Tad
bb72bccbeb
Two hardening patches from @MSe1969
...
+ a backport of browser location restriction patch to 14.1 and 15.1
by @syphyr
2019-06-02 19:25:29 -04:00
Tad
25cc717ec2
Use GrapheneOS' hardened memory allocator
...
+ 16.0: some other misc hardening patches from GrapheneOS
- always restrict access to Build.SERIAL
- don't grant location permission to system browsers
- fbe: pad filenames more
+ 16.0: Contacts: remove Privacy Policy and Terms of Service links
2019-04-04 01:07:58 -04:00
Tad
61ee2e5757
More minor fixes
2019-03-26 19:37:56 -04:00
Tad
3c806603d9
Various fixes
2019-03-25 21:30:26 -04:00
Tad
afe719ffc4
16.0: Initial bringup
...
- 14.1/15.1: Remove @ValdikSS' bluetooth patches
- 15.1: Cleanup
2019-03-04 02:45:54 -05:00
Tad
83478880ef
WireGuard kernel module inclusion support
2019-03-04 00:06:22 -05:00
Tad
6eab4c6529
Minor updates
2019-02-22 08:38:24 -05:00
Tad
fccc124868
tuna fixes + fdroid priv changes
2019-02-14 04:36:50 -05:00
Tad
c9e17ffb52
Many changes
...
- Add more DNS resolver choices
- Change default DNS resolver back to OpenNIC
- More cleanup
- 15.1: Update some CVE patchers
2019-02-09 20:51:23 -05:00
Tad
ffabfb3616
14.1: fix maguro denials
2019-02-09 14:47:55 -05:00
Tad
a7a4e869fd
Many changes
...
- Remove broken/permissive devices
- Notify user when location is requested via SUPL
- 15.1: skia cherrypicks for Feb ASB
- 15.1: recovery: change selected text color
2019-02-09 14:20:19 -05:00
Tad
9178760d1a
Updater: Fix downloads over Tor
...
+ Update TODO
+ Minor tweaks
2019-02-08 20:58:15 -05:00
Tad
24c291c630
Improve hardenLocation to include fwb and its overlays
2019-02-08 18:46:42 -05:00
Tad
db260cf1e1
Updates
2019-02-02 06:11:41 -05:00
Tad
378971497c
14.1: Support unified tuna
2019-02-01 02:53:13 -05:00
Tad
a7a0a67888
Many changes
...
- Allow enabling accessibility services without disabling secure start-up
- Disable overclocks
- Update select CVE patchers
- Update submodules
- Support select downloads over Tor
- Update defconfig enablers
- Cherry pick security patches
2019-01-14 03:12:50 -05:00
Tad
c27f226269
Properly fix network mode patch
2018-12-29 12:19:27 -05:00
Tad
0df749ef73
Add more preferred network modes such as LTE Only, LTE/3G only, and 3G only
2018-12-28 08:02:24 -05:00
Tad
01be578137
11.0: Initial restore
...
I think this is like the 6th time I've done this.
I always remove it, wait a few months, pull out a device that I want to run it on
and then spend hours restoring and bringing it back. I always think to myself
do I really need to toy with this device? No, I don't, but I do it anyway. :)
2018-12-18 21:35:14 -05:00
Tad
34be4797ea
Switch to official F-Droid
2018-10-20 16:26:42 -04:00
Tad
95959a0d89
Many changes
...
- Add back microG support (not enabled)
- Add choice between DNS66 and Blokada when $DOS_HOSTS_BLOCKING=false
2018-10-19 18:28:18 -04:00
Tad
776be6f992
Backport Updater Tor support patch to 14.1
2018-09-24 06:46:54 -04:00
Tad
08c65c8334
Patches to add captive portal check toggle from @MSe1969
2018-09-22 21:05:41 -04:00
Tad
137c8d992d
Various changes
2018-09-21 16:32:02 -04:00
Tad
b50352bc8e
Updater: Add initial Tor support
2018-09-20 21:45:58 -04:00
Tad
c012af895f
Updates
2018-09-18 20:55:45 -04:00
Tad
a39764938c
Build fixes and updates
2018-09-12 22:51:05 -04:00
Tad
d9970b3f77
Minor tweaks and update F-Droid
2018-09-12 13:43:05 -04:00
Tad
e5b588265c
Add function to always ensure discard mount option is enabled
2018-09-11 19:53:50 -04:00
Tad
d231bd3172
Build fixes
2018-09-06 07:48:10 -04:00
Tad
8e79da6971
GPG verify all F-Droid apps before copy
2018-08-30 23:46:17 -04:00
Tad
44b799afb1
Update F-Droid
2018-08-26 23:10:42 -04:00
Tad
e078d37b82
Enable previously added Bluetooth patches
2018-08-24 13:52:34 -04:00
Tad
642f978509
Experimental Bluetooth audio quailty improvement patches, credit @ValdikSS
2018-08-23 22:31:43 -04:00
Tad
bf717204e3
GPS improvements
2018-08-07 23:28:38 -04:00
Tad
ce42870cd2
Fixes
2018-08-07 14:26:15 -04:00
Tad
13fd3fab51
fugu fixes
2018-07-22 17:08:22 -04:00
Tad
bf1256f182
Final overlay fixes
2018-07-13 22:04:42 -04:00
Tad
df213a8b19
Overlay fixes and F-Droid additional repos prep
2018-07-13 17:43:14 -04:00
Tad
2f50e7c142
Overlay fixes
2018-07-13 01:45:38 -04:00
Tad
91a6b29806
More overlay work
2018-07-13 01:02:41 -04:00
Tad
2ee7a13a80
More overlay work
2018-07-12 22:43:28 -04:00
Tad
2c6ba127d4
More overlay work
2018-07-12 22:29:21 -04:00
Tad
f95b73fe06
More overlay work
2018-07-12 22:19:30 -04:00
Tad
9dec3c7018
More overlay work
2018-07-12 22:12:55 -04:00
Tad
1dc92478ed
Many changes
...
- Drop Copperhead patches
- More overlay work
2018-07-12 22:05:02 -04:00
Tad
79972d393c
DNM: WIP: Migrate to a proper vendor overlay for most changes
2018-07-12 21:27:01 -04:00
Tad
cb8fdaf3f5
Low RAM tweaks
2018-07-11 14:20:15 -04:00
Tad
e2ae8e333a
More terminators
2018-07-11 08:01:45 -04:00
Tad
5af16e1ddd
Add build option to enable lowram/go on all devices
2018-07-10 21:45:11 -04:00
Tad
8b2902fd94
Tweaks
2018-07-10 17:59:03 -04:00
Tad
58d7e42a1d
Initial support for 11.0
2018-07-09 16:04:09 -04:00
Tad
ae0d89ee8a
Many changes
...
- Switch to new HOSTS list
- Minor tweaks
- 14.1: Fix default Trebuchet workspaces
2018-07-04 15:35:16 -04:00
Tad
30d59ea53d
More devices
...
- 14.1: dragon, manta, us996, us997, victara
- 15.1: dragon, us996, us997, victara
- Deblobber: Remove more blobs
2018-06-30 14:03:11 -04:00
Tad
d2ba1ddb20
Overhaul variable names
2018-06-29 13:46:12 -04:00
Tad
4917b3ebc7
Cleanup
2018-06-28 23:17:59 -04:00
Tad
303fe971ed
Many changes
...
- 14.1: Fixup previous commits
- 15.1: Add mata
- Deblobber: Remove more blobs (audiofx, cne, hdr, ims-rtp)
2018-06-28 20:11:20 -04:00
Tad
29ace39eb9
Fixup previous 2 commits + misc tweaks
2018-06-27 12:04:42 -04:00
Tad
5d4d12b324
14.1: Add back all devices that were moved to 15.1
2018-06-27 09:17:50 -04:00
Tad
746b695d6a
Deduplicate updater patches
2018-06-27 08:43:12 -04:00
Tad
af9126ffcb
More deduplication
...
- Deduplicate Trebuchet default workspaces
- Deduplicate LatinIME patches
- Deduplicate SetupWizard assets
- And fix a typo with grouper overclock
2018-06-26 21:25:59 -04:00
Tad
6746942f30
14.1: Add grouper
2018-06-26 05:57:22 -04:00
Tad
3e931219df
Few changes
...
- Fix F-Droid building
- Update F-Droid preferences
- Add privacy policy links for DNS presets
2018-06-25 19:15:22 -04:00
Tad
ee4ea5072b
Many changes
...
- Fixed UnifiedNLP not registering
- Inlined location provider patch
- Simplified generateBootAnimationShine
- Add notes about inclusion of other apps
- Replaced microG with just UnifiedNLP
2018-06-25 14:19:38 -04:00
Tad
c914a655a5
Fixup previous commits
2018-06-25 10:16:32 -04:00
Tad
97248d28f2
Implement choice of UnifiedNLP only or full microG
2018-06-25 09:31:31 -04:00
Tad
f6cdc9426c
Many changes
...
- Remove proprietary audio enhancement blobs
- Remove AudioFX to prevent crashes after blobs are removed
- Deduplicate patches a bit with the new Patches/Common directory
- Switch boot animation shine generation from gradient to plasma
- Update submodules
2018-06-25 07:59:24 -04:00
Tad
3a3fe5aca9
Replace DNS patches with a function + some misc fixes
2018-06-24 01:27:33 -04:00
Tad
79429b40a4
Add init.sh option to remove AudioFX
2018-06-23 00:51:10 -04:00
Tad
9c3996bed9
Shellcheck
...
mainly just double quoting
2018-06-23 00:21:48 -04:00
Tad
79aa32c5e2
Cleanup
2018-06-13 19:48:53 -04:00
Tad
2ed7a8a874
init.sh: add options to control extra parts of the deblobber
2018-06-13 07:07:47 -04:00
Tad
7c052a7b38
Tweaks
2018-06-12 13:34:59 -04:00
Tad
7005ff0073
15.1: Update CVE patchers + build fixes
2018-06-11 20:33:16 -04:00
Tad
8eeafdd09f
Changes for trust_interface and other misc tweaks
2018-06-10 19:00:02 -04:00
Tad
3ea4b55e70
Tweaks and add a script for creating signing keys
2018-06-10 17:07:25 -04:00
Tad
4912609425
Tweaks
2018-06-08 14:15:50 -04:00
Tad
eeba3fd873
Going the distance...
2018-06-03 14:13:59 -04:00
Tad
3fb3824f6d
Misc tweaks
2018-06-03 08:29:15 -04:00
Tad
c6f7abd855
Add an option to disable overclocks
2018-06-03 07:48:34 -04:00
Tad
bf8f1e4d3d
More fixes and cleanup
2018-06-02 18:34:15 -04:00
Tad
2345e7ed7d
Fixes
2018-06-02 18:13:51 -04:00
Tad
e224489acd
Add option to enable strong encryption
2018-06-02 18:04:03 -04:00
Tad
8698ccc0c2
Add option to choose between DNS patches
2018-06-02 18:02:26 -04:00
Tad
747af2bc1c
Add option to disable inclusion of our HOSTS file
2018-06-02 17:56:21 -04:00
Tad
2fb4b7f5f1
Add option to disable inclusion of microG
2018-06-02 17:37:21 -04:00
Tad
f9f893a443
Hamper the ad/analytics libraries!
2018-05-21 05:28:07 -04:00
Tad
041793dd69
14.1: Drop ether
2018-05-21 04:06:20 -04:00
Tad
67db210756
Many changes
...
- 15.1: Fixup ether here too
- Change F-Droid application id to allow installation of official F-Droid side by side
- Remove FDroidPriv patch and use sed instead
- Optimize: Switch VM_MAX_READAHEAD to 512KB
- Misc tweaks
- Update TODO
2018-05-20 23:30:40 -04:00
Tad
66db536b08
Tweaks
2018-05-16 14:21:20 -04:00
Tad
966c9c8509
Change connectivity check URLs
2018-05-08 20:56:02 -04:00
Tad
e22d028cbd
Switch DNS back to OpenNIC for now
2018-05-08 16:04:41 -04:00
Tad
ee6788df1e
Switch from OpenNIC to Cloudflare DNS
2018-05-03 07:38:32 -04:00
Tad
776defd5c3
Tweaks
2018-04-29 00:53:53 -04:00
Tad
8220c2fd11
Prepare potential future inclusion of DNS66
2018-04-28 21:50:06 -04:00
Tad
b30c62629b
Revert "Strong AES patch changes"
...
This reverts commit 60b85e10fe
.
2018-04-28 15:35:53 -04:00
Tad
60b85e10fe
Strong AES patch changes
2018-04-28 15:25:42 -04:00
Tad
ff03ff8fe1
14.1: Verification of changes
2018-04-27 23:49:40 -04:00
Tad
4011255c53
14.1: Fixes
2018-04-25 22:28:42 -04:00
Tad
f122ccb9f1
Many changes
...
- Disable patches with restrictive licenses by default
- Update LICENSE
- Fixup the fix for F-Droid building
- 15.1: Fix forceencrypt on mako
- 15.1: Fix crashes when accessing factory reset and development settings menus
on devices without support for factory reset protection or oem unlocking
2018-04-23 15:42:27 -04:00
Tad
02908a652a
Terminate all lines
2018-04-23 08:59:18 -04:00
Tad
28600556b4
Many changes
...
- Add a variable to control inclusion of patches under a restrictive license
- Fix F-Droid building
- Add a buildDeviceDebug function that disables signing
- Misc tweaks/cleanup
- 15.1: Revert trust_interface cherry picks until official
2018-04-23 08:44:50 -04:00
Tad
b8937a6400
14.1: Fix herolte, both: replace Gallery2 with CameraRoll
2018-04-14 02:27:01 -04:00
Tad
2289ba2053
15.1: Switch more devices to -user
2018-04-12 23:11:30 -04:00
Tad
1fa75dcb65
15.1: More fixes
2018-04-12 09:26:03 -04:00
Tad
df7979a214
Many changes
...
- Manifests: Cleanup and remove more repos
- Remove Lineage recovery keys
- 15.1: Switch to 14.1 recovery
- 15.1: Enable recovery updating
- 15.1: d852: fix updater denial
- Misc cleanup
2018-04-12 06:40:10 -04:00
Tad
7be3f8a556
Many fixes
2018-04-10 00:08:21 -04:00
Tad
fcea2b8d1d
Lots of cleanup
...
- Some overclocks might be missing'
2018-04-06 14:10:43 -04:00
Tad
a661c4cde5
14.1: Drop mako
2018-04-06 13:58:48 -04:00
Tad
fa2987d3dc
15.1: More fixes and cleanup
2018-04-03 10:56:28 -04:00
Tad
e45dd6d45c
Remove LOSCoins malware
...
LineaGenuine is a shitty joke and LOSCoins is proprietary malware
LOSCoins:
- no source available
- source will probably never be available hinted by inc.lineageos package name
- depends on proprietary google play services
- inclues proprietary libraries
- malware
- malware
- malware
2018-04-01 07:07:17 -04:00
Tad
147ab4667e
SetupWizard: Switch to our (temp) logo
2018-03-28 16:14:03 -04:00
Tad
8a9cd5c57c
SetupWizard: Remove Lineage logo until we can replace it
2018-03-28 01:15:59 -04:00
Tad
e634a22758
14.1: Update default workspaces
2018-03-28 01:07:36 -04:00
Tad
800bd2f985
Move Fennec DOS shim to PrebuiltApps repo
2018-03-23 10:00:33 -04:00
Tad
414fa5caa2
Fix zips and buildtype
2018-03-22 09:49:44 -04:00
Tad
e533bc7607
Cleanup
2018-03-22 08:32:01 -04:00
Tad
babc89a079
Update buildtype and .zip prefix
2018-03-22 08:29:40 -04:00
Tad
3ceff683a8
Rebase FDroidPriv patch and cleanup privacy guard changes
2018-03-21 20:50:45 -04:00
Tad
989a494090
Cleanup
2018-03-19 21:28:15 -04:00
Tad
2a1b88cab3
Cleanup
2018-03-18 12:48:08 -04:00
Tad
2155d1ffd2
Add a note about Thor's /misc partition
2018-03-15 23:46:55 -04:00
Tad
f5e2d2dece
Many fixes
2018-03-14 14:31:08 -04:00
Tad
e4435f9eac
Tweaks and cleanup
2018-03-14 00:41:05 -04:00
Tad
4053ad6082
Initial support for including prebuilt apps from F-Droid
...
FDroid will come later, microG will probably stay as is.
2018-03-13 23:07:41 -04:00
Tad
ad9f1aa8ce
Tweaks
2018-03-12 23:13:50 -04:00
Tad
d111027f4d
Many changes
...
15.1: Update CVE patchers
15.1: Add back automated build signing
14.1: Disable herolte (broken)
14.1: March 2018 Security Bulletin
2018-03-08 22:06:18 -05:00
Tad
9c2272bc03
14.1: Update CVE patchers
2018-03-07 00:07:45 -05:00
Tad
eea5b71bd4
14.1: Drop 5 devices supported by 15.1
2018-03-01 09:51:05 -05:00
Tad
601c03df01
Misc fixes
2018-02-28 16:33:29 -05:00
Tad
994a069deb
Remove JustArchi's compiler flag optimizations
...
While some tasks complete slightly faster overall there are too many downsides
- Too large system images
- Weird compiler errors
- Performance regressions on some devices
- General maintenance overhead
Maybe a less aggressive variant can be brought back in the future
2018-02-25 19:56:29 -05:00
Tad
9cdfc59d5e
14.1: Update CVE patchers
2018-02-19 15:01:57 -05:00
Tad
910ee5ad76
15.1: Build fixes
2018-02-12 05:28:24 -05:00
Tad
3739cfbaa2
Super initial support for LineageOS 15.1
2018-02-11 23:50:18 -05:00
Tad
56e5ddba10
Breakout devices broken by -O3
2018-02-01 07:31:25 -05:00
Tad
d3a231e2be
Many build fixes
...
- Deblobber: sh -> bash (potential fix)
- Mark h815 as broken upstream
- Fix h850
- Fix herolte
- Fix Z00T
2018-01-31 13:14:19 -05:00
Tad
0f4e89c4cc
Split up buildAll, and mark broken/todo devices there
2018-01-31 07:49:12 -05:00
Tad
d4087bc1e4
Many changes
...
- Add /misc to thor/apollo
- Remove IR build fix from h815
- Don't dexpreopt i9100, /system is too small
- Add note about -O3 flags breaking devices
- Change SQLite journal mode from PERSIST to TRUNCATE
- Disable flo for now, needs fixes
2018-01-31 07:45:53 -05:00
Tad
f5e79a3d11
Minor tweaks and update CVE patchers
2018-01-30 02:18:38 -05:00
Tad
ed6b73793b
Many changes
...
- Recovery: Squash menus
- dexpreopt boot of all devices
- Update device todo list
2018-01-20 07:36:08 -05:00
Tad
4b5717b6b7
-O3 ALL THE THINGS! Use JustArchi's compiler flags
2018-01-19 05:41:08 -05:00
Tad
1e794178db
Misc. updates
2018-01-19 03:14:25 -05:00
Tad
47ae3584a7
Build fixes and update CVE patchers
2018-01-17 17:06:40 -05:00
Tad
e3d6171053
Update CVE patchers
2018-01-16 19:55:07 -05:00
Tad
226f78bd15
Break commonly used commands out into functions
2018-01-15 15:50:29 -05:00
Tad
a84bf140fe
Fix thor overclock and clark recovery
2018-01-12 09:26:54 -05:00
Tad
f57f77662b
Enable AES-256 encryption for most devices
2018-01-10 16:17:20 -05:00
Tad
97bb50e125
Update CVE patchers
2018-01-10 02:20:35 -05:00
Tad
9e24a92b89
Build fix
2018-01-03 15:48:18 -05:00
Tad
7446b2d304
Move enter to functions.sh, and move overclocks to overclock.sh
2018-01-02 20:19:09 -05:00
Tad
a350cd92f1
Patch for AES256 encryption
2018-01-01 14:49:15 -05:00
Tad
d6148bb4df
More fixes
2018-01-01 06:19:35 -05:00
Tad
8a4f0bef72
Many changes
...
- Disable removal of AudioFX blobs, as it breaks audio on some devices
- Enable LG G3 overclocks
- Switch mako from test to release
- Disable force-enabling of GLONASS
2017-12-31 09:09:46 -05:00
Tad
32dc9af992
Tweaks
2017-12-30 05:44:05 -05:00
Tad
0861d217ae
General updated, and LG G3 overclocking
2017-12-30 04:39:32 -05:00
Tad
ef211a5107
Fix flo, update CVE patchers
2017-12-24 10:59:48 -05:00
Tad
f35e6c2779
Add d852
2017-12-22 20:32:56 -05:00
Tad
cbe5dc9e9d
Add support for LG G2, G3, G4, G5 and update CVE patchers
2017-12-20 13:42:28 -05:00
Tad
d3cf423227
Add a shim to install Fennec DOS
2017-12-19 20:01:17 -05:00
Tad
d740b10822
DNS changes
2017-12-19 17:03:38 -05:00
Tad
ba66e7477c
Compile DejaVu
2017-12-19 16:55:30 -05:00
Tad
397ab78e21
Remove some broken patches
2017-12-19 00:18:10 -05:00
Tad
fcc8ffc5bd
Tweaks and Fixes
2017-12-15 16:42:36 -05:00
Tad
f65bbb8ee0
Many improvements to the hardenDefconfig function
2017-12-09 13:27:49 -05:00
Tad
261563acfc
Move functions out of patch.sh and add a kernel hardening function
2017-12-09 01:15:16 -05:00
Tad
11cc70ef35
Privacy guard improvements and update CVE patchers
2017-12-08 08:18:39 -05:00
Tad
3dd9a262df
Update CVE patchers with CopperheadOS kernel hardning patches
2017-12-05 18:22:31 -05:00
Tad
8b9bd2ce62
Enable permissionReviewRequired
2017-12-05 11:31:20 -05:00
Tad
dd460da4c3
Build fixes
2017-12-05 11:26:57 -05:00
Tad
face62a675
Fixes
2017-12-04 22:48:33 -05:00
Tad
9bed70363b
Update CVE patchers
2017-12-04 18:49:19 -05:00
Tad
c75ac86118
Comments
2017-11-18 08:25:48 -05:00
Tad
557d18a471
Firmware deblobber: Fix mounting /firmware
2017-11-11 09:40:23 -05:00
Tad
5dfb34d47d
Inline the firmware deblobber
2017-11-11 06:46:58 -05:00
Tad
fc857876dc
Disable Radio power tile for now
2017-11-11 04:32:04 -05:00
Tad
dec73c392c
Add a qs tile for controlling radio power
2017-11-10 17:28:44 -05:00
Tad
d1f4933957
Many fixes
2017-11-09 22:59:37 -05:00
Tad
2711871d50
PAPP: Add more apps
2017-11-09 20:56:11 -05:00
Tad
21fdd3cec7
Defaults fixes and 256 bit encryption
2017-11-09 17:16:55 -05:00
Tad
5bc79a7ad7
Restore nex/11.0 and cleanup
2017-11-06 15:34:40 -05:00
Tad
db7f521c28
Update FDroid repos
2017-11-05 23:19:53 -05:00
Tad
848056f0ff
Remove more blobs, update FDroid repos
2017-11-05 18:39:54 -05:00
Tad
112384f039
Fixes
2017-11-05 16:49:52 -05:00
Tad
d2b8412b97
Add a script for changing default settings
2017-11-05 16:40:21 -05:00
Tad
e0c764492d
Add CVE patchers and commands for new devices
2017-11-05 14:15:54 -05:00
Tad
a42e8a5243
Add initial support for 7 more devices
2017-11-05 13:56:37 -05:00
Tad
7ffb675a15
Licensing fixes, and misc fixes
2017-11-05 10:58:01 -05:00
Tad
1e761ace58
Tweak FDroid defaults
2017-11-04 20:00:07 -04:00
Tad
d636b7c598
Many fixes
2017-11-04 16:56:52 -04:00
Tad
b1b71f43c6
Replace wallpapers with out own better ones, Replace FDroid repo patch with just the file instead
2017-11-04 09:47:54 -04:00
Tad
7c31506e56
CVE Patches: ranged versions
2017-11-02 15:07:05 -04:00
Tad
77fc7b452c
Fix empty CVE patches
2017-10-31 13:24:35 -04:00
Tad
64d490d95e
Remove network hardening patches, disable mako LTE patch, add function to enable forceencrypt
2017-10-30 17:38:00 -04:00
Tad
53ae1c8103
Simplify script paths
2017-10-30 01:30:10 -04:00
Tad
3376142301
Fixes
2017-10-29 02:43:38 -04:00
Tad
f5425a4c97
More tweaks, add many scripts for patching kernel cves
2017-10-29 02:21:16 -04:00
Tad
75099b9404
Add patches for many Linux CVEs, and overhaul script paths
2017-10-29 01:48:53 -04:00