Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-07-03 18:11:24 +00:00
Code Issues Packages Projects Releases Wiki Activity
1,735 Commits 1 Branch 0 Tags 89 MiB
7277291dd7
Commit Graph

1550 Commits

Author SHA1 Message Date
Tad
cdca2c032e
20.0: add barbet 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-17 07:25:53 -04:00
Tad
91b908a78a
20.0: more fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-17 06:39:55 -04:00
Tad
e8248e4938
20.0: fixes + r11 churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-16 17:18:06 -04:00
Tad
4524eb43d3
20.0: It boots! 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-16 08:54:04 -04:00
Tad
5b114cacf8
20.0: More fixes 
It compiles, but fails to sign:
> TypeError: cannot use a string pattern on a bytes-like object

Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 17:20:41 -04:00
Tad
5cada3a769
20.0: Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 15:53:17 -04:00
Tad
20cfa30df0
20.0: Initial roster 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 14:42:10 -04:00
Tad
055ed9bfad
20.0: Initial bringup 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-15 10:39:48 -04:00
Tad
2acd454f13
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-13 23:42:20 -04:00
Tad
820c47caea
Update Carrier Configs 
CarrierConfig@6563341442262a4b79a4a2674679615f010b9837
TelephonyProvider@20a6228381b3e89e8c0972d115d422c08e0c9adb

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 21:41:08 -04:00
Tad
e3125dd7de
Update VVM and MMS configs from GrapheneOS 
VVM: 2637686af5
MMS: 0c7e979f05

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 21:33:47 -04:00
Tad
1543d2dc17
Cleanup 
Missed from 42306525

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 17:11:40 -04:00
Tad
2166491d5d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 17:11:06 -04:00
Tad
75abc8b9ec
19.1: add a modified patch from GrapheneOS to disable connectivity checks 
This removes their option for their servers

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 16:14:41 -04:00
Tad
fe95f700d8 Remove the CNE and DPM blobs + churn 
Just say no!

Signed-off-by: Tad <tad@spotco.us>
 2022-10-12 01:23:45 -04:00
Tad
e7968e1269
Picks + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-09 16:35:12 -04:00
Tad
4230652540
18.1: Drop all devices working on 19.1 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 21:10:04 -04:00
Tad
bf66d5db45
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 20:59:55 -04:00
Tad
348b392f03
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 10:24:04 -04:00
Tad
d78121a1c0
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 10:22:17 -04:00
Tad
c9b14ae70d
Make hardenDefconfig more manageable 
No functional changes

Signed-off-by: Tad <tad@spotco.us>
 2022-10-03 09:04:02 -04:00
Tad
da2e44c5f3
Add back the CNE and DPM blobs + churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-10-02 11:47:58 -04:00
Tad
598d78bb61
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-25 13:49:45 -04:00
Tad
25568706e1
Various 
- Add back the SIM ToolKit app
- 17.1: CarrierConfig testing
- 19.1: Enable op5 firmware inclusion, needs testing
- Don't disable coresight bits on op8, breaks compile
- 19.1: Add a patch from GrapheneOS to display/share logs when a crash happens

Signed-off-by: Tad <tad@spotco.us>
 2022-09-23 22:53:12 -04:00
Tad
411fcc08e1
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-15 14:11:58 -04:00
Tad
eb200546ea
17.1+: Update carrier configs for improved compatibility 
CarrierConfig@c2819f8
TelephonyProvider@af5c1386

Signed-off-by: Tad <tad@spotco.us>
 2022-09-14 14:58:01 -04:00
Tad
4573f6d7c3
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 22:41:48 -04:00
Tad
ec42acceb6
Various fixes from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 10:24:26 -04:00
Tad
3b0c05fe7c
Pull VVM config from GrapheneOS instead of LineageOS 
79.0.438914483 instead of 72.0.407683083

Signed-off-by: Tad <tad@spotco.us>
 2022-09-13 10:14:05 -04:00
Tad
202033c013
Pull in old cherrypicks + 5 missing patches from syphyr 
This adds 3 expat patches for n-asb-2022-09
from https://github.com/syphyr/android_external_expat/commits/cm-14.1
and also applies 2 of them to 15.1

Signed-off-by: Tad <tad@spotco.us>
 2022-09-11 14:02:35 -04:00
Tad
df3db92d5a
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-10 22:09:18 -04:00
Tad
e2b314da3c
15.1+16.0: September 2022 ASB picks 
16.0 backports thanks to MSe1969 as usual:
https://github.com/lin16-microg/android_system_bt/commits/lineage-16.0 - last 3 commits
https://github.com/lin16-microg/android_frameworks_base/commits/lineage-16.0 - last 4 commits
https://github.com/lin16-microg/android_external_expat/commits/lineage-16.0 - last 4 commits

Signed-off-by: Tad <tad@spotco.us>
 2022-09-10 18:32:25 -04:00
Tad
e5eb67f77d
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-08 16:07:23 -04:00
Tad
2bc43f195c
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-07 10:04:28 -04:00
Tad
b6e9f50cb5
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-09-04 14:05:36 -04:00
Tad
5fe5a4f898
Compile fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-29 14:26:47 -04:00
Tad
e9f124b52d
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-27 15:14:07 -04:00
Tad
86ed884251
More verification 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 23:14:15 -04:00
Tad
3618774d9f
GPG verification for all platform repositories 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 22:40:27 -04:00
Tad
7854c05aa4
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 20:09:50 -04:00
Tad
da15dc05d5
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 14:00:52 -04:00
Tad
adb61b0fb2
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-26 12:15:45 -04:00
Tad
c97f8a1b6a
Only enable CONFIG_DEBUG_NOTIFIERS on kernels <=4.9 
OnePlus 9 failed boot kernel log points to this.
GrapheneOS noted this as an inherent issue on the Pixel 4 and 5 too.

Signed-off-by: Tad <tad@spotco.us>
 2022-08-25 15:20:28 -04:00
Tad
4bfedbc42d
Fixup and enable GPG verification 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-24 15:52:55 -04:00
Tad
d8d8e457a1 Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-21 10:44:12 -04:00
Tad
6502a36cf1 Fixup 
These scripts aren't expected to be run from a workspace

Signed-off-by: Tad <tad@spotco.us>
 2022-08-15 16:40:32 -04:00
Tad
7918347d1c Updates 
- Add a script to update commons like APNs, VVM configs, and contributors cloud
- Add the latest contributors cloud to all branches
- Update wireless-regdb to 2022.08.12 release
- Add some shell opts to some scripts

Signed-off-by: Tad <tad@spotco.us>
 2022-08-15 16:37:42 -04:00
Tad
a78f9217c6 Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-14 19:56:28 -04:00
Tad
cf019edef9 Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-13 18:54:50 -04:00
Tad
ebdf629cbc 15.1 ASB work 
Compile tested

Signed-off-by: Tad <tad@spotco.us>
 2022-08-12 21:10:31 -04:00
Tad
8b67d5c41e Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-10 22:02:37 -04:00
Tad
40d7fac99a Churn 
https://github.com/voron00/android_kernel_lge_mako/pull/1

Signed-off-by: Tad <tad@spotco.us>
 2022-08-10 10:57:49 -04:00
Tad
12c56938cb Improve CVE-2021-1048 patching on 3.x kernels 
It is still actively being used by malware.

This largely handles 3.0, 3.4, and 3.10 kernels.
It works for select 3.18 kernels too.

TODO: need alternate get_file_rcu backport for the following:
15.1/lge_msm8996
15.1/zte_msm8996
16.0/xiaomi_msm8937
17.1/motorola_msm8996
18.1/google_marlin
18.1/lge_msm8996
18.1/oneplus_msm8996

Signed-off-by: Tad <tad@spotco.us>
 2022-08-09 21:39:25 -04:00
Tad
b4f17b39cd Make available some additional scripts 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-09 18:50:49 -04:00
Tad
c69d8aec8b Add the wallpaper resize script 
Should probably be moved into a separate branding repo later

Signed-off-by: Tad <tad@spotco.us>
 2022-08-09 13:42:08 -04:00
Tad
4d9a110970 Pick 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-08 18:47:17 -04:00
Tad
0ffbe79e1a FP4 + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-08 15:02:14 -04:00
Tad
e0b57197ea Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-06 11:30:49 -04:00
Tad
31a67f054d Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-04 11:12:40 -04:00
Tad
933f33ba6b Cherrypicks 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-04 09:57:11 -04:00
Tad
162f4f450a 19.1: add FP4 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-03 12:45:26 -04:00
Tad
0d8ab187e3 Revert past two commits 
Disabling extended sizes classes does not appear to have the savings it does on desktop.
Disabling the quarantine isn't acceptable given that default scudo implements it
 2022-08-03 00:24:39 -04:00
Tad
005ef7882a Fixup a00fa234 
This variant passess all tests instead of failing six tests

Signed-off-by: Tad <tad@spotco.us>
 2022-08-02 22:52:42 -04:00
Tad
a00fa2349e Switch to a memory efficient hardened_malloc variant 
This should help 64-bit devices with <4GB RAM substantially, at reduced hardening.

clark for example only has 2.5GB of usable memory and idles at 1.6GB used.
After this change, idle usage drops to 1.1GB!

Signed-off-by: Tad <tad@spotco.us>
 2022-08-02 20:29:10 -04:00
Tad
178f01958d Cherrypicks 
Signed-off-by: Tad <tad@spotco.us>
 2022-08-02 19:39:09 -04:00
Tad
2b299c1aff Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-21 21:28:26 -04:00
Tad
a9d90a06b9 Pick 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-15 11:03:41 -04:00
Tad
c08ce75b03 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-13 10:01:32 -04:00
Tad
717caac5c6 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-11 18:17:51 -04:00
Tad
1d64c759a5 Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-10 00:31:44 -04:00
Tad
d3632c25ce Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-07 21:47:59 -04:00
Tad
22f915cc3e Cherrypicks 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-07 18:59:37 -04:00
Tad
1165450d18 Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-07 01:53:45 -04:00
Tad
f07f288e3a Add a toggle for Monet themeing, credit GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-06 21:13:40 -04:00
Tad
2c27a88a24 Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-06 19:22:21 -04:00
Tad
7b8ef09540 Update CVE patchers 
Effectively no changes

Signed-off-by: Tad <tad@spotco.us>
 2022-07-04 18:30:09 -04:00
Tad
d79d1fcba3 19.1: More promotions 
Signed-off-by: Tad <tad@spotco.us>
 2022-07-01 14:17:18 -04:00
Tad
ac645dd62e Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-28 11:32:05 -04:00
Tad
519a474173 Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-19 22:44:05 -04:00
Tad
4e09464e86 Pick 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-15 17:17:47 -04:00
Tad
11b9ae5bc4 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-13 21:24:08 -04:00
Tad
d58279e054 Update wireless-regdb to 2022.06.06 release 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-11 10:17:25 -04:00
Tad
70b8485695 Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-09 17:59:48 -04:00
Tad
c092b13a44 Restore star*lte 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-08 22:55:00 -04:00
Tad
2bf84a7643 Increase default max password length to 64, credit GrapheneOS 
Closes https://github.com/Divested-Mobile/DivestOS-Build/pull/119
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/27

Signed-off-by: Tad <tad@spotco.us>
 2022-06-07 15:33:38 -04:00
Tad
492b6ba291 Tweaks 
Exempt the Fused Location Provider:
5f19508083

Bring the hardened malloc camera workaround in tree, it was dropped upstream

Signed-off-by: Tad <tad@spotco.us>
 2022-06-07 15:06:25 -04:00
Tad
27f8663b00 Tweak 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-06 16:58:55 -04:00
Tad
697bed18fb 17.1+18.1: Drop all devices working on 19.1 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-04 14:26:44 -04:00
Tad
1f41b1c498 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-04 12:55:32 -04:00
Tad
899ea17d4e Add the missing page sanitization to 3.18 kernels 
All along they only had slub sanization :(

Signed-off-by: Tad <tad@spotco.us>
 2022-06-04 12:00:01 -04:00
Tad
3da5613dfc Add unconditional burnin protection on 18.1 and 19.1, credit @arter97 
Also skip the power on animation on 19.1, credit @kdrag0n

Signed-off-by: Tad <tad@spotco.us>
 2022-06-04 10:54:11 -04:00
Tad
5df4058a15 Chrun 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-03 15:14:35 -04:00
Tad
92c66447f8 Drop slub_debug 
What is lost?
- sanity checks and redzoning on all devices
  - redzoning reportedly however causes issues on some devices such as the Pixel 3/4 and OnePlus 7
- slub sanization on 3.0, 3.4, 4.4 (except google/wahoo), xiaomi/sm6150, and oneplus/sm7250

Note: all 3.4+ devices still have page sanization

Signed-off-by: Tad <tad@spotco.us>
 2022-06-03 13:58:17 -04:00
Tad
d3cb12b41b Skip adding slub_debug=P where not needed 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-03 13:39:08 -04:00
Tad
da63c9e571 Various small patches 
7408144e1b
> extend Network/Sensors permission handling for legacy apps not targeting Android 6
> or above (API 23) to resolve a UI issue where the user choosing to grant the
> Network/Sensors permissions via the legacy permission review interface doesn't
> appear in the Settings app info page

22d32cb61b
suppresses https://github.com/Divested-Mobile/DivestOS-Build/discussions/112

66f406b979
3f69205d06
nice to have

Signed-off-by: Tad <tad@spotco.us>
 2022-06-02 23:17:05 -04:00
Tad
e6a7cd6a14 Tiny fix 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-02 21:48:48 -04:00
Tad
aa61367ace Tweaks 
- Disable slub_debug=P for devices with INIT_ON_ALLOC/FREE_DEFAULT_ON
- Disable slub_debug=Z due to known breakage
- Disable many debug options on Linux 4.x and up
- 19.1: fixup missing manifests for vayu :\

Signed-off-by: Tad <tad@spotco.us>
 2022-06-02 17:13:20 -04:00
Tad
0eaca57fa6 19.1: Add OnePlus 8 and 9 series 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-02 11:52:58 -04:00
Tad
0b4c829b74 Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-06-01 07:45:19 -04:00
Tad
6d95c231bc Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-05-31 21:29:22 -04:00