Tad
41a04ebd36
Update CVE patchers
2021-02-10 15:55:51 -05:00
Tad
f1e2e43642
Update CVE patchers
2021-02-07 19:41:46 -05:00
Tad
bac552732f
Small tweaks
2021-01-30 21:34:50 -05:00
Tad
6a1fb99cc9
Unbreak last commit
...
This should be most of it
also
- properly update webview, repopick doesn't seem to handle the branch
- always cd back to base, to prevent script breakage
2021-01-25 13:31:57 -05:00
Tad
38da3e202e
Re-enable the SOUND_TRIGGER removal bits disabled in e9fd952b
...
It does not fix the phone call audio issues on mata like I hoped it would.
2021-01-18 09:11:37 -05:00
Tad
b99e1865fe
deblobber improvements
...
- fixup CNE removal to disable Wi-Fi calling
- extend system.prop edits to cover all .props
- remove persist. and ro. from edits to cover all properties
2021-01-18 07:15:11 -05:00
Tad
e9fd952ba2
Many small tweaks
...
- Remove leftover WireGuard repo missed in 31898834
- Enable the volteOverride, to ensure VoLTE enablement on supported devices on unknown carriers
- Extend volteOverride to support system.prop if vendor.prop doesn't exist (to cover eg. marlin/sailfish)
- Disable commenting of SOUND_TRIGGER flags.
sountrigger blobs are not removed due to boot breakage.
disable this and stop patching hardware/qcom/audio.
Intended to potentially fix phone call audio issues on mata
- Small CVE patcher updates
2021-01-16 21:16:02 -05:00
Tad
55a9da29b0
Small fix
2021-01-14 05:26:49 -05:00
Tad
3b8750cdff
Deblobber: don't remove aonvr*.bin
...
breaks microphone on shamu and victara
2021-01-01 20:16:19 -05:00
Tad
1be184bac9
Small tweaks
2020-12-16 07:48:41 -05:00
Tad
e36a91facc
Update CVE patchers
2020-12-07 09:36:20 -05:00
Tad
9c691d02ab
Update CVE patchers
2020-12-03 22:43:23 -05:00
Tad
9d7e5a24a3
License headers
2020-11-17 10:19:06 -05:00
Tad
7b9d90d781
move clark from 14.1 to 17.1
2020-11-15 08:16:29 -05:00
Tad
523264aebb
Update CVE patchers
2020-11-12 23:46:38 -05:00
Tad
e7a65ff912
Small fixes
2020-11-09 22:55:36 -05:00
Tad
6a5866c01d
More failed attempts at fixing IMS
...
Keeping IMS, RCS, CNE, ATFWD, and allowing ims* to access /dev/diag:
IMS service still fails to register on mata
Is it the carrier?
Is it the phone?
Is it LineageOS?
Is is DivestOS?
Absolute mess.
2020-11-02 19:24:56 -05:00
Tad
e36f4529a3
Fixup 9f01dc03
...
Enables replacing of vendor fingerprints.
I thought this was broken, turns out it was the AUX camera change instead.
2020-11-02 11:04:49 -05:00
Tad
9f01dc038c
Small changes
...
- SUPL NTP fix
- Remove debug info from dexpreopt, saves a few MB
- 15.1+: enable full dexpreopt, for perf and memory benefits
- 17.1: change oneplus/msm8998-common kernel
- 17.1: add OpenCamera to AUX list
- Resurrect verity for devices missed previously
- Update some CVE patchers
- deblobber: remove some lingering atfwd blobs
2020-11-02 06:28:06 -05:00
Tad
3926f3a44f
Small updates
...
- Various rebranding fixes
- 17.1: hold off on Seedvault inclusion for now
- 17.1: update kernel/fxtec/msm8998 CVE patcher
- 17.1: build cheeseburger/dumpling
2020-10-31 15:16:25 -04:00
Tad
47d064f98c
Fixes
2020-10-23 18:50:51 -04:00
Tad
fb2a4df9a0
Add yellowstone, untested and disabled for now
2020-10-23 16:47:06 -04:00
Tad
1b4b86c38d
Tiny tweaks
2020-10-23 14:49:16 -04:00
Tad
c7eb6fcbfe
deblobber: fixup IMS for a few devices
...
Don't remove qti-vzw-ims-internal.jar needed by IMS stack.
It is just a shim and doesn't really do anything.
Also put RCS behind a flag.
2020-10-21 20:09:53 -04:00
Tad
0958df7de5
deblobber: remove more blobs
2020-10-20 10:45:57 -04:00
Tad
00a6a86126
deblobber: fixup timekeep replacement, credit Wang Han/aviraxp
2020-10-20 05:39:06 -04:00
Tad
6d15a2bb82
Update CVE patchers
2020-10-15 22:36:28 -04:00
Tad
688f4dd953
More CVE patcher fixes
2020-10-15 21:31:46 -04:00
Tad
10d042c3c0
Update CVE patchers
2020-10-14 15:20:06 -04:00
Tad
6c9c91941e
Fix errors from compile test of all 14.1 kernels
2020-10-14 14:23:22 -04:00
Tad
d53a4f4e41
Update CVE patchers
...
- Drop tcp_sack=0 sysctl, as most devices are now patched
2020-10-12 18:38:07 -04:00
Tad
b56929d3d9
Many changes
...
- Missing credit in LICENSE
- Update TODO
- hardenLocationConf: don't change version
- hardenDefconfig: Fix reboot on shutdown
- changeDefaultDNS: replace a level3 dns straggler for tethering config
- Don't remove CompanionDeviceManager if microG is included
- Update cherry picks
- init.sh: update comment wording
2020-10-12 07:52:54 -04:00
Tad
115dd21832
Many changes
...
- 17.1: Add Pixel 4/XL
- Promote klte to 17.1
- hardenBootArgs: don't run on klte
- hardenBootArgs: regorganize
- hardenDefconfig: enabler: drop unnecessary options (iommu)
- hardenDefconfig: disabler: comment diag options for now
- deblobber: comment dirac lines to fix cheeseburger headphone jack
- fixup Etar replacement
2020-10-11 07:12:00 -04:00
Tad
260140f0a1
Update CVE patchers
2020-10-10 11:56:35 -04:00
Tad
b56fabac3b
Update CVE patchers
...
I expect some breakage here
2020-10-06 21:14:18 -04:00
Tad
55e010fba5
Small updates
2020-10-01 14:56:37 -04:00
Tad
6e16320468
Small fixes
2020-09-13 19:52:37 -04:00
Tad
bca6af1516
Small updates
...
- recovery: abort on serial number specific updates, credit: GrapheneOS
- Add lists of missing CVEs
- Update cherrypicks
2020-09-02 14:20:51 -04:00
Tad
0808ac1fd0
Many updates
...
- Add OnePlus 6, 6T, 7, 7 Pro
- Ensure verity/avb keys are *always* copied
- Update cherry picks
2020-09-01 03:26:21 -04:00
Tad
98854115be
16.0: Add pro1
...
- Also initial beryllium support, no builds yet
2020-08-10 15:34:55 -04:00
Tad
f19dbe5958
More fixes for a69326f3
2020-08-10 03:46:36 -04:00
Tad
2f83043c68
14.1+15.1: GPS week rollover fix
...
16.0: 279492
17.1: 278135
also switch to alternate Xtra servers
https://developer.gemalto.com/threads/gps-time-info-error
2020-08-09 12:30:47 -04:00
Tad
887ebb84c5
Update CVE patchers
...
Includes many fixes for a69326f3
but probably breaks other things
2020-08-09 07:29:19 -04:00
Tad
a69326f396
Update CVE patchers
...
Untested. I expect some breakage.
2020-08-08 13:06:39 -04:00
Tad
e78a0cc1bc
Small changes
2020-07-26 09:19:12 -04:00
Tad
0a979b67fa
Small changes
...
- 17.1: bringup bacon and ether
2020-07-24 10:20:07 -04:00
Tad
dc3cf3405f
Small updates
...
- Fix USB breakage
2020-07-22 08:50:51 -04:00
Tad
820a680d4d
Small updates + Many fixes
2020-07-13 17:37:33 -04:00
Tad
d9a61e1dea
Fix GPG signing
2020-06-27 01:45:02 -04:00
Tad
2ef92046af
Small changes
2020-06-22 20:41:49 -04:00
Tad
b2b9eb7ffc
Potential fix for phone call audio on shamu and others
2020-06-17 15:20:02 -04:00
Tad
900183743d
Add GPG signing to processRelease
2020-06-17 13:20:26 -04:00
Tad
70508e2b70
More checksums
2020-06-14 10:05:34 -04:00
Tad
5b9e44794b
Fixup broken checksum generation
2020-06-14 09:36:39 -04:00
Tad
850c4ad88c
Small updates
...
- Partial revert of 5106063c
- Cherry picks
- CVE patcher fixes
2020-06-07 04:25:12 -04:00
Tad
5797ea8fc4
Small fixes
...
CVE-2019-14047/ANY/0002.patch will probably need to be disabled on more devices
2020-06-02 17:33:27 -04:00
Tad
694f270d75
Initial bringup of many devices to 17.1
2020-05-31 15:10:32 -04:00
Tad
4c1577724f
Small changes
...
- hardenDefconfig: more options from Alexander Popov's checker
- 17.1: A2DP fix from GrapheneOS when hardened_malloc is in use
2020-05-23 18:06:22 -04:00
Tad
e962fdeb81
Update CVE patchers
2020-05-04 17:18:50 -04:00
Tad
e58ba3e9b2
Disable IMS stack
2020-05-02 22:29:23 -04:00
Tad
84300d6611
Small fixes
2020-04-19 13:19:55 -04:00
Tad
c3bb898eb0
2020
2020-04-14 21:39:51 -04:00
Tad
8012903ba1
17.1: Initial bringup
...
- See items marked with '17REBASE'
2020-04-14 21:21:13 -04:00
Tad
cdd74148b9
Patcher build fixes
2020-04-12 13:58:02 -04:00
Tad
0c89accfb5
Update CVE patchers
2020-04-06 22:23:37 -04:00
Tad
c26b3e95c7
Minor tweaks
...
- Cherry pick PPP/CVE-2020-8597 patches
- Add some more DNS providers
- Switch default DNS to Cloudflare's new malware blocking provider
- GCC 10 build fix
- Update CVE patchers (select)
2020-04-05 15:53:58 -04:00
Tad
d7ef9abf61
Minor tweaks
2020-03-25 22:08:25 -04:00
Tad
50f44d1934
Small changes
...
- cheeseburger/dumpling: fix ogg vorbis playback, credit @LuK1337
- cheeseburger/dumpling: fix delta ota generation
- remove a few more blobs
- potentially bluetooth when ant is removed on newer devices
- support newer clamav
- commented support for extracting boot.img when recovery.img isn't available
-- fastboot.zip should be preferred
- potentially fix boot on many untested newer devices (diag on msm8996+)
- update cherry picks
2020-02-24 18:53:27 -05:00
Tad
4292bcaa3e
recovery: fix sideload with larger files
...
+ 16.0: add a disabled patch to remove backuptool
+ processRelease: add support for copying recovery image to archive
2020-02-23 16:06:47 -05:00
Tad
fe54dd26a6
Fix many device issues
...
- Fix mata
- Fix cheeseburger
- Enable near-entire IMS stack (proprietary)
- Fix many other new devices
2020-02-22 13:29:01 -05:00
Tad
4e25046418
Many changes
...
- Add OnePlus 2, 3/T, 5/T
- Fix flounder
- Cherrypicks
2020-02-17 22:21:47 -05:00
Tad
332807d427
Update CVE patchers
2020-02-02 12:09:49 -05:00
Tad
7ef8a2726d
Minor tweaks
2019-11-28 12:03:40 -05:00
Tad
038ae37376
Minor tweaks
2019-11-24 16:22:58 -05:00
Tad
baabd45a16
Minor tweaks + ASB cherrypicks
2019-11-10 02:34:40 -05:00
Tad
1a7897211a
16.0: add Amber
2019-10-29 17:37:43 -04:00
Tad
791087fefa
minor tweaks
2019-10-27 16:20:27 -04:00
Tad
a8af0c3d0d
hardenDefconfig: more options from Alexander Popov's checker
2019-10-20 01:53:59 -04:00
Tad
204285d7c8
kernel command line: enable hardening options
2019-10-18 22:14:28 -04:00
Tad
e13c6c7c9c
processRelease features
...
- support removing device out after complete
- support malware scan before sign
- Update cherry picks
2019-10-15 12:23:46 -04:00
Tad
bffcd06644
16.0: add zenfone3
2019-10-11 15:16:09 -04:00
Tad
159e5ea194
Minor tweaks
...
- Update cherry picks
- Update copyright year
- bacon: fix delta generation
2019-10-11 13:24:38 -04:00
Tad
579f340c3c
Update CVE patchers
2019-10-04 14:43:19 -04:00
Tad
f20ddfc0f6
Minor tweaks
2019-10-04 10:39:27 -04:00
Tad
79ec8a4999
clark: experimental 16.0
2019-09-28 17:37:18 -04:00
Tad
a0e8f9653c
Future proofing keys
2019-09-25 21:04:24 -04:00
Tad
ca734124f9
Generate factory image if needed by device
2019-09-23 12:45:00 -04:00
Tad
f55cdef5b0
Minor tweaks
2019-09-21 15:42:26 -04:00
Tad
4a1ebe1b71
Scripts: localize variables in functions
2019-09-17 04:14:35 -04:00
Tad
e01e457b24
Per-device signing keys
...
- also fix OTA/recovery key regression
- Update cherrypicks
2019-09-15 22:18:04 -04:00
Tad
19d5b66097
Many changes
...
- ASB chery picks
- 16.0: recovery: fix sideload
- Restore releasetools for some devices
- Only include Backup where supported
- Change some small defaults
- z00t: 14.1 -> 15.1
- himaul: 14.1 -> 15.1
- i9100: 14.1 -> 15.1+16.0
- flo: 15.1 -> 16.0, disabled
- flounder: 15.1 disabled, enable 14.1
2019-09-13 20:24:02 -04:00
Tad
ec48a4c89c
Update CVE patchers
2019-09-04 01:31:12 -04:00
Tad
db572efa89
Many changes
...
- processRelease: Support AVB
- sort device build order by SoC
Additions:
- taimen/muskie: 15.1, 16.0
- crosshatch/blueline: 16.0
- bonito/sargo: 16.0
2019-09-03 16:50:50 -04:00
Tad
1bd0e47099
victara: 15.1 -> 16.0
...
- other fixes
2019-08-30 22:42:10 -04:00
Tad
330df0983c
16.0: Add GrapheneOS' exec-based spawning feature + misc tweaks
...
- patch credit updates
- 16.0: allow SystemUI to directly manage Bluetooth/WiFi
- from GrapheneOS
- cleanup
2019-08-30 02:30:13 -04:00
Tad
e10a865b05
Improve release processing to support deltas and archiving
2019-08-29 19:09:31 -04:00
Tad
057bedb65b
Minor tweaks
...
- 14.1+15.1+16.0: enable kernel protections for files
- protected_*: hardlinks, symlinks, fifos, regular
- from GrapheneOS
- defconfig: enable more verity options
- cleanup
2019-08-28 20:24:59 -04:00
Tad
db348ab09c
Minor tweaks
...
- 15.1+16.0: Replace in-line build signing patch with bash function
- From GrapheneOS/script
- 15.1+16.0: Enable fingerprint failed lockout after 5 attempts
- From GrapheneOS
2019-08-28 00:40:27 -04:00
Tad
68cdef8733
Minor tweaks
2019-08-26 20:50:28 -04:00
Tad
eccf9c6f6d
Many new devices
...
- hammerhead: 15.1 -> 16.0
- axon7: 14.1, 15.1
- cheryl: 16.0
- crackling: 14.1, 15.1, 16.0
- ham: 14.1, 15.1, 16.0
- kipper: 14.1, 15.1, 16.0
- z2_plus: 16.0
2019-08-23 17:27:53 -04:00
Tad
e9b5c06188
Lots of device updates
...
- d802: 15.1 -> 16.0
- d852: 15.1 -> 16.0
- d855: 15.1 -> 16.0
- fugu: 15.1 -> 16.0
- jfltexx: 14.1 -> 16.0
- m8: 15.1 -> 16.0
- mata: 15.1 -> 16.0
- update cherrypicks
- defconfig: enable MMC_SECDISCARD
2019-08-23 11:47:43 -04:00
Tad
3a080bbcd7
Minor tweaks
2019-08-13 01:56:01 -04:00
Tad
89de66bdba
Many small changes
...
- Cherrypicks for ASB patches
- Apps: Switch gallery to Simple Gallery
- Apps: Switch camera to OpenCamera
- PKGBUILD: update with image optimization dependencies
- Deblobber: fix bug introducted in 6d33e4ecbf
2019-08-08 14:22:24 -04:00
Tad
6d33e4ecbf
Parallize many functions invoked by find
2019-08-05 21:09:35 -04:00
Tad
3f8e9a846b
Complete tree image optimization
...
- recursively optimize images using optipng/jpegoptim
benefits:
+ reduces image size
+ decreases load time
+ reduces memory usage
2019-08-05 20:34:08 -04:00
Tad
55c3072089
Going the distance... [pt2]
2019-06-18 13:51:04 -04:00
Tad
380353773e
Fixes
2019-05-17 20:48:26 -04:00
Tad
30bf0f2fb9
Resurrect verity
2019-05-09 06:16:34 -04:00
Tad
ebaf61eb31
Cherrypicks
2019-05-07 03:10:55 -04:00
Tad
60cf364f19
Minor tweaks
...
- init.sh: sort options
- overlay: leave radioScanningTimeout default
- hardenDefconfig: disable more components with CVEs
- cherry picks
- 16.0: trebuchet: tmp fix for default workspace overlay
2019-04-03 19:04:37 -04:00
Tad
1c49b80da0
Minor tweaks
...
- CVE patchers were updated with no change
- hardenDefconfig: disable MSM_SMP2P_TEST to mitigate CVE-2019-2247
- 14.1 add a cherry pick
2019-04-01 18:57:04 -04:00
Tad
7223df543a
Minor fixes
2019-03-31 22:46:37 -04:00
Tad
61ee2e5757
More minor fixes
2019-03-26 19:37:56 -04:00
Tad
3c806603d9
Various fixes
2019-03-25 21:30:26 -04:00
Tad
8f609e9cbe
Minor tweaks
...
+ remove a few more blobs
+ fix broken USB and log spam on hdx*
2019-03-24 16:32:55 -04:00
Tad
54c68a1e93
Fixup radio on Motorola device
2019-03-23 20:23:42 -04:00
Tad
a8dbb447ed
Deblobber cleanup
...
Break all the really long lines up into the following categories
- libraries (*.so)
- jars (*.jar)
- binaries
- apps (*.apk)
- non-executables (*.xml, *.cfg, *.conf, *.txt)
- firmwares (tz.*)
- treble stuff (vendor.*, com.*)
2019-03-23 18:11:57 -04:00
Tad
c044136234
Remove many more blobs
2019-03-23 14:57:39 -04:00
Tad
fc2e71acbe
Remove more blobs
2019-03-22 19:43:29 -04:00
Tad
a91a3d427a
Remove more blobs
2019-03-22 06:04:29 -04:00
Tad
dd7e4c3faf
Remove more blobs
2019-03-22 05:28:57 -04:00
Tad
e344b17a36
Build fixes + new blob blocker
2019-03-22 04:20:06 -04:00
Tad
3c056c7785
Remove some more blobs
2019-03-21 08:55:01 -04:00
Tad
cf5a58f447
11.0: misc. fixes
2019-03-17 17:27:51 -04:00
Tad
913fbcd109
ASB cherry picks + minor tweaks
2019-03-05 22:57:45 -05:00
Tad
23056ddef0
Minor tweaks
2019-03-04 03:11:51 -05:00
Tad
fccc124868
tuna fixes + fdroid priv changes
2019-02-14 04:36:50 -05:00
Tad
c9e17ffb52
Many changes
...
- Add more DNS resolver choices
- Change default DNS resolver back to OpenNIC
- More cleanup
- 15.1: Update some CVE patchers
2019-02-09 20:51:23 -05:00
Tad
9178760d1a
Updater: Fix downloads over Tor
...
+ Update TODO
+ Minor tweaks
2019-02-08 20:58:15 -05:00
Tad
24c291c630
Improve hardenLocation to include fwb and its overlays
2019-02-08 18:46:42 -05:00
Tad
aa9b5499e6
Updates
2019-02-07 11:15:29 -05:00
Tad
3f9d78a4c7
Updates
2019-02-06 17:44:17 -05:00
Tad
a7a0a67888
Many changes
...
- Allow enabling accessibility services without disabling secure start-up
- Disable overclocks
- Update select CVE patchers
- Update submodules
- Support select downloads over Tor
- Update defconfig enablers
- Cherry pick security patches
2019-01-14 03:12:50 -05:00
Tad
0df749ef73
Add more preferred network modes such as LTE Only, LTE/3G only, and 3G only
2018-12-28 08:02:24 -05:00
Tad
c07027dd97
Many changes
...
- Update CVE patchers
- Update submodules
- Update defconfig enablers
- Update DNS IP addresses
- + Misc changes
2018-12-24 23:29:56 -05:00
Tad
6c4eadcdc7
Manifest cleanup + always remove latemount from /cache
...
formatting/erasing /cache will result in selinux contexts being lost
these are normally restored by system/core/rootdir/init.rc in post-fs
but latemount causes /cache to not be mounted beforehand
preventing it from ever being fixed
result is broken ota and recovery updates
2018-12-20 17:22:34 -05:00
Tad
c5d2f25797
11.0: nex: switch to -user + add disabled overclock
2018-12-19 02:15:15 -05:00
Tad
01be578137
11.0: Initial restore
...
I think this is like the 6th time I've done this.
I always remove it, wait a few months, pull out a device that I want to run it on
and then spend hours restoring and bringing it back. I always think to myself
do I really need to toy with this device? No, I don't, but I do it anyway. :)
2018-12-18 21:35:14 -05:00
Tad
5696da8d0c
Many changes
...
- 15.1: Update some CVE patchers
- 15.1: Address some mako denials
- 14.1: Add cherrypicks for various security patches
- Common: Prepare for F-Droid additional repos
- Common: Disable overclock for mako
- Misc tweaks
2018-10-19 09:55:08 -04:00
Tad
586f967667
Minor updates
2018-10-14 20:21:06 -04:00
Tad
5df567fe3b
Cleanup overclocks.sh
2018-10-02 13:55:39 -04:00
Tad
136bb520aa
Update CVE patchers
2018-10-01 22:45:00 -04:00
Tad
137c8d992d
Various changes
2018-09-21 16:32:02 -04:00
Tad
8347c07ec1
Deduplicate Overclock.sh and Optimize.sh
2018-09-21 03:55:54 -04:00
Tad
289b110d8f
Fix GPS on various devices
2018-09-19 01:03:02 -04:00
Tad
4929867e95
Build fixes
2018-09-14 19:34:01 -04:00
Tad
d9970b3f77
Minor tweaks and update F-Droid
2018-09-12 13:43:05 -04:00
Tad
e5b588265c
Add function to always ensure discard mount option is enabled
2018-09-11 19:53:50 -04:00
Tad
d231bd3172
Build fixes
2018-09-06 07:48:10 -04:00
Tad
8d79a008ff
hardenDefconfig: Ensure IOMMU is enabled
2018-09-05 04:53:42 -04:00