Tavi
0c88720caa
14.1: work on integrating hardened_malloc
...
untested as all currently supported 14.1 devices are 32-bit
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-09 13:46:19 -04:00
Tavi
1fdedf21a5
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-08 14:09:13 -04:00
Tavi
7162b237d3
14.1: Import and verify picks
...
https://review.lineageos.org/q/topic:n-asb-2021-09
https://review.lineageos.org/q/topic:n-asb-2021-10
https://review.lineageos.org/q/topic:n-asb-2021-11
https://review.lineageos.org/q/topic:n-asb-2021-12
https://review.lineageos.org/q/topic:n-asb-2022-01
https://review.lineageos.org/q/topic:n-asb-2022-02
https://review.lineageos.org/q/topic:n-asb-2022-03
https://review.lineageos.org/q/topic:n-asb-2022-04
https://review.lineageos.org/q/topic:n-asb-2022-05
https://review.lineageos.org/q/topic:n-asb-2022-06
https://review.lineageos.org/q/topic:n-asb-2022-07
https://review.lineageos.org/q/topic:n-asb-2022-08
https://review.lineageos.org/q/topic:n-asb-2022-09
https://review.lineageos.org/q/topic:n-asb-2022-10
https://review.lineageos.org/q/topic:n-asb-2022-11
https://review.lineageos.org/q/topic:n-asb-2022-12
https://review.lineageos.org/q/topic:n-asb-2023-01
https://review.lineageos.org/q/topic:n-asb-2023-02
https://review.lineageos.org/q/topic:n-asb-2023-03
https://review.lineageos.org/q/topic:n-asb-2023-04
https://review.lineageos.org/q/topic:n-asb-2023-05
https://review.lineageos.org/q/topic:n-asb-2023-06
https://review.lineageos.org/q/topic:n-asb-2023-07
accounted for via manifest change:
https://review.lineageos.org/c/LineageOS/android_external_freetype/+/360899
https://review.lineageos.org/q/topic:n-asb-2023-08
https://review.lineageos.org/q/topic:n-asb-2023-09
https://review.lineageos.org/q/topic:n-asb-2023-10
https://review.lineageos.org/q/topic:n-asb-2023-11
was missing:
https://review.lineageos.org/c/LineageOS/android_packages_providers_TelephonyProvider/+/376079
https://review.lineageos.org/q/topic:n-asb-2023-12
https://review.lineageos.org/q/topic:n-asb-2024-01
https://review.lineageos.org/q/topic:n-asb-2024-02
https://review.lineageos.org/q/topic:n-asb-2024-03
https://review.lineageos.org/q/topic:n-asb-2024-04
https://review.lineageos.org/q/topic:n-asb-2024-05
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-07 17:45:58 -04:00
Tavi
11b5815f14
18.1: switch to latest hardened_malloc revision
...
+ other fixes
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-06 16:30:20 -04:00
Tavi
8ce5a0e671
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-05 12:01:44 -04:00
Tavi
5b05eb4100
Update CVE patchers
...
maybe breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-03 08:50:55 -04:00
Tavi
7a42c9eb17
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-30 16:50:36 -04:00
Tavi
44358b5ba2
Update CVE patchers
...
maybe some breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-22 09:22:16 -04:00
Tavi
5be2789897
2024
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-22 07:52:49 -04:00
Tavi
a16b5a89c7
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-16 08:41:35 -04:00
Tavi
25da5b3f74
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-10 11:21:10 -04:00
Tavi
5cad35c028
Fixup
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-06 19:59:27 -04:00
Tavi
2c9a3903e5
14.1: ASB Picks
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-06 15:43:21 -04:00
Tavi
450ad03159
Update CVE patchers
...
maybe some breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-04 13:55:38 -04:00
Tavi
2a78a4cfc0
Update CVE patchers
...
for realz
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-27 22:09:10 -04:00
Tavi
dc9ed7c46c
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-21 14:54:23 -04:00
Tavi
dee7abe09d
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-14 14:58:24 -04:00
Tavi
0b8f1a2c57
Churn
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-09 12:02:14 -05:00
Tavi
366140a179
14/19/20: ASB Picks
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-09 11:05:06 -05:00
Tavi
f5a44efdff
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-07 12:13:52 -05:00
Tavi
5aefd27519
Update CVE patchers
...
Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/294
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-05 12:42:34 -05:00
Tavi
cd38073ad2
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-04 15:39:53 -05:00
Tavi
fdbd1a090f
Update CVE patchers
...
I made a pass through removing some obvious wrongly applied patches
but there is likely some more breakage here
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-02 12:31:51 -05:00
Tavi
45e87b4a1c
Update CVE patchers
...
Potential breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-27 03:15:54 -05:00
Tavi
20c8abcbc1
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-19 22:35:04 -05:00
Tavi
44e57d0a5a
Picks
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-07 19:38:52 -05:00
Tavi
4e2c426be3
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-01-31 13:33:41 -05:00
Tavi
00f1589cb8
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-01-22 13:27:55 -05:00
Tavi
533749cffd
14.1: January ASB Picks
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-01-06 02:41:36 -05:00
Thaddeus
9d230974a2
Update CVE patchers
...
Signed-off-by: Thaddeus <tad@spotco.us>
2024-01-04 15:51:27 -05:00
Tad
12d0711d60
Reconcile picks
...
Adds one patch for 14.1, thanks to @syphyr
Adds two patches for 16.0, thanks to @MSe1969
Adds many patches for 17.1, thanks to @flamefire
TODO check if 377768 applies to 15.1
Signed-off-by: Tad <tad@spotco.us>
2023-12-26 09:48:21 -05:00
Tad
7c46f43fc4
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-20 12:28:48 -05:00
Tad
d7996e8240
14.1: December ASB picks
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-07 00:07:02 -05:00
Tad
af0cea3572
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-16 22:59:28 -05:00
Tad
46c5c52393
Picks
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-11 00:00:32 -05:00
Tad
548aec9c9d
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-05 18:58:11 -05:00
Tad
90979e494c
Updater: point the changelog button to our news page
...
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/257
Signed-off-by: Tad <tad@spotco.us>
2023-10-20 18:44:05 -04:00
Tad
f64285f6fd
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-15 21:06:16 -04:00
Tad
bf565cd578
Switch to upstream ASB patchsets
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-08 22:52:14 -04:00
Tad
781f2820de
14.1: October ASB picks
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-05 16:35:36 -04:00
Tad
7d2c184d1f
Bonus patches
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-03 15:17:06 -04:00
Tad
d80f272b54
Update CVE patchers
...
CVE-2023-4128 replaces CVE-2023-4208
Signed-off-by: Tad <tad@spotco.us>
2023-10-02 21:41:34 -04:00
Tad
fcf4f812cc
CVE-2023-5217
...
untested
Signed-off-by: Tad <tad@spotco.us>
2023-09-28 09:17:29 -04:00
Tad
19f4964036
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-21 16:52:35 -04:00
Tad
25f02f4177
14.1 though 17.1: patch CVE-2023-4863, thanks to @syphyr
...
run tested on 14.1, 15.1, and 17.1
compile tested on 16.0
Signed-off-by: Tad <tad@spotco.us>
2023-09-20 04:16:17 -04:00
Tad
337ae6012d
Fixup
...
TODO: regen
Signed-off-by: Tad <tad@spotco.us>
2023-09-17 20:26:44 -04:00
Tad
1b4f6d3bd8
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-17 01:30:23 -04:00
Tad
b0800a1479
Churn
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-07 21:23:50 -04:00
Tad
964877bbf6
20.0: September ASB picks
...
wget b96ee4a2d1
.patch -O telephony-01.patch
wget c16e6e78c1
.patch -O media-01.patch
wget d5771450d7
.patch -O media-02.patch
wget a1370bd00c
.patch -O nn-01.patch
wget ce2776f4ca
.patch -O bt-01.patch
wget 585f583ef5
.patch -O bt-02.patch
wget c9905e7968
.patch -O bt-03.patch
wget c93ec045f5
.patch -O bt-04.patch
wget 89fb17d172
.patch -O bt-05.patch
wget 14aed2455e
.patch -O bt-06.patch
wget cd438ebc52
.patch -O bt-07.patch
wget 27e7cdc4e5
.patch -O nfc-01.patch
wget dfeb4270b8
.patch -O launcher-01.patch
wget b1993f6cec
.patch -O native-01.patch
wget df4a9362cd
.patch -O fwb-01.patch
wget b55563bb9d
.patch -O fwb-02.patch
wget a80971a281
.patch -O fwb-03.patch
wget 7e173b4383
.patch -O fwb-04.patch
wget 44191b1c6b
.patch -O fwb-05.patch
wget 8dc8dfe572
.patch -O fwb-06.patch
wget 00a4224100
.patch -O av-01.patch
wget 21623d1f43
.patch -O settings-01.patch
wget fa5ec443d9
.patch -O settings-02.patch
wget ba4da9c7b3
.patch -O settings-03.patch
Signed-off-by: Tad <tad@spotco.us>
2023-09-06 15:42:52 -04:00
Tad
3e8effa345
ASB cherrypicks
...
https://review.lineageos.org/q/topic:%22n-asb-2023-09%22
Signed-off-by: Tad <tad@spotco.us>
2023-09-05 20:50:36 -04:00
Tad
0ec3c25d86
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-05 20:42:14 -04:00
Tad
ababe54a0c
14.1: Disable dexpreopt
...
causes many bizarre issues on devices
- apps crashing on certain functions
- apps loading content from other apps
- etc.
Signed-off-by: Tad <tad@spotco.us>
2023-09-04 15:36:57 -04:00
Tad
a17a425265
14.1: Fixup Freetype
...
90b7894627
Signed-off-by: Tad <tad@spotco.us>
2023-09-03 17:36:24 -04:00
Tad
f7d0ff4af2
Fixup athene
...
- Disable default encryption on athene, doesn't work
- Remove QC telephony extensions, causes Dialer to crash
Signed-off-by: Tad <tad@spotco.us>
2023-08-29 23:34:49 -04:00
Tad
e067f59555
14.1: add athene
...
tried to buy a harpia, ended up with an athene :(
Signed-off-by: Tad <tad@spotco.us>
2023-08-29 21:55:15 -04:00
Tad
fc9032513f
Update CVE patchers
...
Likely issue CVE-2023-3773/^6.4
Signed-off-by: Tad <tad@spotco.us>
2023-08-27 17:13:53 -04:00
Tad
1fde0f9c45
More branch switching, thanks to @syphyr
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-23 11:05:05 -04:00
Tad
7ad46d58f1
Switch to @syphyr's security backport branches
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-18 11:34:39 -04:00
Tad
2142e2e763
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-17 17:18:10 -04:00
Tad
974878988b
Fixup
...
Will regen later
Signed-off-by: Tad <tad@spotco.us>
2023-08-09 00:46:44 -04:00
Tad
51bcf23dac
14.1 August ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-08 23:41:40 -04:00
Tad
eef09ae519
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-07 18:07:19 -04:00
Tad
180280b233
Update CVE patchers
...
TODO: adjust min version of CVE-2023-4132
Signed-off-by: Tad <tad@spotco.us>
2023-08-04 21:00:29 -04:00
Tad
73414e76d2
Update CVE patchers
...
two lpes
Signed-off-by: Tad <tad@spotco.us>
2023-07-25 12:04:05 -04:00
Tad
e408e7e19a
Drop devices with newer versions available
...
14.1: clark
15.1: deb, flo, hammerhead, shamu, ether
16.0: hammerhead
19.1: alioth
Signed-off-by: Tad <tad@spotco.us>
2023-07-22 19:17:42 -04:00
Tad
fbf6058e65
18.1: unofficial hammerhead bringup by @z3DD3r
...
not broken like 16.0 and way more updated than 15.1
Signed-off-by: Tad <tad@spotco.us>
2023-07-22 19:06:23 -04:00
Tad
0f9a2c7aea
Less aggressive low_ram enablement
...
14.1 <2GB
15.1 <2GB
16.0 <2GB
17.1 <3GB
18.1 <3GB
19.1 <4GB
20.0 <4GB
Signed-off-by: Tad <tad@spotco.us>
2023-07-17 18:44:56 -04:00
Tad
b6308caa37
Update CVE patchers
...
TODO: enable CVE-2023-31084/4.4
Signed-off-by: Tad <tad@spotco.us>
2023-07-15 21:22:18 -04:00
Tad
1c9076fffe
KSM tuning
...
- Only enable on Linux 3.0 through 4.9
- Always enable defer option
- Only run twice a second, instead of fifty times a second
Signed-off-by: Tad <tad@spotco.us>
2023-07-14 20:27:10 -04:00
Tad
15de8ed2e8
Expand the low_ram coverage
...
As follows
14.1 <3GB
15.1 <3GB
16.0 <3GB
17.1 <3GB
18.1 <4GB
19.1 <6GB
20.0 <6GB
Signed-off-by: Tad <tad@spotco.us>
2023-07-13 18:31:03 -04:00
Tad
2651f33e5c
ASB cherrypicks
...
Signed-off-by: Tad <tad@spotco.us>
2023-07-07 13:44:00 -04:00
Tad
a1a3cbb94e
Fix overlay conflicts
...
Should mostly fix https://github.com/Divested-Mobile/DivestOS-Build/issues/219
Signed-off-by: Tad <tad@spotco.us>
2023-07-06 14:51:40 -04:00
Tad
2e2ac4557d
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-06-26 19:41:11 -04:00
Tad
cda898f141
Certificate Authority store updates
...
- Remove some untrustworthy CAs
- Update CA store for all branches to aosp/e302aa968334b3c3fc9cd709a7c7661e0cf534eb
Signed-off-by: Tad <tad@spotco.us>
2023-06-17 15:13:54 -04:00
Tad
41e2669884
17.1: switch to flamefire's ASB topics
...
This gets us ~9 extra patches
Signed-off-by: Tad <tad@spotco.us>
2023-06-17 15:13:46 -04:00
Tad
a07133a064
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-06-16 11:03:46 -04:00
Tad
e7b390d7e6
Picks
...
https://review.lineageos.org/q/topic:%22n-asb-2023-06%22
Signed-off-by: Tad <tad@spotco.us>
2023-06-09 21:59:53 -04:00
Tad
2ee99fe3ef
Update CVE patchers
...
CVE-2020-36694 appears to be a duplicate of CVE-2021-29650
Signed-off-by: Tad <tad@spotco.us>
2023-06-01 21:12:08 -04:00
Tad
59bda0360e
Fixes
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-30 13:59:28 -04:00
Tad
cd0a29d69b
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-12 23:28:44 -04:00
Tad
2717b1aad7
14.1: Switch n51xx to -userdebug like i93xx
...
For https://github.com/Divested-Mobile/DivestOS-Build/issues/209
Signed-off-by: Tad <tad@spotco.us>
2023-05-08 22:19:48 -04:00
Tad
0004c224cf
Picks
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-06 00:15:27 -04:00
Tad
6d2a255eef
Remove User-Agent (and serial) from source built libloc
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-05 22:27:27 -04:00
Tad
c544c28b94
Prevent Qualcomm location stack from reading chipset serial number
...
The deblobber already removes xtra-daemon which is what actually performs the requests.
This is just extra sanctity.
Signed-off-by: Tad <tad@spotco.us>
2023-05-03 21:41:20 -04:00
Tad
366b4eb5ef
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-02 18:01:39 -04:00
Tad
39b0c9e036
Remove broken emoji updates
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-02 15:31:57 -04:00
Tad
7b2eb1079a
Update emoji list in LatinIME too and disable
...
tested not working on 15.1
shows as cross boxes or double characters
Signed-off-by: Tad <tad@spotco.us>
2023-04-29 16:56:13 -04:00
Tad
86b7525400
Update the emojis, untested
...
Signed-off-by: Tad <tad@spotco.us>
2023-04-29 16:17:00 -04:00
Tad
47136145e5
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-04-23 23:20:36 -04:00
Tad
9ba61642de
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-04-17 23:19:28 -04:00
Tad
ed25b69f5f
Pull in n-asb-2023-04
...
Signed-off-by: Tad <tad@spotco.us>
2023-04-12 15:30:59 -04:00
Tad
9a97c7013b
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-04-05 12:43:36 -04:00
Tad
750f244304
Updates, logging, and churn
...
also add an extra March ASB patch for 17.1
Signed-off-by: Tad <tad@spotco.us>
2023-03-31 12:38:46 -04:00
Tad
790eeebc90
14/15 extra March patch
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-25 20:35:40 -04:00
Tad
8bcb5c734d
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-17 19:27:22 -04:00
Tad
38626e1b0c
Picks + Fixes
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-14 16:58:27 -04:00
Tad
162b40a39d
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-13 18:13:54 -04:00
Tad
ef2fdb1d3e
More handling improvements
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-08 16:14:51 -05:00
Tad
0b294c1601
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-08 16:01:49 -05:00
Tad
5d0ab40f0b
Robustness improvements
...
Signed-off-by: Tad <tad@spotco.us>
2023-03-08 01:14:06 -05:00