Tad
9db9215d6b
Small changes
...
- Disable generation of unused OTA to reduce compile time
- 17.1+: Disable APEX, breaks signing, and is also useless since no Play Store.
- 18.1: Fixup signing
2021-03-31 01:30:17 -04:00
Tad
529b47039c
18.1: Initial bringup
...
- Functionality tested on mako and klte
- In-place upgrade from 17.1 tested working on klte
- Compile tested on bacon and klte
- Recovery OTA key patch missing, unsure if still needed.
- Deblobber needs support for removing vintf manifest paths from vendor Android.bp
- Launcher needs more default_workspace grid variants (eg. 4x5)
2021-03-23 12:36:31 -04:00
Tad
62cba6a878
More cleanup
2021-03-20 16:15:01 -04:00
Tad
caeb3d5199
Add FP3 to 16.0 and 17.1
...
Untested
2021-03-19 21:53:28 -04:00
Tad
f8416a1083
Legal goodies
2021-03-01 21:05:42 -05:00
Tad
41a04ebd36
Update CVE patchers
2021-02-10 15:55:51 -05:00
Tad
bac552732f
Small tweaks
2021-01-30 21:34:50 -05:00
Tad
38da3e202e
Re-enable the SOUND_TRIGGER removal bits disabled in e9fd952b
...
It does not fix the phone call audio issues on mata like I hoped it would.
2021-01-18 09:11:37 -05:00
Tad
e9fd952ba2
Many small tweaks
...
- Remove leftover WireGuard repo missed in 31898834
- Enable the volteOverride, to ensure VoLTE enablement on supported devices on unknown carriers
- Extend volteOverride to support system.prop if vendor.prop doesn't exist (to cover eg. marlin/sailfish)
- Disable commenting of SOUND_TRIGGER flags.
sountrigger blobs are not removed due to boot breakage.
disable this and stop patching hardware/qcom/audio.
Intended to potentially fix phone call audio issues on mata
- Small CVE patcher updates
2021-01-16 21:16:02 -05:00
Tad
1be184bac9
Small tweaks
2020-12-16 07:48:41 -05:00
Tad
9c691d02ab
Update CVE patchers
2020-12-03 22:43:23 -05:00
Tad
9d7e5a24a3
License headers
2020-11-17 10:19:06 -05:00
Tad
523264aebb
Update CVE patchers
2020-11-12 23:46:38 -05:00
Tad
e7a65ff912
Small fixes
2020-11-09 22:55:36 -05:00
Tad
6a5866c01d
More failed attempts at fixing IMS
...
Keeping IMS, RCS, CNE, ATFWD, and allowing ims* to access /dev/diag:
IMS service still fails to register on mata
Is it the carrier?
Is it the phone?
Is it LineageOS?
Is is DivestOS?
Absolute mess.
2020-11-02 19:24:56 -05:00
Tad
e36f4529a3
Fixup 9f01dc03
...
Enables replacing of vendor fingerprints.
I thought this was broken, turns out it was the AUX camera change instead.
2020-11-02 11:04:49 -05:00
Tad
9f01dc038c
Small changes
...
- SUPL NTP fix
- Remove debug info from dexpreopt, saves a few MB
- 15.1+: enable full dexpreopt, for perf and memory benefits
- 17.1: change oneplus/msm8998-common kernel
- 17.1: add OpenCamera to AUX list
- Resurrect verity for devices missed previously
- Update some CVE patchers
- deblobber: remove some lingering atfwd blobs
2020-11-02 06:28:06 -05:00
Tad
1b4b86c38d
Tiny tweaks
2020-10-23 14:49:16 -04:00
Tad
6d15a2bb82
Update CVE patchers
2020-10-15 22:36:28 -04:00
Tad
688f4dd953
More CVE patcher fixes
2020-10-15 21:31:46 -04:00
Tad
10d042c3c0
Update CVE patchers
2020-10-14 15:20:06 -04:00
Tad
b56929d3d9
Many changes
...
- Missing credit in LICENSE
- Update TODO
- hardenLocationConf: don't change version
- hardenDefconfig: Fix reboot on shutdown
- changeDefaultDNS: replace a level3 dns straggler for tethering config
- Don't remove CompanionDeviceManager if microG is included
- Update cherry picks
- init.sh: update comment wording
2020-10-12 07:52:54 -04:00
Tad
115dd21832
Many changes
...
- 17.1: Add Pixel 4/XL
- Promote klte to 17.1
- hardenBootArgs: don't run on klte
- hardenBootArgs: regorganize
- hardenDefconfig: enabler: drop unnecessary options (iommu)
- hardenDefconfig: disabler: comment diag options for now
- deblobber: comment dirac lines to fix cheeseburger headphone jack
- fixup Etar replacement
2020-10-11 07:12:00 -04:00
Tad
55e010fba5
Small updates
2020-10-01 14:56:37 -04:00
Tad
bca6af1516
Small updates
...
- recovery: abort on serial number specific updates, credit: GrapheneOS
- Add lists of missing CVEs
- Update cherrypicks
2020-09-02 14:20:51 -04:00
Tad
2f83043c68
14.1+15.1: GPS week rollover fix
...
16.0: 279492
17.1: 278135
also switch to alternate Xtra servers
https://developer.gemalto.com/threads/gps-time-info-error
2020-08-09 12:30:47 -04:00
Tad
e78a0cc1bc
Small changes
2020-07-26 09:19:12 -04:00
Tad
0a979b67fa
Small changes
...
- 17.1: bringup bacon and ether
2020-07-24 10:20:07 -04:00
Tad
dc3cf3405f
Small updates
...
- Fix USB breakage
2020-07-22 08:50:51 -04:00
Tad
820a680d4d
Small updates + Many fixes
2020-07-13 17:37:33 -04:00
Tad
d9a61e1dea
Fix GPG signing
2020-06-27 01:45:02 -04:00
Tad
2ef92046af
Small changes
2020-06-22 20:41:49 -04:00
Tad
900183743d
Add GPG signing to processRelease
2020-06-17 13:20:26 -04:00
Tad
70508e2b70
More checksums
2020-06-14 10:05:34 -04:00
Tad
5b9e44794b
Fixup broken checksum generation
2020-06-14 09:36:39 -04:00
Tad
4c1577724f
Small changes
...
- hardenDefconfig: more options from Alexander Popov's checker
- 17.1: A2DP fix from GrapheneOS when hardened_malloc is in use
2020-05-23 18:06:22 -04:00
Tad
e962fdeb81
Update CVE patchers
2020-05-04 17:18:50 -04:00
Tad
e58ba3e9b2
Disable IMS stack
2020-05-02 22:29:23 -04:00
Tad
84300d6611
Small fixes
2020-04-19 13:19:55 -04:00
Tad
c3bb898eb0
2020
2020-04-14 21:39:51 -04:00
Tad
c26b3e95c7
Minor tweaks
...
- Cherry pick PPP/CVE-2020-8597 patches
- Add some more DNS providers
- Switch default DNS to Cloudflare's new malware blocking provider
- GCC 10 build fix
- Update CVE patchers (select)
2020-04-05 15:53:58 -04:00
Tad
d7ef9abf61
Minor tweaks
2020-03-25 22:08:25 -04:00
Tad
50f44d1934
Small changes
...
- cheeseburger/dumpling: fix ogg vorbis playback, credit @LuK1337
- cheeseburger/dumpling: fix delta ota generation
- remove a few more blobs
- potentially bluetooth when ant is removed on newer devices
- support newer clamav
- commented support for extracting boot.img when recovery.img isn't available
-- fastboot.zip should be preferred
- potentially fix boot on many untested newer devices (diag on msm8996+)
- update cherry picks
2020-02-24 18:53:27 -05:00
Tad
4292bcaa3e
recovery: fix sideload with larger files
...
+ 16.0: add a disabled patch to remove backuptool
+ processRelease: add support for copying recovery image to archive
2020-02-23 16:06:47 -05:00
Tad
fe54dd26a6
Fix many device issues
...
- Fix mata
- Fix cheeseburger
- Enable near-entire IMS stack (proprietary)
- Fix many other new devices
2020-02-22 13:29:01 -05:00
Tad
4e25046418
Many changes
...
- Add OnePlus 2, 3/T, 5/T
- Fix flounder
- Cherrypicks
2020-02-17 22:21:47 -05:00
Tad
332807d427
Update CVE patchers
2020-02-02 12:09:49 -05:00
Tad
7ef8a2726d
Minor tweaks
2019-11-28 12:03:40 -05:00
Tad
038ae37376
Minor tweaks
2019-11-24 16:22:58 -05:00
Tad
baabd45a16
Minor tweaks + ASB cherrypicks
2019-11-10 02:34:40 -05:00
Tad
1a7897211a
16.0: add Amber
2019-10-29 17:37:43 -04:00
Tad
791087fefa
minor tweaks
2019-10-27 16:20:27 -04:00
Tad
a8af0c3d0d
hardenDefconfig: more options from Alexander Popov's checker
2019-10-20 01:53:59 -04:00
Tad
204285d7c8
kernel command line: enable hardening options
2019-10-18 22:14:28 -04:00
Tad
e13c6c7c9c
processRelease features
...
- support removing device out after complete
- support malware scan before sign
- Update cherry picks
2019-10-15 12:23:46 -04:00
Tad
159e5ea194
Minor tweaks
...
- Update cherry picks
- Update copyright year
- bacon: fix delta generation
2019-10-11 13:24:38 -04:00
Tad
579f340c3c
Update CVE patchers
2019-10-04 14:43:19 -04:00
Tad
f20ddfc0f6
Minor tweaks
2019-10-04 10:39:27 -04:00
Tad
79ec8a4999
clark: experimental 16.0
2019-09-28 17:37:18 -04:00
Tad
a0e8f9653c
Future proofing keys
2019-09-25 21:04:24 -04:00
Tad
ca734124f9
Generate factory image if needed by device
2019-09-23 12:45:00 -04:00
Tad
4a1ebe1b71
Scripts: localize variables in functions
2019-09-17 04:14:35 -04:00
Tad
e01e457b24
Per-device signing keys
...
- also fix OTA/recovery key regression
- Update cherrypicks
2019-09-15 22:18:04 -04:00
Tad
19d5b66097
Many changes
...
- ASB chery picks
- 16.0: recovery: fix sideload
- Restore releasetools for some devices
- Only include Backup where supported
- Change some small defaults
- z00t: 14.1 -> 15.1
- himaul: 14.1 -> 15.1
- i9100: 14.1 -> 15.1+16.0
- flo: 15.1 -> 16.0, disabled
- flounder: 15.1 disabled, enable 14.1
2019-09-13 20:24:02 -04:00
Tad
db572efa89
Many changes
...
- processRelease: Support AVB
- sort device build order by SoC
Additions:
- taimen/muskie: 15.1, 16.0
- crosshatch/blueline: 16.0
- bonito/sargo: 16.0
2019-09-03 16:50:50 -04:00
Tad
1bd0e47099
victara: 15.1 -> 16.0
...
- other fixes
2019-08-30 22:42:10 -04:00
Tad
330df0983c
16.0: Add GrapheneOS' exec-based spawning feature + misc tweaks
...
- patch credit updates
- 16.0: allow SystemUI to directly manage Bluetooth/WiFi
- from GrapheneOS
- cleanup
2019-08-30 02:30:13 -04:00
Tad
e10a865b05
Improve release processing to support deltas and archiving
2019-08-29 19:09:31 -04:00
Tad
057bedb65b
Minor tweaks
...
- 14.1+15.1+16.0: enable kernel protections for files
- protected_*: hardlinks, symlinks, fifos, regular
- from GrapheneOS
- defconfig: enable more verity options
- cleanup
2019-08-28 20:24:59 -04:00
Tad
db348ab09c
Minor tweaks
...
- 15.1+16.0: Replace in-line build signing patch with bash function
- From GrapheneOS/script
- 15.1+16.0: Enable fingerprint failed lockout after 5 attempts
- From GrapheneOS
2019-08-28 00:40:27 -04:00
Tad
e9b5c06188
Lots of device updates
...
- d802: 15.1 -> 16.0
- d852: 15.1 -> 16.0
- d855: 15.1 -> 16.0
- fugu: 15.1 -> 16.0
- jfltexx: 14.1 -> 16.0
- m8: 15.1 -> 16.0
- mata: 15.1 -> 16.0
- update cherrypicks
- defconfig: enable MMC_SECDISCARD
2019-08-23 11:47:43 -04:00
Tad
89de66bdba
Many small changes
...
- Cherrypicks for ASB patches
- Apps: Switch gallery to Simple Gallery
- Apps: Switch camera to OpenCamera
- PKGBUILD: update with image optimization dependencies
- Deblobber: fix bug introducted in 6d33e4ecbf
2019-08-08 14:22:24 -04:00
Tad
3f8e9a846b
Complete tree image optimization
...
- recursively optimize images using optipng/jpegoptim
benefits:
+ reduces image size
+ decreases load time
+ reduces memory usage
2019-08-05 20:34:08 -04:00
Tad
55c3072089
Going the distance... [pt2]
2019-06-18 13:51:04 -04:00
Tad
380353773e
Fixes
2019-05-17 20:48:26 -04:00
Tad
30bf0f2fb9
Resurrect verity
2019-05-09 06:16:34 -04:00
Tad
60cf364f19
Minor tweaks
...
- init.sh: sort options
- overlay: leave radioScanningTimeout default
- hardenDefconfig: disable more components with CVEs
- cherry picks
- 16.0: trebuchet: tmp fix for default workspace overlay
2019-04-03 19:04:37 -04:00
Tad
1c49b80da0
Minor tweaks
...
- CVE patchers were updated with no change
- hardenDefconfig: disable MSM_SMP2P_TEST to mitigate CVE-2019-2247
- 14.1 add a cherry pick
2019-04-01 18:57:04 -04:00
Tad
7223df543a
Minor fixes
2019-03-31 22:46:37 -04:00
Tad
61ee2e5757
More minor fixes
2019-03-26 19:37:56 -04:00
Tad
3c806603d9
Various fixes
2019-03-25 21:30:26 -04:00
Tad
8f609e9cbe
Minor tweaks
...
+ remove a few more blobs
+ fix broken USB and log spam on hdx*
2019-03-24 16:32:55 -04:00
Tad
fc2e71acbe
Remove more blobs
2019-03-22 19:43:29 -04:00
Tad
e344b17a36
Build fixes + new blob blocker
2019-03-22 04:20:06 -04:00
Tad
913fbcd109
ASB cherry picks + minor tweaks
2019-03-05 22:57:45 -05:00
Tad
23056ddef0
Minor tweaks
2019-03-04 03:11:51 -05:00
Tad
c9e17ffb52
Many changes
...
- Add more DNS resolver choices
- Change default DNS resolver back to OpenNIC
- More cleanup
- 15.1: Update some CVE patchers
2019-02-09 20:51:23 -05:00
Tad
9178760d1a
Updater: Fix downloads over Tor
...
+ Update TODO
+ Minor tweaks
2019-02-08 20:58:15 -05:00
Tad
24c291c630
Improve hardenLocation to include fwb and its overlays
2019-02-08 18:46:42 -05:00
Tad
aa9b5499e6
Updates
2019-02-07 11:15:29 -05:00
Tad
3f9d78a4c7
Updates
2019-02-06 17:44:17 -05:00
Tad
a7a0a67888
Many changes
...
- Allow enabling accessibility services without disabling secure start-up
- Disable overclocks
- Update select CVE patchers
- Update submodules
- Support select downloads over Tor
- Update defconfig enablers
- Cherry pick security patches
2019-01-14 03:12:50 -05:00
Tad
0df749ef73
Add more preferred network modes such as LTE Only, LTE/3G only, and 3G only
2018-12-28 08:02:24 -05:00
Tad
c07027dd97
Many changes
...
- Update CVE patchers
- Update submodules
- Update defconfig enablers
- Update DNS IP addresses
- + Misc changes
2018-12-24 23:29:56 -05:00
Tad
6c4eadcdc7
Manifest cleanup + always remove latemount from /cache
...
formatting/erasing /cache will result in selinux contexts being lost
these are normally restored by system/core/rootdir/init.rc in post-fs
but latemount causes /cache to not be mounted beforehand
preventing it from ever being fixed
result is broken ota and recovery updates
2018-12-20 17:22:34 -05:00
Tad
5696da8d0c
Many changes
...
- 15.1: Update some CVE patchers
- 15.1: Address some mako denials
- 14.1: Add cherrypicks for various security patches
- Common: Prepare for F-Droid additional repos
- Common: Disable overclock for mako
- Misc tweaks
2018-10-19 09:55:08 -04:00
Tad
8347c07ec1
Deduplicate Overclock.sh and Optimize.sh
2018-09-21 03:55:54 -04:00
Tad
289b110d8f
Fix GPS on various devices
2018-09-19 01:03:02 -04:00
Tad
4929867e95
Build fixes
2018-09-14 19:34:01 -04:00
Tad
d9970b3f77
Minor tweaks and update F-Droid
2018-09-12 13:43:05 -04:00
Tad
e5b588265c
Add function to always ensure discard mount option is enabled
2018-09-11 19:53:50 -04:00
Tad
d231bd3172
Build fixes
2018-09-06 07:48:10 -04:00
Tad
8d79a008ff
hardenDefconfig: Ensure IOMMU is enabled
2018-09-05 04:53:42 -04:00
Tad
8e79da6971
GPG verify all F-Droid apps before copy
2018-08-30 23:46:17 -04:00
Tad
44a192b7a4
Various fixes
2018-08-26 20:32:19 -04:00
Tad
09fe9b212a
Refinements of previous commits
2018-08-24 23:56:38 -04:00
Tad
54ecd7ae21
hardenDefconfig improvements
2018-08-24 20:00:43 -04:00
Tad
48d7f11919
Deblobber improvements
...
Deblobber
- Remove more diag blobs
- Remove more AT blobs
- Remove IPA blobs by default now
- Support removal of IPC security exceptions
+ also disable earjack debugger via hardenDefconfig()
2018-08-24 18:35:53 -04:00
Tad
50bdbaedf2
More GPS fixes
2018-08-09 00:42:07 -04:00
Tad
db3b42ae4f
Update CVE patchers + misc fixes
2018-08-08 20:23:26 -04:00
Tad
bf717204e3
GPS improvements
2018-08-07 23:28:38 -04:00
Tad
9af1881a89
Many changes
...
- 15.1: Fix build
- 15.1: Add jfltexx
- 15.1: Add CVE patchers for jf and fugu
- Manifests: Add Intel repos back
- Overlay: Add more default apps to launcher
- Remove more blobs
2018-07-19 22:15:20 -04:00
Tad
966f4a5baf
11.0: More work
2018-07-10 08:29:08 -04:00
Tad
ae0d89ee8a
Many changes
...
- Switch to new HOSTS list
- Minor tweaks
- 14.1: Fix default Trebuchet workspaces
2018-07-04 15:35:16 -04:00
Tad
d2ba1ddb20
Overhaul variable names
2018-06-29 13:46:12 -04:00
Tad
6746942f30
14.1: Add grouper
2018-06-26 05:57:22 -04:00
Tad
3e931219df
Few changes
...
- Fix F-Droid building
- Update F-Droid preferences
- Add privacy policy links for DNS presets
2018-06-25 19:15:22 -04:00
Tad
ee4ea5072b
Many changes
...
- Fixed UnifiedNLP not registering
- Inlined location provider patch
- Simplified generateBootAnimationShine
- Add notes about inclusion of other apps
- Replaced microG with just UnifiedNLP
2018-06-25 14:19:38 -04:00
Tad
c914a655a5
Fixup previous commits
2018-06-25 10:16:32 -04:00
Tad
accb8bba37
Implement choice between gradient and plasma for boot animation shine
2018-06-25 09:35:38 -04:00
Tad
f6cdc9426c
Many changes
...
- Remove proprietary audio enhancement blobs
- Remove AudioFX to prevent crashes after blobs are removed
- Deduplicate patches a bit with the new Patches/Common directory
- Switch boot animation shine generation from gradient to plasma
- Update submodules
2018-06-25 07:59:24 -04:00
Tad
0eeea28907
Boot animation color improvements
2018-06-24 10:18:19 -04:00
Tad
bfa7e90d5e
Boot animation shine!
2018-06-24 08:42:02 -04:00
Tad
30a8e0ba07
Minor tweaks
2018-06-24 05:26:03 -04:00
Tad
c44d11fb99
Boot animation customization!
2018-06-24 04:31:38 -04:00
Tad
3a3fe5aca9
Replace DNS patches with a function + some misc fixes
2018-06-24 01:27:33 -04:00
Tad
5772b68224
Update CVE patches + more globbing fixes
2018-06-23 03:39:01 -04:00
Tad
24b76f617b
Globbing fixes
2018-06-23 01:08:42 -04:00
Tad
9c3996bed9
Shellcheck
...
mainly just double quoting
2018-06-23 00:21:48 -04:00
Tad
79aa32c5e2
Cleanup
2018-06-13 19:48:53 -04:00
Tad
2ed7a8a874
init.sh: add options to control extra parts of the deblobber
2018-06-13 07:07:47 -04:00
Tad
97fc2a236f
Fixes and AES improvements ?
2018-06-12 15:25:06 -04:00
Tad
7005ff0073
15.1: Update CVE patchers + build fixes
2018-06-11 20:33:16 -04:00
Tad
4912609425
Tweaks
2018-06-08 14:15:50 -04:00
Tad
dc9ec2d8f3
Tweaks
2018-06-06 17:32:17 -04:00
Tad
eeba3fd873
Going the distance...
2018-06-03 14:13:59 -04:00
Tad
3fb3824f6d
Misc tweaks
2018-06-03 08:29:15 -04:00
Tad
82896187de
Further improve malware scanner
2018-05-11 06:15:29 -04:00
Tad
82758a5303
Improve the malware scanner and enable by default
2018-05-11 02:50:52 -04:00
Tad
5695712cf4
Many changes
...
- Add support to scan for malware in certain directories
- 15.1: Add new device, griffin
- Note deprecation status of various devices
- Add a few blobs to the deblobber
2018-05-10 23:46:18 -04:00
Tad
b30c62629b
Revert "Strong AES patch changes"
...
This reverts commit 60b85e10fe
.
2018-04-28 15:35:53 -04:00
Tad
60b85e10fe
Strong AES patch changes
2018-04-28 15:25:42 -04:00
Tad
520dbf246a
Add a warning when restricted patches are enabled
2018-04-23 18:18:09 -04:00
Tad
f122ccb9f1
Many changes
...
- Disable patches with restrictive licenses by default
- Update LICENSE
- Fixup the fix for F-Droid building
- 15.1: Fix forceencrypt on mako
- 15.1: Fix crashes when accessing factory reset and development settings menus
on devices without support for factory reset protection or oem unlocking
2018-04-23 15:42:27 -04:00
Tad
f0ab546816
Dramatically deduplicate scripts
2018-04-04 07:52:11 -04:00