Commit Graph

172 Commits

Author SHA1 Message Date
Tad
1603092c50 Not all kernels have (working) getrandom support
hammerhead 16.0 was reported not booting
and shamu 18.1 was reported to take ~15+ minutes to boot

hammerhead does not have getrandom so it failed immediately

shamu does have getrandom BUT it blocks during init
meaning it'll wait until the entropy pool slowly fills

In tested I did not discovery this
I tested on flox/mako/d852/klte/clark/sailfish/mata/cheeseburger/fajita
All the newer ones have working getrandom
All the older ones included a patch to make getrandom non blocking on init

Signed-off-by: Tad <tad@spotco.us>
2022-03-17 13:21:52 -04:00
Tad
015799737e Update CVE patchers
Signed-off-by: Tad <tad@spotco.us>
2022-03-09 17:16:47 -05:00
Tad
54dbcd9e43 Update CVE patchers
Signed-off-by: Tad <tad@spotco.us>
2022-03-07 19:12:10 -05:00
Tad
ee0bd8625f Update CVE patchers
Signed-off-by: Tad <tad@spotco.us>
2022-02-07 14:43:05 -05:00
Tad
6329922104 Disable the Hamper Analytics patches
Rely on the HOSTS to do any blocking.
With the last update this causes app crashes, due to boolean/string mismatch.
Need to figure out exactly how string in manifest can become a boolean when wanted.

Signed-off-by: Tad <tad@spotco.us>
2022-01-23 16:55:24 -05:00
Tad
b05823bb20 Update CVE patchers
Signed-off-by: Tad <tad@spotco.us>
2022-01-04 21:00:25 -05:00
Tad
8b3beeb9fd More analytics disablement
Signed-off-by: Tad <tad@spotco.us>
2021-12-27 23:24:03 -05:00
Tad
ee1f466211 Fixup
Signed-off-by: Tad <tad@spotco.us>
2021-12-27 18:16:42 -05:00
Tad
2c1d8d5e78 Hamper analytics improvements
Signed-off-by: Tad <tad@spotco.us>
2021-12-27 17:35:53 -05:00
Tad
f31972f8c8 Update AOSP CVE list to December 2021
Signed-off-by: Tad <tad@spotco.us>
2021-12-11 13:14:15 -05:00
Tad
202f70b980 Final import of loose versioning work
Untested, but likely works.

Signed-off-by: Tad <tad@spotco.us>
2021-12-02 02:47:27 -05:00
Tad
7448c700ba Update AOSP CVE list to November 2021 patches
Qualcomm's anti-scraping/bot protection is still there...
saved pages via Firefox instead

Signed-off-by: Tad <tad@spotco.us>
2021-12-02 02:34:08 -05:00
Tad
bc77ca416c Verity fixups
Not sure how I missed all of these?

Signed-off-by: Tad <tad@spotco.us>
2021-11-01 20:55:22 -04:00
Tad
a9f44dee41 Fix hamper analytics patches
These must all be strings.
Sadly meant this likely hasn't worked for years.
:\

Signed-off-by: Tad <tad@spotco.us>
2021-09-13 15:27:29 -04:00
Tad
79227ba97a Update AOSP CVE list to September 2021 patches
Signed-off-by: Tad <tad@spotco.us>
2021-09-11 15:26:26 -04:00
Tad
bdccb5fb39 Hamper ad_personalization_signals
Signed-off-by: Tad <tad@spotco.us>
2021-08-27 13:46:11 -04:00
Tad
27d55efdff Hamper ssaid collection
Signed-off-by: Tad <tad@spotco.us>
2021-08-27 13:41:57 -04:00
Tad
4fae8d0445 Update CVE patchers
Signed-off-by: Tad <tad@spotco.us>
2021-08-03 12:37:28 -04:00
Tad
70fc6d9acc Update AOSP CVE list to July 2021 patches
QC June/July is not included due to 403
2021-07-12 05:32:37 -04:00
Tad
32856be2d8 Update AOSP CVE list to May 2021 patches 2021-06-01 06:31:29 -04:00
Tad
2cf0b314d8 Various changes
- Cherrypick May ASB topics
- 18.1: bump enchilada, fajita, and guacamole
2021-05-06 14:37:52 -04:00
Tad
3c34d5f4d5 Update AOSP CVE list to April 2021 patches 2021-05-03 10:27:54 -04:00
Tad
5f0ae93a0b Drop the umn patch list
Most seem OK
2021-04-25 11:25:32 -04:00
Tad
4c2fcfd883 Removed confirmed OK patches from the potentially bad list [1/n] 2021-04-21 22:20:27 -04:00
Tad
3770bf469d Add a list of potentially bad commits from umn.edu addresses 2021-04-21 21:40:40 -04:00
Tad
f48738f944 Update CVE patchers 2021-04-06 20:55:55 -04:00
Tad
f02363ecb4 March 2021 Security Updates 2021-03-04 13:02:10 -05:00
Tad
359403efe1 Update AOSP CVE list to February 2021 patches 2021-02-03 11:53:52 -05:00
Tad
31d0b901ae Update cherrypicks 2021-02-03 09:45:26 -05:00
Tad
2b15897297 Update AOSP CVE list to January 2021 patches 2021-01-09 10:41:59 -05:00
Tad
bd4cb22db1 ASB cherry picks 2021-01-05 12:22:42 -05:00
Tad
7e47d62835 Update AOSP CVE list to December patches 2/2 2020-12-18 21:19:19 -05:00
Tad
97a7b0e33f Update AOSP CVE list to December patches 1/2 2020-12-10 12:33:57 -05:00
Tad
3ec13d6bc8 Update CVE patchers 2020-12-08 10:24:24 -05:00
Tad
5d5be8dee8 Update AOSP CVE list to November patches 2020-11-07 17:26:31 -05:00
Tad
6d15a2bb82 Update CVE patchers 2020-10-15 22:36:28 -04:00
Tad
6c9c91941e Fix errors from compile test of all 14.1 kernels 2020-10-14 14:23:22 -04:00
Tad
83c0570e59 Update AOSP CVE list to October patches 2020-10-07 01:59:48 -04:00
Tad
b56fabac3b Update CVE patchers
I expect some breakage here
2020-10-06 21:14:18 -04:00
Tad
589394a589 Small updates 2020-10-05 21:38:15 -04:00
Tad
40654dbf4b Fixup 556a8529 2020-09-15 15:29:10 -04:00
Tad
556a8529e6 Update AOSP CVE list to September patches
- This will need to be re run after more links are added as usual
2020-09-08 17:02:41 -04:00
Tad
bca6af1516 Small updates
- recovery: abort on serial number specific updates, credit: GrapheneOS
- Add lists of missing CVEs
- Update cherrypicks
2020-09-02 14:20:51 -04:00
Tad
7cd6df559c Update AOSP CVE list to August patches 2020-08-05 01:53:50 -04:00
Tad
b6428cf5b0 Update AOSP CVE list to July QC patches 2020-07-08 16:27:21 -04:00
Tad
1fc318b648 Update AOSP CVE list to July patches 2020-07-07 01:01:10 -04:00
Tad
900183743d Add GPG signing to processRelease 2020-06-17 13:20:26 -04:00
Tad
f48dd5f84c Cleanup 9edafa94 2020-06-14 21:47:27 -04:00
Tad
9edafa94f1 Add an QC/CAF CVE patch list
Made with a scraper
May contain many errors
2020-06-14 21:36:44 -04:00
Tad
2624068484 Cleanup ae112ef6 some more 2020-06-07 06:37:46 -04:00
Tad
ae112ef614 Add an AOSP CVE patch list
Made with a scraper
May contain many errors
2020-06-07 06:27:42 -04:00
Tad
d7ef9abf61 Minor tweaks 2020-03-25 22:08:25 -04:00
Tad
f55cdef5b0 Minor tweaks 2019-09-21 15:42:26 -04:00
Tad
057bedb65b Minor tweaks
- 14.1+15.1+16.0: enable kernel protections for files
 - protected_*: hardlinks, symlinks, fifos, regular
 - from GrapheneOS
- defconfig: enable more verity options
- cleanup
2019-08-28 20:24:59 -04:00
Tad
89de66bdba Many small changes
- Cherrypicks for ASB patches
- Apps: Switch gallery to Simple Gallery
- Apps: Switch camera to OpenCamera
- PKGBUILD: update with image optimization dependencies
- Deblobber: fix bug introducted in 6d33e4ecbf
2019-08-08 14:22:24 -04:00
Tad
40d6db0326 divestos.xyz > divestos.org 2019-05-23 11:34:26 -04:00
Tad
30bf0f2fb9 Resurrect verity 2019-05-09 06:16:34 -04:00
Tad
60cf364f19 Minor tweaks
- init.sh: sort options
- overlay: leave radioScanningTimeout default
- hardenDefconfig: disable more components with CVEs
- cherry picks
- 16.0: trebuchet: tmp fix for default workspace overlay
2019-04-03 19:04:37 -04:00
Tad
0ea1d37f0c Minor changes
- Update cherrypicks
- Update submodules
- Add some comments
2019-01-28 21:54:45 -05:00
Tad
776be6f992 Backport Updater Tor support patch to 14.1 2018-09-24 06:46:54 -04:00
Tad
e078d37b82 Enable previously added Bluetooth patches 2018-08-24 13:52:34 -04:00
Tad
cb8fdaf3f5 Low RAM tweaks 2018-07-11 14:20:15 -04:00
Tad
68f77e0a23 Many changes
- 11.0: More work
- 14.1: Grouper fixes
2018-07-09 21:31:24 -04:00
Tad
58d7e42a1d Initial support for 11.0 2018-07-09 16:04:09 -04:00
Tad
33c6980b88 Cleanup 2018-07-03 03:29:08 -04:00
Tad
b35cf0f3ae Few changes
- Deblobber: Fixup AudioFX handling
- 15.1: Fixup starlte
2018-07-01 22:06:29 -04:00
Tad
a13b2ddfa8 Many changes
- SwiftShader progress
- Fix log spam after removal of AudioFX
- 15.1: Add starlte
- Misc tweaks/fixes
2018-06-30 23:43:35 -04:00
Tad
c950207b08 Deblobber: Removing more blobs
- Add initial support to remove graphics blobs
- Add initial support to perform OpenGL rendering using SwiftShader
- Add support to remove Peripheral Manager blobs
- Remove more AudioFX blobs
2018-06-30 19:52:46 -04:00
Tad
60e5d491e9 Deblobber: Remove sepolicy files too 2018-06-16 18:43:07 -04:00
Tad
2ed7a8a874 init.sh: add options to control extra parts of the deblobber 2018-06-13 07:07:47 -04:00
Tad
4912609425 Tweaks 2018-06-08 14:15:50 -04:00
Tad
dc9ec2d8f3 Tweaks 2018-06-06 17:32:17 -04:00
Tad
fe66b008c0 Changes 2018-05-23 06:25:41 -04:00
Tad
b650e7a07f More documentation for hamper analytics + cleanups 2018-05-21 20:29:16 -04:00
Tad
f9f893a443 Hamper the ad/analytics libraries! 2018-05-21 05:28:07 -04:00
Tad
041793dd69 14.1: Drop ether 2018-05-21 04:06:20 -04:00
Tad
67db210756 Many changes
- 15.1: Fixup ether here too
- Change F-Droid application id to allow installation of official F-Droid side by side
- Remove FDroidPriv patch and use sed instead
- Optimize: Switch VM_MAX_READAHEAD to 512KB
- Misc tweaks
- Update TODO
2018-05-20 23:30:40 -04:00
Tad
3efd056bfd Tweaks 2018-05-13 20:32:29 -04:00
Tad
e22d028cbd Switch DNS back to OpenNIC for now 2018-05-08 16:04:41 -04:00
Tad
b30c62629b Revert "Strong AES patch changes"
This reverts commit 60b85e10fe.
2018-04-28 15:35:53 -04:00
Tad
60b85e10fe Strong AES patch changes 2018-04-28 15:25:42 -04:00
Tad
aadb669450 Change default sounds 2018-04-27 22:26:48 -04:00
Tad
3feba464fe Change more defaults 2018-04-27 22:15:04 -04:00
Tad
06cf4e52ce More defaults 2018-04-25 23:49:50 -04:00
Tad
6f7c21f024 Change many more default settings 2018-04-25 23:38:53 -04:00
Tad
4011255c53 14.1: Fixes 2018-04-25 22:28:42 -04:00
Tad
f122ccb9f1 Many changes
- Disable patches with restrictive licenses by default
- Update LICENSE
- Fixup the fix for F-Droid building
- 15.1: Fix forceencrypt on mako
- 15.1: Fix crashes when accessing factory reset and development settings menus
 on devices without support for factory reset protection or oem unlocking
2018-04-23 15:42:27 -04:00
Tad
28600556b4 Many changes
- Add a variable to control inclusion of patches under a restrictive license
- Fix F-Droid building
- Add a buildDeviceDebug function that disables signing
- Misc tweaks/cleanup
- 15.1: Revert trust_interface cherry picks until official
2018-04-23 08:44:50 -04:00
Tad
a914c813b0 15.1: Fixes, 14.1: Cleanup 2018-04-10 19:24:39 -04:00
Tad
d3a231e2be Many build fixes
- Deblobber: sh -> bash (potential fix)
- Mark h815 as broken upstream
- Fix h850
- Fix herolte
- Fix Z00T
2018-01-31 13:14:19 -05:00
Tad
f5e79a3d11 Minor tweaks and update CVE patchers 2018-01-30 02:18:38 -05:00
Tad
3f862c12c5 Cleanup 2018-01-15 15:39:50 -05:00
Tad
3491639412 Overclock thor 2018-01-11 20:29:37 -05:00
Tad
96104d6a2d Overclock mako 2018-01-11 15:58:04 -05:00
Tad
6fb82b7907 Attempt to improve AES performance 2018-01-11 14:16:13 -05:00
Tad
e5cbc542ea Misc changes 2018-01-03 21:55:04 -05:00
Tad
ef211a5107 Fix flo, update CVE patchers 2017-12-24 10:59:48 -05:00
Tad
d740b10822 DNS changes 2017-12-19 17:03:38 -05:00
Tad
fcc8ffc5bd Tweaks and Fixes 2017-12-15 16:42:36 -05:00
Tad
b5c8ef6bc3 Update CVE patchers 2017-12-08 18:59:55 -05:00