DivestOS

mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-07-01 09:02:05 +00:00

Author	SHA1	Message	Date
Tad	af3fe9776b	Small updates Signed-off-by: Tad <tad@spotco.us>	2023-02-01 15:19:21 -05:00
Tad	1511176a07	Update CVE patchers Maybe some breakage Signed-off-by: Tad <tad@spotco.us>	2023-01-28 20:33:44 -05:00
Tad	da1df44c8f	GrapheneOS kernel hardening patches update Maybe some compile breakage Signed-off-by: Tad <tad@spotco.us>	2023-01-24 19:03:01 -05:00
Tad	9558a7d0e9	Switch to the Broadcom PSDS server for Pixel 6/7 series Instead of agnss.goog cache Based off of a patch from GrapheneOS Signed-off-by: Tad <tad@spotco.us>	2023-01-21 04:08:26 -05:00
Tad	626821d12d	Use HTTPS for GLPals Signed-off-by: Tad <tad@spotco.us>	2023-01-20 21:22:16 -05:00
Tad	5ce2d33162	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2023-01-18 14:13:33 -05:00
Tad	b82427ce5b	Conservative reverse loose versioning for 3.10 This applies 3.4 patches to 3.10 if no other match is available Note: CVE-2017-13245/3.4/0002.patch ends up applied over CVE-2018-10902/3.18/0003.patch Signed-off-by: Tad <tad@spotco.us>	2023-01-13 15:51:46 -05:00
Tad	14f40e024f	Update CVE patchers This adds loose versioning applying 4.14 patches to 4.9 Signed-off-by: Tad <tad@spotco.us>	2023-01-13 13:23:12 -05:00
Tad	efa31534a9	Picks Signed-off-by: Tad <tad@spotco.us>	2023-01-07 10:52:03 -05:00
Tad	06eed1fba9	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-12-31 21:41:46 -05:00
Tad	7d6b8e3aeb	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-12-22 11:33:47 -05:00
Tad	b5bc269743	SBC dualchannel picks Signed-off-by: Tad <tad@spotco.us>	2022-12-18 21:47:22 -05:00
Tad	03293f6b52	Fixup Messy, but better to have CVE-2022-42896 applied to some 3.18 kernels Signed-off-by: Tad <tad@spotco.us>	2022-12-17 00:42:25 -05:00
Tad	c2fc228f3b	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-12-16 22:06:13 -05:00
Tad	63cbd1f483	14.1 December ASB, thanks to @syphyr Signed-off-by: Tad <tad@spotco.us>	2022-12-10 20:17:48 -05:00
Tad	038fca449b	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-11-30 08:28:40 -05:00
Tad	fd0e3e8117	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-11-22 07:11:30 -05:00
Tad	c4fe56a307	Update CVE patchers This fixes CVE-2018-9422 which was primarily added via `b56fabac` May still need to be fixed: 16.0/kernel_google_yellowstone 16.0/kernel_xiaomi_msm8937 Signed-off-by: Tad <tad@spotco.us>	2022-11-21 08:39:10 -05:00
Tad	9d1efb33c3	More 14.1 picks + 15.1 November ASB work Signed-off-by: Tad <tad@spotco.us>	2022-11-13 23:21:41 -05:00
Tad	14f7f1db32	Updates + Churn Signed-off-by: Tad <tad@spotco.us>	2022-11-13 02:06:05 -05:00
Tad	b81d39c969	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-11-11 16:05:22 -05:00
Tad	27395374e1	Fixup + Churn Signed-off-by: Tad <tad@spotco.us>	2022-11-11 13:54:57 -05:00
Tad	8bfedda18b	14/15/16: Fix compile failure with modern kernels https://android-review.googlesource.com/c/platform/art/+/2226578 https://groups.google.com/g/Android-building/c/ZfUQQWt_ABI Signed-off-by: Tad <tad@spotco.us>	2022-11-10 18:26:36 -05:00
Tad	8d4d73d65c	Picks Signed-off-by: Tad <tad@spotco.us>	2022-11-09 18:11:48 -05:00
Tad	ac3dc319c7	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-11-07 15:51:17 -05:00
Tad	7fb334d825	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-11-03 13:25:38 -04:00
Tad	c051cb282d	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-10-22 21:39:01 -04:00
Tad	148df59b7e	Cleanup: Drop UnifiedNlp, FDroidPrivExt, and Silence These haven't been included for a while +remove some old cruft from 20.0 Signed-off-by: Tad <tad@spotco.us>	2022-10-19 12:15:24 -04:00
Tad	055ed9bfad	20.0: Initial bringup Signed-off-by: Tad <tad@spotco.us>	2022-10-15 10:39:48 -04:00
Tad	e7968e1269	Picks + Churn Signed-off-by: Tad <tad@spotco.us>	2022-10-09 16:35:12 -04:00
Tad	bf66d5db45	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-10-03 20:59:55 -04:00
Tad	d78121a1c0	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-10-03 10:22:17 -04:00
Tad	598d78bb61	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-09-25 13:49:45 -04:00
Tad	202033c013	Pull in old cherrypicks + 5 missing patches from syphyr This adds 3 expat patches for n-asb-2022-09 from https://github.com/syphyr/android_external_expat/commits/cm-14.1 and also applies 2 of them to 15.1 Signed-off-by: Tad <tad@spotco.us>	2022-09-11 14:02:35 -04:00
Tad	e5eb67f77d	Picks Signed-off-by: Tad <tad@spotco.us>	2022-09-08 16:07:23 -04:00
Tad	2bc43f195c	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-09-07 10:04:28 -04:00
Tad	b6e9f50cb5	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-09-04 14:05:36 -04:00
Tad	5fe5a4f898	Compile fixes Signed-off-by: Tad <tad@spotco.us>	2022-08-29 14:26:47 -04:00
Tad	86ed884251	More verification Signed-off-by: Tad <tad@spotco.us>	2022-08-26 23:14:15 -04:00
Tad	3618774d9f	GPG verification for all platform repositories Signed-off-by: Tad <tad@spotco.us>	2022-08-26 22:40:27 -04:00
Tad	adb61b0fb2	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-08-26 12:15:45 -04:00
Tad	d8d8e457a1	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-08-21 10:44:12 -04:00
Tad	7918347d1c	Updates - Add a script to update commons like APNs, VVM configs, and contributors cloud - Add the latest contributors cloud to all branches - Update wireless-regdb to 2022.08.12 release - Add some shell opts to some scripts Signed-off-by: Tad <tad@spotco.us>	2022-08-15 16:37:42 -04:00
Tad	cf019edef9	Fixes Signed-off-by: Tad <tad@spotco.us>	2022-08-13 18:54:50 -04:00
Tad	8b67d5c41e	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-08-10 22:02:37 -04:00
Tad	12c56938cb	Improve CVE-2021-1048 patching on 3.x kernels It is still actively being used by malware. This largely handles 3.0, 3.4, and 3.10 kernels. It works for select 3.18 kernels too. TODO: need alternate get_file_rcu backport for the following: 15.1/lge_msm8996 15.1/zte_msm8996 16.0/xiaomi_msm8937 17.1/motorola_msm8996 18.1/google_marlin 18.1/lge_msm8996 18.1/oneplus_msm8996 Signed-off-by: Tad <tad@spotco.us>	2022-08-09 21:39:25 -04:00
Tad	e0b57197ea	Churn Signed-off-by: Tad <tad@spotco.us>	2022-08-06 11:30:49 -04:00
Tad	31a67f054d	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-08-04 11:12:40 -04:00
Tad	178f01958d	Cherrypicks Signed-off-by: Tad <tad@spotco.us>	2022-08-02 19:39:09 -04:00
Tad	2b299c1aff	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-07-21 21:28:26 -04:00
Tad	d3632c25ce	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-07-07 21:47:59 -04:00
Tad	22f915cc3e	Cherrypicks Signed-off-by: Tad <tad@spotco.us>	2022-07-07 18:59:37 -04:00
Tad	2c27a88a24	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-07-06 19:22:21 -04:00
Tad	7b8ef09540	Update CVE patchers Effectively no changes Signed-off-by: Tad <tad@spotco.us>	2022-07-04 18:30:09 -04:00
Tad	ac645dd62e	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-06-28 11:32:05 -04:00
Tad	519a474173	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-06-19 22:44:05 -04:00
Tad	70b8485695	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-06-09 17:59:48 -04:00
Tad	c092b13a44	Restore star*lte Signed-off-by: Tad <tad@spotco.us>	2022-06-08 22:55:00 -04:00
Tad	2bf84a7643	Increase default max password length to 64, credit GrapheneOS Closes https://github.com/Divested-Mobile/DivestOS-Build/pull/119 Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/27 Signed-off-by: Tad <tad@spotco.us>	2022-06-07 15:33:38 -04:00
Tad	899ea17d4e	Add the missing page sanitization to 3.18 kernels All along they only had slub sanization :( Signed-off-by: Tad <tad@spotco.us>	2022-06-04 12:00:01 -04:00
Tad	92c66447f8	Drop slub_debug What is lost? - sanity checks and redzoning on all devices - redzoning reportedly however causes issues on some devices such as the Pixel 3/4 and OnePlus 7 - slub sanization on 3.0, 3.4, 4.4 (except google/wahoo), xiaomi/sm6150, and oneplus/sm7250 Note: all 3.4+ devices still have page sanization Signed-off-by: Tad <tad@spotco.us>	2022-06-03 13:58:17 -04:00
Tad	da63c9e571	Various small patches `7408144e1b` > extend Network/Sensors permission handling for legacy apps not targeting Android 6 > or above (API 23) to resolve a UI issue where the user choosing to grant the > Network/Sensors permissions via the legacy permission review interface doesn't > appear in the Settings app info page `22d32cb61b` suppresses https://github.com/Divested-Mobile/DivestOS-Build/discussions/112 `66f406b979` `3f69205d06` nice to have Signed-off-by: Tad <tad@spotco.us>	2022-06-02 23:17:05 -04:00
Tad	6d95c231bc	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-05-31 21:29:22 -04:00
Tad	735c9e0de8	Revert `5d57bf13` I don't trust enabling MODULES won't cause weird inane breakage on these legacy devices Signed-off-by: Tad <tad@spotco.us>	2022-05-27 23:46:57 -04:00
Tad	5d57bf13c4	Compile fixes The backported fix for CVE-2021-39713 requires CONFIG_MODULES=y MODULES is default enabled, but some kernels are mutilated and break with it on Signed-off-by: Tad <tad@spotco.us>	2022-05-26 22:36:22 -04:00
Tad	28724c4a6e	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-05-25 22:52:22 -04:00
Tad	2c4caa30a1	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-05-24 00:36:49 -04:00
Tad	e8bc36af04	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-05-20 17:16:29 -04:00
Tad	c4400a9a6f	Pick Signed-off-by: Tad <tad@spotco.us>	2022-05-09 22:16:00 -04:00
Tad	b2eb3c01b4	Update CVE patchers Newly added CVE-2022-20009 is dupe with CVE-2022-25258 and CVE-2022-25375 Signed-off-by: Tad <tad@spotco.us>	2022-05-03 23:33:17 -04:00
Tad	9c549763a4	Tiny tweak Signed-off-by: Tad <tad@spotco.us>	2022-05-03 21:11:05 -04:00
Tad	65883d9bc4	2022 Signed-off-by: Tad <tad@spotco.us>	2022-05-01 01:13:49 -04:00
Tad	3316cc4824	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-04-27 07:46:22 -04:00
Tad	3457fd4151	Device cleanup Drop long non-compiling devices: - 14.1: n7100, jellypro - 15.1: himaul, oneplus2 - 16.0: zenfone3, fugu - 17.1: yellowstone, fugu - 18.1: bonito, sargo Drop in favor of 19.1: - 17.1: bonito, sargo - 18.1: pro1, aura, sunfish, coral, flame, bramble, redfin (experimental, but these devices don't currently appear to have any users) Signed-off-by: Tad <tad@spotco.us>	2022-04-26 15:19:57 -04:00
Tad	1f721c7845	Further credit patches Signed-off-by: Tad <tad@spotco.us>	2022-04-19 23:52:10 -04:00
Tad	e666a4a891	Update CVE patchers TODO: maybe split CVE-2022-23960/4.9 to get back? Signed-off-by: Tad <tad@spotco.us>	2022-04-19 14:38:44 -04:00
Tad	d4dceffa60	Update supported kernels to latest wireless regulations database Applies for ~43 kernel trees Source: wireless-regdb-2022.04.08 Signed-off-by: Tad <tad@spotco.us>	2022-04-19 11:30:57 -04:00
Tad	163a162568	Fix boot animation + churn Signed-off-by: Tad <tad@spotco.us>	2022-04-18 23:04:24 -04:00
Tad	4b6a86a473	Add missing device variants Signed-off-by: Tad <tad@spotco.us>	2022-04-14 19:47:21 -04:00
Tad	be6b03fe96	Churn Signed-off-by: Tad <tad@spotco.us>	2022-04-13 14:54:08 -04:00
Tad	42c9d22de9	Default disable exec spawning Change the property too, so it takes effect next update. Since 16.0 lacks a toggle, this effectively disables the feature for it. Even devices with 4GB of RAM have usability severely impacted. Plus some other tweaks/churn Signed-off-by: Tad <tad@spotco.us>	2022-04-12 17:58:04 -04:00
Tad	30de608a61	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-04-12 02:51:44 -04:00
Tad	f747fb36e5	Various Signed-off-by: Tad <tad@spotco.us>	2022-04-08 16:55:30 -04:00
Tad	a9e250afd9	Cleanup Signed-off-by: Tad <tad@spotco.us>	2022-04-07 00:37:20 -04:00
Tad	b464106cc5	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-04-04 15:51:23 -04:00
Tad	6c5a65622c	Page sanitization improvements This ensures init_on_alloc/free is used instead of page poisioning where available. 3.4 through 3.18 have a patch without a toggle for page sanitization. Signed-off-by: Tad <tad@spotco.us>	2022-04-02 12:57:17 -04:00
Tad	01900ca1c6	Reverts WebView overlay is breaking boot on 15.1??? This reverts commit `e61e288b4a`.	2022-04-01 17:07:27 -04:00
Tad	3f9b346345	Fix boot breakage On devices with quota enabled and impacted by this patch Signed-off-by: Tad <tad@spotco.us>	2022-04-01 10:30:30 -04:00
Tad	e26908b9e0	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-31 21:30:56 -04:00
Tad	19b03c9ff4	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-28 17:43:48 -04:00
Tad	a56e3a3016	Disable the bionic hardening patchset to fix boot issues 10+4 devices tested working with bionic hardening patches enabled but hammerhead and shamu do not boot... 2 of the patches were already found to have issues and disabled 3 other patches were ruled out: - Stop implicitly marking mappings as mergeable - Make __stack_chk_guard read-only at runtime - On 64-bit, zero the leading stack canary byte Leaves 11+1 patches remaining that need to be tested But I don't have either of the two known impacted devices. Signed-off-by: Tad <tad@spotco.us>	2022-03-19 16:19:00 -04:00
Tad	3207cde72e	Small tweaks Signed-off-by: Tad <tad@spotco.us>	2022-03-19 12:41:49 -04:00
Tad	09353cdcd2	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-18 00:07:18 -04:00
Tad	e61e288b4a	Optionally allow the official Bromite WebView to be used, credit @MSe1969 This also replaces the overrides for all versions And should allow the Google WebView on 14/15/16 And lastly only leaves the bundled version as default This is a merge of the LineageOS 14/15/16 and 17/18 overlay With the addition of the Bromite signature from @MSe1969 Signed-off-by: Tad <tad@spotco.us>	2022-03-14 22:59:40 -04:00
Tad	f65c7a4ccd	Tweaks Signed-off-by: Tad <tad@spotco.us>	2022-03-12 11:48:23 -05:00
Tad	015799737e	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-09 17:16:47 -05:00
Tad	4f75a8272a	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-09 11:59:30 -05:00
Tad	902239e2b5	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-08 23:20:43 -05:00
Tad	54dbcd9e43	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-03-07 19:12:10 -05:00
Tad	bda848a0a1	Fixup `057bedb6` Sadly this means the option was never enabled :( Note: these options are only available on 4.4+ kernels Signed-off-by: Tad <tad@spotco.us>	2022-03-06 23:05:13 -05:00
Tad	ac1e89f0c8	Update CVE patchers [the big fixup] This removes many duplicately or wrongly applied patches. Correctly removed: - CVE-2011-4132 can apply infinitely - CVE-2013-2891 can apply infinitely - CVE-2014-9781 can apply once to fb_cmap_to_user correctly and incorrectly to fb_copy_cmap - CVE-2015-0571 can apply incorrectly and was disabled in patch repo as a result - CVE-2016-2475 can apply infinitely - CVE-2017-0627 can apply infinitely - CVE-2017-0750 can apply infinitely - CVE-2017-14875 can apply infinitely - CVE-2017-14883 can apply infinitely - CVE-2020-11146 can apply infinitely - CVE-2020-11608 can apply infinitely - CVE-2021-42008 can apply infinitely Questionable (might actually be beneficial to "incorrectly" apply again): - CVE-2012-6544 can apply once to hci_sock_getsockopt correctly and incorrectly to hci_sock_setsockopt - CVE-2013-2898 can apply once to sensor_hub_get_feature correctly and incorrectly to sensor_hub_set_feature - CVE-2015-8575 can apply once to sco_sock_bind correctly and incorrectly to sco_sock_connect - CVE-2017-8281 can apply once to diagchar_ioctl correctly and incorrectly to diagchar_compat_ioctl - CVE-2019-10622 can apply once to qdsp_cvp_callback correctly and incorrectly to qdsp_cvs_callback - CVE-2019-14104 can apply once to cam_context_handle_start/stop_dev and incorrectly to cam_context_handle_crm_process_evt and cam_context_handle_flush_dev Other notes: - CVE-2016-6693 can be applied again if it was already applied in combination with CVE-2016-6696 then the dupe check will fail and mark CVE-2016-6696 as already applied, effectively reverting it. This was seemingly fixed with a hand merged patch in patch repo. Wrongly removed: - CVE-2013-2147 is meant for cciss_ioctl32_passthru but is detected in cciss_ioctl32_big_passthru - CVE-2015-8746 is meant for nfs_v4_2_minor_ops but is detected in nfs_v4_1_minor_ops - CVE-2021-Misc2/ANY/0043.patch is meant for WLANTL_RxCachedFrames but is detected in WLANTL_RxFrames Signed-off-by: Tad <tad@spotco.us>	2022-03-04 00:42:28 -05:00
Tad	f4fbe65756	Various changes - 15.1: asb picks - 17.1: drop marlin, sailfish, z2_plus, m8 - 4.9 loose versioning fixes	2022-02-24 19:51:44 -05:00
Tad	8b39498b1c	Initial loose versioning work for 4.9 This applies 4.9 patches to 4.4 and 3.18 now that 4.4 is EOL Untested, but looks mild Signed-off-by: Tad <tad@spotco.us>	2022-02-22 13:44:47 -05:00
Tad	5245109cc1	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-02-19 23:22:19 -05:00
Tad	a23bae5cd5	Tiny tweak Signed-off-by: Tad <tad@spotco.us>	2022-02-11 23:35:22 -05:00
Tad	b6da59d24f	Drop FairEmail, Vanilla, and their AOSP equivalents Signed-off-by: Tad <tad@spotco.us>	2022-02-11 14:25:30 -05:00
Tad	65584e96ce	Switch to official Etar The Lineage forks have fallen behind Signed-off-by: Tad <tad@spotco.us>	2022-02-08 14:10:04 -05:00
Tad	51003bff5a	Add an option to clobber after every run Signed-off-by: Tad <tad@spotco.us>	2022-01-24 18:01:21 -05:00
Tad	2400cf0964	App updates - Drops Calendar, Eleven, and Email - Adds a variable for Silence inclusion - Adds a NONE option for microG inclusion flag to disable NLP inclusion Signed-off-by: Tad <tad@spotco.us>	2022-01-24 06:30:15 -05:00
Tad	6329922104	Disable the Hamper Analytics patches Rely on the HOSTS to do any blocking. With the last update this causes app crashes, due to boolean/string mismatch. Need to figure out exactly how string in manifest can become a boolean when wanted. Signed-off-by: Tad <tad@spotco.us>	2022-01-23 16:55:24 -05:00
Tad	6ec0c63126	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-01-13 11:08:22 -05:00
Tad	bfcf6b18b7	Fixup Signed-off-by: Tad <tad@spotco.us>	2022-01-12 05:57:08 -05:00
Tad	ce6ee9d8e4	Update CVE patchers CVE-2021-0961 should be fine now Signed-off-by: Tad <tad@spotco.us>	2022-01-11 05:41:26 -05:00
Tad	b9c7839110	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2022-01-11 01:19:31 -05:00
Tad	207e45fe6a	Update oneplus/sdm845 to 4.9.295 Signed-off-by: Tad <tad@spotco.us>	2022-01-06 15:21:00 -05:00
Tad	e08349a202	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-12-29 11:51:58 -05:00
Tad	3c1931bcc9	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-12-19 05:15:32 -05:00
Tad	8cf90d055e	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-12-11 01:12:41 -05:00
Tad	359ce4608f	Small updates Signed-off-by: Tad <tad@spotco.us>	2021-12-07 20:57:54 -05:00
Tad	ed1c151ce5	Update CVE patchers CVE-2021-0961/ANY/0001.patch likely causes breakage Signed-off-by: Tad <tad@spotco.us>	2021-12-06 17:43:34 -05:00
Tad	c5c3998593	Guess what? f̵͖̲̙̝̩̌̌̌̑͆̔͐̏͋̓̅̔̒̈́͠i̴͍̗̦͕̅̓̿͋̓̑̽͌͐͊͘͠͠s̵̡̬͙͚̃͑̓̊̌́̾́͠ḥ̴̬͓͚̹̱̰͕͚͈̞̳͒̊ ̵̢̟̞̖͈͖͕̥̙̤͉̮̍́̅̀̾b̵̛̹̝̙̖̱̲͉͚̝̪̲̓̿͛̔̆͋̎́͐̃͆̀̕͝u̸̞̺͓͎̰̦̯̘̺̬͔̬͆͛̋̍̂͒̓͛̐̈́̋̚͝ṫ̵̠t̶̻̳̜̪̗͖͛̂̒̃̑̏͝ Tested on 14.1 and 15.1 targets Signed-off-by: Tad <tad@spotco.us>	2021-11-29 21:14:00 -05:00
Tad	67b5a166fc	16.0: extreme loose versioning work Signed-off-by: Tad <tad@spotco.us>	2021-11-27 22:44:29 -05:00
Tad	7d54ee4be7	14.1: extreme loose versioning work This will apply 3.10 and 3.18 specific patches to 3.0 Example of tuna 3.0 kernel: 199 without loose versioning 311 with loose versioning 364 with extreme loose versioning Signed-off-by: Tad <tad@spotco.us>	2021-11-27 21:06:26 -05:00
Tad	9b84cebf92	17.1: loose versioning work Signed-off-by: Tad <tad@spotco.us>	2021-11-27 15:50:11 -05:00
Tad	c153981b3f	15.1: loose versioning work Signed-off-by: Tad <tad@spotco.us>	2021-11-26 22:40:07 -05:00
Tad	1b1db41869	Initial use of loose versioning for 3.x CVE patches This will for example apply a 3.4 specific patch to 3.0 if no 3.0 specific patch is available. Tested compiling on 14.1 and booting on toroplus. Will be applied to other branches soon. Signed-off-by: Tad <tad@spotco.us>	2021-11-26 18:56:03 -05:00
Tad	1b8df47bd5	14.1: add jellypro Tis a broken device Signed-off-by: Tad <tad@spotco.us>	2021-11-09 11:27:21 -05:00
Tad	f2b9eb8e8b	Small tweaks Signed-off-by: Tad <tad@spotco.us>	2021-11-06 11:22:43 -04:00
Tad	5c8250bbdd	Disable the per-app sensor permission patches Breaks camera on angler Signed-off-by: Tad <tad@spotco.us>	2021-11-05 14:46:32 -04:00
Tad	97d0b239d5	Small tweaks Signed-off-by: Tad <tad@spotco.us>	2021-11-05 08:54:08 -04:00
Tad	621441349e	Fixup the sensors permission patches on 7, 8, and 9. Switch these patches to MODE_ALLOWED from MODE_ASK to fix breakage of system services. Also remove some code that adds a likely security issue. Will need some extra regression testing. Signed-off-by: Tad <tad@spotco.us>	2021-11-04 10:24:06 -04:00
Tad	f7295a0f74	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-11-02 23:50:35 -04:00
Tad	b6575a362e	Small tweaks Signed-off-by: Tad <tad@spotco.us>	2021-11-02 22:47:34 -04:00
Tad	f3277f3c07	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-11-02 12:01:36 -04:00
Tad	809e03833e	Verity enablement overhaul No change to AVB devices except for enabling on more Verity devices have the potential to regress by not booting No change to non-verity/avb devices Tested working on: mata, cheeseburger, fajita Signed-off-by: Tad <tad@spotco.us>	2021-11-02 10:24:07 -04:00
Tad	ec043e961e	Update CVE patchers CVE-2021-20317 might need to be disabled due to QC timer breakage. Signed-off-by: Tad <tad@spotco.us>	2021-10-27 15:26:53 -04:00
Tad	5d7d710076	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-10-20 15:01:18 -04:00
Tad	bc443ffee3	14.1: Add apollo Signed-off-by: Tad <tad@spotco.us>	2021-10-17 14:01:31 -04:00
Tad	b78944933c	More fixes Ensure new shells have the correct settings too. Signed-off-by: Tad <tad@spotco.us>	2021-10-16 22:57:43 -04:00
Tad	042b9063d1	More fixes Signed-off-by: Tad <tad@spotco.us>	2021-10-16 17:12:13 -04:00
Tad	256b1db98b	Hard fail on error Signed-off-by: Tad <tad@spotco.us>	2021-10-16 16:08:43 -04:00
Tad	a5cdb9ab58	Fix patch ordering Signed-off-by: Tad <tad@spotco.us>	2021-10-16 15:21:22 -04:00
Tad	4ce35a3c60	Refresh most branch specific patches Fixed up: LineageOS-16.0/android_packages_apps_Backgrounds/308977.patch LineageOS-16.0/android_packages_apps_Settings/0001-Captive_Portal_Toggle.patch LineageOS-17.1/android_packages_apps_Settings/0001-Captive_Portal_Toggle.patch LineageOS-18.1/android_packages_apps_Settings/0001-Captive_Portal_Toggle.patch Must review again: LineageOS-14.1/android_packages_apps_PackageInstaller/64d8b44.patch Signed-off-by: Tad <tad@spotco.us>	2021-10-16 15:19:55 -04:00
Tad	f7194d1f13	Switch to applyPatch Signed-off-by: Tad <tad@spotco.us>	2021-10-16 14:01:44 -04:00
Tad	7ba42f052a	Small changes Signed-off-by: Tad <tad@spotco.us>	2021-10-14 15:58:22 -04:00
Tad	dd2e8b4b5c	Tiny tweaks Signed-off-by: Tad <tad@spotco.us>	2021-10-08 21:26:11 -04:00
Tad	939c6aa7ed	Small tweaks Signed-off-by: Tad <tad@spotco.us>	2021-10-07 20:07:49 -04:00
Tad	2af0e1201e	Re-enable the recovery downgrade check Signed-off-by: Tad <tad@spotco.us>	2021-10-06 17:03:22 -04:00
Tad	f2e1d32eba	Update CVE patchers Signed-off-by: Tad <tad@spotco.us>	2021-10-06 16:54:45 -04:00
Tad	7b28a193f1	Include the Support app This is a very basic app with zero permissions and has quick links to various related resources. Signed-off-by: Tad <tad@spotco.us>	2021-10-06 06:21:38 -04:00

1 2 3 4 5 ...

883 Commits