Git-Mirrors/DivestOS
1
0
Fork 0
mirror of https://github.com/Divested-Mobile/DivestOS-Build.git synced 2024-06-30 16:41:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,217 Commits 1 Branch 0 Tags 89 MiB
7a42c9eb17
Commit Graph

269 Commits

Author SHA1 Message Date
Tad
0afe05ff22
Push apollon to 20.0 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-18 12:36:18 -04:00
Tad
ceec1584a9
Fixup hosts cache thanks to patch from @danielk43 
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/198

Signed-off-by: Tad <tad@spotco.us>
 2023-08-18 11:17:14 -04:00
Tad
2142e2e763
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-17 17:18:10 -04:00
Tad
9707326c4f
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-13 16:16:21 -04:00
Tad
974878988b
Fixup 
Will regen later

Signed-off-by: Tad <tad@spotco.us>
 2023-08-09 00:46:44 -04:00
Tad
eef09ae519
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-07 18:07:19 -04:00
Tad
7ef5d9a9c4
Broken EUICC handling 
Signed-off-by: Tad <tad@spotco.us>
 2023-08-05 18:57:32 -04:00
Tad
180280b233
Update CVE patchers 
TODO: adjust min version of CVE-2023-4132

Signed-off-by: Tad <tad@spotco.us>
 2023-08-04 21:00:29 -04:00
Tad
7cbceb9d81
Tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-27 20:44:56 -04:00
Tad
7b7d5b93dd
Adjust 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-27 13:43:06 -04:00
Tad
73414e76d2
Update CVE patchers 
two lpes

Signed-off-by: Tad <tad@spotco.us>
 2023-07-25 12:04:05 -04:00
Tad
c8d3354113
Patch from CalyxOS to make AOSP less spyware 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-24 14:35:24 -04:00
Tad
3708cee48a
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-24 14:10:33 -04:00
Tad
e74f861c8e
Fixes + Churn 
- Fix instances of awk failing on missing globs
- Remove unwanted packages from work/user/managed profiles
- Remove proprietary camera extensions

Signed-off-by: Tad <tad@spotco.us>
 2023-07-24 03:59:51 -04:00
Tad
4bab1c31d7
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-19 16:05:51 -04:00
Tad
0f9a2c7aea
Less aggressive low_ram enablement 
14.1 <2GB
15.1 <2GB
16.0 <2GB
17.1 <3GB
18.1 <3GB
19.1 <4GB
20.0 <4GB

Signed-off-by: Tad <tad@spotco.us>
 2023-07-17 18:44:56 -04:00
Tad
b6308caa37
Update CVE patchers 
TODO: enable CVE-2023-31084/4.4

Signed-off-by: Tad <tad@spotco.us>
 2023-07-15 21:22:18 -04:00
Tad
aa6bfad801
Various 
- Drop OpenCamera, it doesn't work on lock screens anymore?
- microG on 18.1+:
  - set packages forceQueryable
  - spoof some sources as Play Store
    TODO: backport this to 17.1
- Remove camera extensions
- Churn
- Wording

Signed-off-by: Tad <tad@spotco.us>
 2023-07-15 18:22:07 -04:00
Tad
1c9076fffe
KSM tuning 
- Only enable on Linux 3.0 through 4.9
- Always enable defer option
- Only run twice a second, instead of fifty times a second

Signed-off-by: Tad <tad@spotco.us>
 2023-07-14 20:27:10 -04:00
Tad
11c286ecd4
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-14 17:27:20 -04:00
Tad
192c73146a
Add a toggle for KSM 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-14 17:11:21 -04:00
Tad
b5bb498248
Many tweaks 
- 19.1/20.0: Enable low ram for <6GB devices
- 20.0: support RROs with exec spawning patch from GrapheneOS
- allow work profiles when low ram is enabled
- churn
- cherrypicks

Signed-off-by: Tad <tad@spotco.us>
 2023-07-13 16:40:05 -04:00
Tad
eff7a69bed
Small changes 
- Another fix
- Deblobber tweaks
- Patch from GrapheneOS
- Cherrypick

Signed-off-by: Tad <tad@spotco.us>
 2023-07-13 10:58:41 -04:00
Tad
fdeceb5c9c
Fixups 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-10 22:50:33 -04:00
Tad
7a53edc390
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-10 17:11:15 -04:00
Tad
fc01bcba7f
Churn 
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/222

Signed-off-by: Tad <tad@spotco.us>
 2023-07-09 21:23:25 -04:00
Tad
a1a3cbb94e
Fix overlay conflicts 
Should mostly fix https://github.com/Divested-Mobile/DivestOS-Build/issues/219

Signed-off-by: Tad <tad@spotco.us>
 2023-07-06 14:51:40 -04:00
Tad
c4666a33b7
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-07-05 19:42:40 -04:00
Tad
0f4044e242
20.0: opt-in hardened unprivileged microG ability 
Unlike other systems which ship privileged microG out of the box:
- User must enable microG repo in F-Droid
- User must install official microG apps (GmsCore/FakeStore/GSF)
- User must enable the microG toggle in Settings
- NOT a privileged app, not all features will work
- gmscore SELinux domain is still disabled

Signed-off-by: Tad <tad@spotco.us>
 2023-07-03 13:45:06 -04:00
Tad
2e2ac4557d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-26 19:41:11 -04:00
Tad
6b94c8cdcb
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-21 16:05:11 -04:00
Tad
dc4d6b0901
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-20 18:36:31 -04:00
Tad
1e7f10d6b6
20.0: drop June ASB patches 
QPR3 has been merged

Signed-off-by: Tad <tad@spotco.us>
 2023-06-20 16:22:02 -04:00
Tad
cda898f141
Certificate Authority store updates 
- Remove some untrustworthy CAs
- Update CA store for all branches to aosp/e302aa968334b3c3fc9cd709a7c7661e0cf534eb

Signed-off-by: Tad <tad@spotco.us>
 2023-06-17 15:13:54 -04:00
Tad
a07133a064
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-16 11:03:46 -04:00
Tad
ee534ada7f
20.0: bringup lmi/alioth 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-14 22:04:04 -04:00
Tad
7ed06bc763
Remove charge control feature from all devices for now 
Signed-off-by: Tad <tad@spotco.us>
 2023-06-14 01:52:58 -04:00
Tad
0dde119d7e
20.0 June ASB work + churn 
QPR3 is delayed a week now

Patches pulled from GrapheneOS and checked against CalyxOS

Signed-off-by: Tad <tad@spotco.us>
 2023-06-12 21:06:42 -04:00
Tad
2ee99fe3ef
Update CVE patchers 
CVE-2020-36694 appears to be a duplicate of CVE-2021-29650

Signed-off-by: Tad <tad@spotco.us>
 2023-06-01 21:12:08 -04:00
Tad
e696cceac9
20.0 Private DNS work 
- Simplify Private DNS preset patchsets
  based on updated CalyxOS patchset
  TODO: backport this

- Add DoH endpoints for all of the presets
  Disabled, very few hosts actually support DoH/3

Signed-off-by: Tad <tad@spotco.us>
 2023-05-31 19:02:10 -04:00
Tad
8a43be3c58
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-30 15:17:29 -04:00
Tad
0f04da8872
Pin + cleanup 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-26 13:05:38 -04:00
Tad
8463705798
Update CVE patchers 
- Includes CVE-2023-32233 fixes for more devices
- Upstream has reverted the LVT patches, maybe consider handling them

Signed-off-by: Tad <tad@spotco.us>
 2023-05-22 20:33:47 -04:00
Tad
cd0a29d69b
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-12 23:28:44 -04:00
Tad
1a203ab5ad
Nine device additions 
20.0:
	- akatsuki
	- lemonades
	- dipper, equuleus, polaris, ursa

19.1:
	- kirin, mermaid
	- apollon

note lemonades is failing like kebab:
> Sum of sizes in oneplus_dynamic_partitions_partition_list is 3765178368, which is greater than oneplus_dynamic_partitions_size (3753902080)

Signed-off-by: Tad <tad@spotco.us>
 2023-05-09 02:48:56 -04:00
Tad
6d2a255eef
Remove User-Agent (and serial) from source built libloc 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-05 22:27:27 -04:00
Tad
14c191ffb5
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-04 21:19:33 -04:00
Tad
e4abf9aeab
Drop picks 
Merged upstream

Signed-off-by: Tad <tad@spotco.us>
 2023-05-03 21:45:47 -04:00
Tad
c544c28b94
Prevent Qualcomm location stack from reading chipset serial number 
The deblobber already removes xtra-daemon which is what actually performs the requests.
This is just extra sanctity.

Signed-off-by: Tad <tad@spotco.us>
 2023-05-03 21:41:20 -04:00
Tad
366b4eb5ef
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-02 18:01:39 -04:00
Tad
3f40c8fb7c
Picks 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-02 17:09:25 -04:00
Tad
39b0c9e036
Remove broken emoji updates 
Signed-off-by: Tad <tad@spotco.us>
 2023-05-02 15:31:57 -04:00
Tad
7b2eb1079a
Update emoji list in LatinIME too and disable 
tested not working on 15.1
shows as cross boxes or double characters

Signed-off-by: Tad <tad@spotco.us>
 2023-04-29 16:56:13 -04:00
Tad
86b7525400
Update the emojis, untested 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-29 16:17:00 -04:00
Tad
18f72663e8
Fix + churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-25 02:03:40 -04:00
Tad
47136145e5
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-23 23:20:36 -04:00
Tad
9ba61642de
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-17 23:19:28 -04:00
Tad
aad60b7567
Promotions 
16.0 santoni/land to 20.0 Mi8937 unified
17.1 griffin to 18.1
17.1 star*/crownlte to 20.0
20.0 add pro1x

Signed-off-by: Tad <tad@spotco.us>
 2023-04-17 21:36:49 -04:00
Tad
7263a6fd6e
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-17 12:27:05 -04:00
Tad
2cc87c4dc7
Switch fingerprint locked to 5 attempts instead of 3 + churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-12 15:26:26 -04:00
Tad
9a97c7013b
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-04-05 12:43:36 -04:00
Tad
4435c200ed
15.1+: vCard 4.0 support from GrapheneOS 
8fbeedd002

Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/202

Signed-off-by: Tad <tad@spotco.us>
 2023-04-04 12:50:42 -04:00
Tad
750f244304
Updates, logging, and churn 
also add an extra March ASB patch for 17.1

Signed-off-by: Tad <tad@spotco.us>
 2023-03-31 12:38:46 -04:00
Tad
ca93ef33ce
Slightly improve compatibility with apps that want GSF 
38a5ca05e9

Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 23:45:58 -04:00
Tad
332c469151
Silence some log spam 
As repoted on FP3

Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 23:40:31 -04:00
Tad
2907be1be5
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-28 00:48:08 -04:00
Tad
c4a23756a5 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-25 20:44:13 -04:00
Tad
fe80137df9
Don't remove CompanionDeviceManager 
Used by some wearables, not just Android Wear

Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/196

Signed-off-by: Tad <tad@spotco.us>
 2023-03-25 20:21:38 -04:00
Tad
5f366227bd cheryl: promote to 20.0 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-25 20:04:22 -04:00
Tad
472ec96915
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-22 16:23:26 -04:00
Tad
b522a16298
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-22 07:21:15 -04:00
Tad
b4dbe27f23
Fixes 
- 18.1: Fix exempted background tasks when dozing (GrapheneOS)
- 20.0: pick a fix for some colors after qpr2
- 20.0: fix the missing notification backdrop

Signed-off-by: Tad <tad@spotco.us>
 2023-03-20 17:51:09 -04:00
Tad
9475615e77
A13 QPR2 Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-19 20:52:48 -04:00
Tad
8bcb5c734d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-17 19:27:22 -04:00
Tad
162b40a39d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-13 18:13:54 -04:00
Tad
13865bc776
Fixup avicii 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 17:58:48 -05:00
Tad
fd1becb8c4
20.0: bringup avicii 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 17:29:58 -05:00
Tad
ef2fdb1d3e
More handling improvements 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 16:14:51 -05:00
Tad
0b294c1601
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 16:01:49 -05:00
Tad
5d0ab40f0b
Robustness improvements 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 01:14:06 -05:00
Tad
6ba784ac33
Some actual error handling 1/n 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-08 00:03:23 -05:00
Tad
097019193e
Don't bail when devices are missing 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-07 23:41:27 -05:00
Tad
7e3bbc174a
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-03-06 22:57:45 -05:00
Tad
804786aa23
Update CVE patchers 
Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/193

Signed-off-by: Tad <tad@spotco.us>
 2023-03-06 19:54:15 -05:00
Tad
b388727945
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-27 10:12:12 -05:00
Tad
b8f39716f1
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-26 12:21:36 -05:00
Tad
2993b459f0
Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-18 23:53:28 -05:00
Tad
b08bf0356f
Small additions + churn 
- 18.1+: Disable NTP fully when automatic time is off, credit GrapheneOS
- 20.0: Handle Tor-over-Orbot when killswitch enabled, credit CalyxOS, BROKEN

Signed-off-by: Tad <tad@spotco.us>
 2023-02-18 13:52:46 -05:00
Tad
9f82763c53
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-17 23:57:04 -05:00
Tad
742a2fb7e2
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-13 10:32:56 -05:00
Tad
29ef757ac6
Bump FP3 to 20.0 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-13 10:07:47 -05:00
Tad
a845f59546
Fixup persistent IPv6 privacy address issue + churn 
Backports of rfc4941bis from Google/Linaro
and workaround for legacy kernels from GrapheneOS

already has rfc4941bis patch:
fairphone_sdm632
google_gs101
google_gs201
google_msm-4.14
google_msm-4.9
google_redbull
oneplus_sdm845
razer_sdm845
xiaomi_sdm845

Signed-off-by: Tad <tad@spotco.us>
 2023-02-11 20:26:24 -05:00
Tad
49f5f1c674
19.1+: Add the SUPL toggle setting from GrapheneOS 
Will need some work to apply on 17.1/18.1

Signed-off-by: Tad <tad@spotco.us>
 2023-02-10 23:57:04 -05:00
Tad
fa067a3f89
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-06 23:06:34 -05:00
Tad
19d5f73b50
Remove silly carrier restrictions 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-03 22:17:13 -05:00
Tad
ef51b5e5af
Updated strict package check patches from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-03 17:57:15 -05:00
Tad
dc853bfdae
WebView: Switch to dedicated package name 
And remove the F-Droid repo for it, will be moved to the 'DivestOS Official' repo
This simplifies release management and also allows other systems to benefit from the repo

Downside is users who don't update to this build won't receive any updates for it anymore

Signed-off-by: Tad <tad@spotco.us>
 2023-02-02 17:17:30 -05:00
Tad
20c4e75fe1
Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-01 18:30:29 -05:00
Tad
4155cec7e3
20.0: bringup mata 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-01 17:51:38 -05:00
Tad
4f6e21d7f9 Deduplicate Defaults.sh 
Signed-off-by: Tad <tad@spotco.us>
 2023-02-01 15:57:13 -05:00
Tad
1511176a07
Update CVE patchers 
Maybe some breakage

Signed-off-by: Tad <tad@spotco.us>
 2023-01-28 20:33:44 -05:00
Tad
eaac744701 Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 23:37:38 -05:00
Tad
3231979ef4
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 20:55:42 -05:00
Tad
fb7bf503b1
Pull in the special permissions reset bugfix from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:20:00 -05:00
Tad
b1da856762
Cleanup 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:14:26 -05:00
Tad
da1df44c8f
GrapheneOS kernel hardening patches update 
Maybe some compile breakage

Signed-off-by: Tad <tad@spotco.us>
 2023-01-24 19:03:01 -05:00
Tad
e81cd5586d
Add even more captive portal servers + sorting 
TODO: apply to other branches

Signed-off-by: Tad <tad@spotco.us>
 2023-01-23 16:42:00 -05:00
Tad
2529515b33
19.1+: Fixup DHCP hostname handling 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-22 15:52:20 -05:00
Tad
9558a7d0e9 Switch to the Broadcom PSDS server for Pixel 6/7 series 
Instead of agnss.goog cache
Based off of a patch from GrapheneOS

Signed-off-by: Tad <tad@spotco.us>
 2023-01-21 04:08:26 -05:00
Tad
84a9a1326c
18.1+: add multiple captive potal server options 
This also switches 18.1 from @MSe1969's patch to the GrapheneOS patch
Can maybe port to 17.1 too

Signed-off-by: Tad <tad@spotco.us>
 2023-01-20 00:21:30 -05:00
Tad
91807acf21
various small fixes 
- loose versioning fixes for 4.9
- remove GPG commit verification for GOS repos, they use SSH now. TODO: support that
- 20.0: fixup AudioFX stray lines
- 20.0: broken fix for gs101/201 stray iwlan lines

Signed-off-by: Tad <tad@spotco.us>
 2023-01-18 20:02:11 -05:00
Tad
5ce2d33162
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-18 14:13:33 -05:00
Tad
2153422bb0
Potentially unbreak video playback on vayu, davinci, guacamole*, and hotdog*. 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-13 21:27:18 -05:00
Tad
14f40e024f
Update CVE patchers 
This adds loose versioning applying 4.14 patches to 4.9

Signed-off-by: Tad <tad@spotco.us>
 2023-01-13 13:23:12 -05:00
Tad
3e5f1ec5ec Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-12 16:07:39 -05:00
Tad
207bdd2406
Strict versionCode checks for system apps from GrapheneOS 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-11 12:19:41 -05:00
Tad
8eca7f2149
20.0: add xz2 series + churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-09 13:47:10 -05:00
Tad
4012c57952 beryllium: fix a stutter 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-09 09:42:13 -05:00
Tad
7dbdcdf751 Tweak Aperture defaults 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-08 21:20:36 -05:00
Tad
c92c084ca1
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-08 20:49:57 -05:00
Tad
3ac41a1918 Tweaks 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-05 10:09:04 -05:00
Tad
f2d87b1e81
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2023-01-03 20:18:40 -05:00
Tad
06eed1fba9
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-31 21:41:46 -05:00
Tad
035ae85e0f
19.1: drop devices that are on 20.0 
- there have been updater checks for all of these on 20.0, expect for aura
- 20.0 has been my daily driver on fajita (and recently bluejay) since mid October
- there are only some minor issues on 20.0 that aren't much of a blocker
- LineageOS has marked 20.0 stable

Signed-off-by: Tad <tad@spotco.us>
 2022-12-31 18:26:42 -05:00
Tad
a3015c3ad0
Fixup 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-26 16:12:03 -05:00
Tad
06254708be
Many fixes to get bluejay booting & working proper 
- Enable APEX for Pixel 6/7, necessary for camera and pKVM
  - Also drop hack removing pKVM for Pixel 6/7
  - patch from GrapheneOS

- Extend hmalloc workaround to /apex

- Deblobber:
  - actually handle wildcard f/w/b overlays
  - move some stuff around
  - remove some more Pixel blobs
  - flag and disable removal of camera extensions, being able to use the second camera is nice

- Adjust what hardenDefconfig disables, caused boot issues
  minimal impact as most of these are already default-disabled
  can be narrowed down in future

- Disable some of the bionic hardening patches, causing more boot issues
  annoying to lose, but having a phone that boots is more important

- Add LTE only mode to 17.1, 18.1, 19.1, and 20.0, credit GrapheneOS

- Remove Pixel 2 ramdisk compression reverts, fixed upstream

And yes, I know I should've split up this commit...

Signed-off-by: Tad <tad@spotco.us>
 2022-12-25 13:21:37 -05:00
Tad
751d1e8d72
Misc patches 
- 20.0: updated and enabled burnIn patch
- 19.1: fixup apps having data restrictions wrongly applied

Signed-off-by: Tad <tad@spotco.us>
 2022-12-23 10:09:37 -05:00
Tad
7d6b8e3aeb
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-22 11:33:47 -05:00
Tad
7277291dd7
Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-18 21:46:00 -05:00
Tad
03293f6b52
Fixup 
Messy, but better to have CVE-2022-42896 applied to *some* 3.18 kernels

Signed-off-by: Tad <tad@spotco.us>
 2022-12-17 00:42:25 -05:00
Tad
c2fc228f3b Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-16 22:06:13 -05:00
Tad
23a723feb1
Pixel 6/7 compiling 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-16 03:34:58 -05:00
Tad
ad5de60266
More Pixel 6/7 work 
compiles, but fails to generate release due to pvmfw failure

Signed-off-by: Tad <tad@spotco.us>
 2022-12-15 20:49:30 -05:00
Tad
29c9826c11
20.0: QPR1 churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-10 20:57:17 -05:00
Tad
b78f573eb9
Fixes 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-10 20:30:22 -05:00
Tad
abb616d2f3
Updates 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-09 17:23:20 -05:00
Tad
ce47fdae34
Small updates + Picks 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-07 18:41:50 -05:00
Tad
a62922e72d
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-12-06 15:00:40 -05:00
Tad
0aa4fd0fc3
Update CVE patchers 
Appears I skipped 20.0 by accident last update

Signed-off-by: Tad <tad@spotco.us>
 2022-12-05 14:23:06 -05:00
Tad
3c8c235758
Ugly workaround 
For bug exposed after:
https://review.lineageos.org/c/LineageOS/android_frameworks_base/+/344890

Signed-off-by: Tad <tad@spotco.us>
 2022-12-03 23:58:36 -05:00
Tad
178e127338
Small tweaks + churn 
Fixes recovery not booting on 20.0

Signed-off-by: Tad <tad@spotco.us>
 2022-12-03 16:19:31 -05:00
Tad
680bf51e05
Ugly hack 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-22 07:24:21 -05:00
Tad
fd0e3e8117
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-22 07:11:30 -05:00
Tad
c4fe56a307
Update CVE patchers 
This fixes CVE-2018-9422 which was primarily added via b56fabac

May still need to be fixed:
16.0/kernel_google_yellowstone
16.0/kernel_xiaomi_msm8937

Signed-off-by: Tad <tad@spotco.us>
 2022-11-21 08:39:10 -05:00
Tad
7f24df22f7 Small updates 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-21 06:09:29 -05:00
Tad
ad5f2d7bfa
Fix firmware flash denial for OP7 series 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-16 18:42:17 -05:00
Tad
14f7f1db32
Updates + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-13 02:06:05 -05:00
Tad
b81d39c969
Update CVE patchers 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-11 16:05:22 -05:00
Tad
27395374e1
Fixup + Churn 
Signed-off-by: Tad <tad@spotco.us>
 2022-11-11 13:54:57 -05:00
Tad
807a08210a
Tweaks 
- 20.0: pick fixes for the deny usb toggle
- 20.0: pull in a patch from GrapheneOS removing a package list leak

Signed-off-by: Tad <tad@spotco.us>
 2022-11-07 20:30:36 -05:00