88
Fixup + Churn
Signed-off-by: Tavi <tavi@divested.dev>
2024-08-01 00:28:48 -04:00
Tavi
9c4c46478d
Disable 72ff1b1a for now due to more compatibility issues
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-31 22:19:53 -04:00
Tavi
094b4f4f41 Update CVE patchers
Likely breakage

Signed-off-by: Tavi <tavi@divested.dev>
2024-07-31 22:19:43 -04:00
Tavi
72ff1b1a4d
16.0+: Relaxed fix for DNS leaks with app based VPNs from GrapheneOS
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-31 20:50:20 -04:00
Tavi
5fb3319508
Update commons
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-31 20:31:27 -04:00
Tavi
59b9517c08
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-29 18:28:29 -04:00
Tavi
9f5886d80b
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-27 18:31:21 -04:00
Tavi
c45060675e
Going the distance... [pt3]
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-27 18:00:56 -04:00
Tavi
33ee2a1c28
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-24 17:24:31 -04:00
Tavi
1f65053495
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-18 21:44:00 -04:00
Tavi
e6f816f4a0
Update CVE patchers
Likely breakage
CVE-2022-48781 maybe change to 5.16-^5.17

Signed-off-by: Tavi <tavi@divested.dev>
2024-07-18 14:34:16 -04:00
Tavi
3400a35eb1
15.1: July 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-17 17:57:47 -04:00
Tavi
105767c7a7
Reconcile picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-17 17:46:34 -04:00
Tavi
85e5812290
16.0: July 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-17 17:43:18 -04:00
Tavi
da2091f118
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-17 15:48:24 -04:00
Tavi
218493fc4a
17.1: July 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-17 14:18:36 -04:00
Tavi
6dee42d038
Fixup
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-17 10:26:36 -04:00
Tavi
bcfba01d60
Reconcile picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-16 18:37:07 -04:00
Tavi
83d7f9a807
Fixup
TODO: replace with 3.10 patch instead

Signed-off-by: Tavi <tavi@divested.dev>
2024-07-16 14:00:24 -04:00
Tavi
837cfbbf48
18.1: July ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-15 15:50:17 -04:00
Tavi
30b658da98
Reconcile picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-14 16:53:44 -04:00
Tavi
7182e4d63a
19.1: July 2024 ASB work
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-14 13:40:10 -04:00
Tavi
236a403d12
Fixup + Churn
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-13 18:46:53 -04:00
Tavi
f0de4dbf4c
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-11 14:14:49 -04:00
Tavi
9efddf820f
20.0: July 2024 ASB picks
ce7b9fd0f5
d39bbaa57e
df49ae67f1
a0afe17e81
cb2db1244c
93a2c9a876
ed52683e9c
09e6330796

Signed-off-by: Tavi <tavi@divested.dev>
2024-07-11 13:26:47 -04:00
Tavi
ef65af8a8e
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-10 15:50:57 -04:00
Tavi
a970293398
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-08 14:43:28 -04:00
Tavi
9d69c5aee8
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-06 12:47:56 -04:00
Tavi
fa6322126d
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-05 13:35:38 -04:00
Tavi
093df020a2
14.1: July ASB picks
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-04 09:19:46 -04:00
Tavi
1e2d7e9218
Update CVE patchers
Signed-off-by: Tavi <tavi@divested.dev>
2024-07-02 09:50:28 -04:00