Tavi
67e962e0f6
20.0: Updater: Add server choices
...
Also fixes .onion support
TODO: Test and backport to previous branches
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-18 13:00:15 -04:00
Tavi
79df8d06d0
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-14 15:34:02 -04:00
Tavi
c31e67b2f8
May ASB work
...
untested
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-10 19:56:31 -04:00
Tavi
e195e38150
16.0: switch to latest hardened_malloc revision
...
kipper compiles
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-10 19:26:53 -04:00
Tavi
1fdedf21a5
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-08 14:09:13 -04:00
Tavi
f6ad120484
Fixup 082bc48c
...
these were not accounted for via manifest
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-08 11:13:09 -04:00
Tavi
0f6b9e9baa
Fixup
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-08 08:49:13 -04:00
Tavi
082bc48c32
16.0: Import and verify picks
...
https://review.lineageos.org/q/topic:P_asb_2022-05
https://review.lineageos.org/q/topic:P_asb_2022-06
https://review.lineageos.org/q/topic:P_asb_2022-07
https://review.lineageos.org/q/topic:P_asb_2022-08
https://review.lineageos.org/q/topic:P_asb_2022-09
https://review.lineageos.org/q/topic:P_asb_2022-10
https://review.lineageos.org/q/topic:P_asb_2022-11
https://review.lineageos.org/q/topic:P_asb_2022-12
https://review.lineageos.org/q/topic:P_asb_2023-01
https://review.lineageos.org/q/topic:P_asb_2023-02
https://review.lineageos.org/q/topic:P_asb_2023-03
https://review.lineageos.org/q/topic:P_asb_2023-04
https://review.lineageos.org/q/topic:P_asb_2023-05
https://review.lineageos.org/q/topic:P_asb_2023-06
https://review.lineageos.org/q/topic:P_asb_2023-07
accounted for via manifest change:
https://review.lineageos.org/c/LineageOS/android_external_freetype/+/361250
https://review.lineageos.org/q/topic:P_asb_2023-08
accounted for via manifest change:
https://review.lineageos.org/c/LineageOS/android_external_freetype/+/364606
accounted for via patches:
https://review.lineageos.org/c/LineageOS/android_system_ca-certificates/+/365328
https://review.lineageos.org/q/topic:P_asb_2023-09
https://review.lineageos.org/q/topic:P_asb_2023-10
https://review.lineageos.org/q/topic:P_asb_2023-11
accounted for via patches:
https://review.lineageos.org/c/LineageOS/android_system_ca-certificates/+/374916
https://review.lineageos.org/q/topic:P_asb_2023-12
https://review.lineageos.org/q/topic:P_asb_2024-01
https://review.lineageos.org/q/topic:P_asb_2024-02
https://review.lineageos.org/q/topic:P_asb_2024-03
https://review.lineageos.org/q/topic:P_asb_2024-04
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-07 19:43:19 -04:00
Tavi
321de1adbc
17.1: switch to latest hardened_malloc revision
...
+ dedupe the other hmalloc patches
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-06 19:29:31 -04:00
Tavi
8ce5a0e671
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-05 12:01:44 -04:00
Tavi
5b05eb4100
Update CVE patchers
...
maybe breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-05-03 08:50:55 -04:00
Tavi
44358b5ba2
Update CVE patchers
...
maybe some breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-22 09:22:16 -04:00
Tavi
5be2789897
2024
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-22 07:52:49 -04:00
Tavi
a16b5a89c7
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-16 08:41:35 -04:00
Tavi
aa52315312
Picks
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-14 13:54:25 -04:00
Tavi
25da5b3f74
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-10 11:21:10 -04:00
Tavi
741e5a7ca3
Fixup
...
also 16.0 probably needs a backport of IsRecoveryMode
compile tested on 20.0
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-09 16:40:05 -04:00
Tavi
4f8cfc8a41
you want it, you got it!
...
now compile it yourself.
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-09 16:25:54 -04:00
Tavi
9d6325e2a0
15.1: April ASB work
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-08 13:36:38 -04:00
Tavi
20a47d5b25
16.0: April ASB work
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-08 12:24:08 -04:00
Tavi
5cad35c028
Fixup
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-06 19:59:27 -04:00
Tavi
450ad03159
Update CVE patchers
...
maybe some breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-04-04 13:55:38 -04:00
Tavi
2a78a4cfc0
Update CVE patchers
...
for realz
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-27 22:09:10 -04:00
Tavi
dc9ed7c46c
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-21 14:54:23 -04:00
Tavi
dee7abe09d
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-14 14:58:24 -04:00
Tavi
3b2fde1dd6
16: ASB picks
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-13 21:19:02 -04:00
Tavi
0b8f1a2c57
Churn
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-09 12:02:14 -05:00
Tavi
f5a44efdff
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-07 12:13:52 -05:00
Tavi
5aefd27519
Update CVE patchers
...
Fixes https://github.com/Divested-Mobile/DivestOS-Build/issues/294
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-05 12:42:34 -05:00
Tavi
cd38073ad2
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-04 15:39:53 -05:00
Tavi
fdbd1a090f
Update CVE patchers
...
I made a pass through removing some obvious wrongly applied patches
but there is likely some more breakage here
Signed-off-by: Tavi <tavi@divested.dev>
2024-03-02 12:31:51 -05:00
Tavi
45e87b4a1c
Update CVE patchers
...
Potential breakage
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-27 03:15:54 -05:00
Tavi
20c8abcbc1
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-19 22:35:04 -05:00
Tavi
d90b84321d
16.0: February ASB work
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-09 00:32:24 -05:00
Tavi
fa044409c0
Reconcile picks
...
17.1 gains one patch
Signed-off-by: Tavi <tavi@divested.dev>
2024-02-08 19:58:06 -05:00
Tavi
00f1589cb8
Update CVE patchers
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-01-22 13:27:55 -05:00
Tavi
4fae529ddc
15.1: January ASB work
...
+ a bonus patch for 16.0 and 17.1 as pointed out by @syphyr
Signed-off-by: Tavi <tavi@divested.dev>
2024-01-09 15:03:36 -05:00
Tavi
0af4e77a38
16.0: January ASB work
...
Signed-off-by: Tavi <tavi@divested.dev>
2024-01-09 11:46:13 -05:00
Thaddeus
9d230974a2
Update CVE patchers
...
Signed-off-by: Thaddeus <tad@spotco.us>
2024-01-04 15:51:27 -05:00
Thaddeus
ab49a7e2a5
Reconcile picks
...
Signed-off-by: Thaddeus <tad@spotco.us>
2024-01-04 14:38:17 -05:00
Tad
85e3c271ab
Churn
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-26 16:28:26 -05:00
Tad
12d0711d60
Reconcile picks
...
Adds one patch for 14.1, thanks to @syphyr
Adds two patches for 16.0, thanks to @MSe1969
Adds many patches for 17.1, thanks to @flamefire
TODO check if 377768 applies to 15.1
Signed-off-by: Tad <tad@spotco.us>
2023-12-26 09:48:21 -05:00
Tad
7c46f43fc4
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-20 12:28:48 -05:00
Tad
0310c702c7
15/16: two missing system/bt fixes
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-12 13:58:25 -05:00
Tad
9926f25ada
15.1 December ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-12 01:21:38 -05:00
Tad
4986da8250
16.0 December ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-12-11 23:21:23 -05:00
Tad
ba1e29a1b1
Reconcile picks
...
This gains one us patch: 376607
Signed-off-by: Tad <tad@spotco.us>
2023-12-11 18:59:08 -05:00
Tad
5c99bc4098
Picks
...
- 14.1: more ffmpeg patches from @syphyr
- 16.0: switch to @MSe1969's patchsets, gains 3 libcups related fixes
Signed-off-by: Tad <tad@spotco.us>
2023-12-03 19:08:52 -05:00
Tad
af0cea3572
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-16 22:59:28 -05:00
Tad
ad298935a2
16.0 November ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-13 20:10:40 -05:00
Tad
acd2484816
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-07 17:37:16 -05:00
Tad
01a196e055
Pull in Messaging notifications fix
...
Likely solves https://github.com/Divested-Mobile/DivestOS-Build/issues/141
Signed-off-by: Tad <tad@spotco.us>
2023-11-05 19:32:30 -05:00
Tad
548aec9c9d
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-11-05 18:58:11 -05:00
Tad
90979e494c
Updater: point the changelog button to our news page
...
Closes https://github.com/Divested-Mobile/DivestOS-Build/issues/257
Signed-off-by: Tad <tad@spotco.us>
2023-10-20 18:44:05 -04:00
Tad
f64285f6fd
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-15 21:06:16 -04:00
Tad
5d53945c3c
16.0 October ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-09 21:41:54 -04:00
Tad
bf565cd578
Switch to upstream ASB patchsets
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-08 22:52:14 -04:00
Tad
7d2c184d1f
Bonus patches
...
Signed-off-by: Tad <tad@spotco.us>
2023-10-03 15:17:06 -04:00
Tad
d80f272b54
Update CVE patchers
...
CVE-2023-4128 replaces CVE-2023-4208
Signed-off-by: Tad <tad@spotco.us>
2023-10-02 21:41:34 -04:00
Tad
fcf4f812cc
CVE-2023-5217
...
untested
Signed-off-by: Tad <tad@spotco.us>
2023-09-28 09:17:29 -04:00
Tad
19f4964036
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-21 16:52:35 -04:00
Tad
25f02f4177
14.1 though 17.1: patch CVE-2023-4863, thanks to @syphyr
...
run tested on 14.1, 15.1, and 17.1
compile tested on 16.0
Signed-off-by: Tad <tad@spotco.us>
2023-09-20 04:16:17 -04:00
Tad
337ae6012d
Fixup
...
TODO: regen
Signed-off-by: Tad <tad@spotco.us>
2023-09-17 20:26:44 -04:00
Tad
1b4f6d3bd8
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-17 01:30:23 -04:00
Tad
5eb6190931
Fixup 15.1/16.0 backport: system/bt: Fix UAF in gatt_cl.cc
...
thanks to @syphyr for this!
Signed-off-by: Tad <tad@spotco.us>
2023-09-12 16:55:46 -04:00
Tad
51b28e6cdf
Fixup
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-11 17:24:48 -04:00
Tad
033c600eac
16.0 September ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-11 16:14:15 -04:00
Tad
84a84c4742
Picks + Churn
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-10 21:12:24 -04:00
Tad
0ec3c25d86
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-09-05 20:42:14 -04:00
Tad
fc9032513f
Update CVE patchers
...
Likely issue CVE-2023-3773/^6.4
Signed-off-by: Tad <tad@spotco.us>
2023-08-27 17:13:53 -04:00
Tad
52a0c55c41
Fixups
...
- Revert Freetype branch switching for 15.1+, broken
- Don't include OpenEUICC on Pixel 2 and 3 series, they won't work
- Churn
Signed-off-by: Tad <tad@spotco.us>
2023-08-24 03:06:02 -04:00
Tad
7ad46d58f1
Switch to @syphyr's security backport branches
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-18 11:34:39 -04:00
Tad
2142e2e763
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-17 17:18:10 -04:00
Tad
160aee5049
Backport patch to handle verity with openssl 3.0
...
ref: https://github.com/Divested-Mobile/DivestOS-Website/pull/19
Signed-off-by: Tad <tad@spotco.us>
2023-08-11 18:53:01 -04:00
Tad
974878988b
Fixup
...
Will regen later
Signed-off-by: Tad <tad@spotco.us>
2023-08-09 00:46:44 -04:00
Tad
4b2160cf56
16.0 August ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-08 07:48:57 -04:00
Tad
eef09ae519
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-08-07 18:07:19 -04:00
Tad
180280b233
Update CVE patchers
...
TODO: adjust min version of CVE-2023-4132
Signed-off-by: Tad <tad@spotco.us>
2023-08-04 21:00:29 -04:00
Tad
c777c74717
16.0 Backports
...
- hosts toggle
- auto reboot
- bluetooth timeout
- unprivileged microG
- ptrace toggle
- exec spawning toggle
TODO: needs work
Signed-off-by: Tad <tad@spotco.us>
2023-07-27 16:35:00 -04:00
Tad
73414e76d2
Update CVE patchers
...
two lpes
Signed-off-by: Tad <tad@spotco.us>
2023-07-25 12:04:05 -04:00
Tad
e74f861c8e
Fixes + Churn
...
- Fix instances of awk failing on missing globs
- Remove unwanted packages from work/user/managed profiles
- Remove proprietary camera extensions
Signed-off-by: Tad <tad@spotco.us>
2023-07-24 03:59:51 -04:00
Tad
e408e7e19a
Drop devices with newer versions available
...
14.1: clark
15.1: deb, flo, hammerhead, shamu, ether
16.0: hammerhead
19.1: alioth
Signed-off-by: Tad <tad@spotco.us>
2023-07-22 19:17:42 -04:00
Tad
0f9a2c7aea
Less aggressive low_ram enablement
...
14.1 <2GB
15.1 <2GB
16.0 <2GB
17.1 <3GB
18.1 <3GB
19.1 <4GB
20.0 <4GB
Signed-off-by: Tad <tad@spotco.us>
2023-07-17 18:44:56 -04:00
Tad
1c9076fffe
KSM tuning
...
- Only enable on Linux 3.0 through 4.9
- Always enable defer option
- Only run twice a second, instead of fifty times a second
Signed-off-by: Tad <tad@spotco.us>
2023-07-14 20:27:10 -04:00
Tad
192c73146a
Add a toggle for KSM
...
Signed-off-by: Tad <tad@spotco.us>
2023-07-14 17:11:21 -04:00
Tad
15de8ed2e8
Expand the low_ram coverage
...
As follows
14.1 <3GB
15.1 <3GB
16.0 <3GB
17.1 <3GB
18.1 <4GB
19.1 <6GB
20.0 <6GB
Signed-off-by: Tad <tad@spotco.us>
2023-07-13 18:31:03 -04:00
Tad
ad8e5b631a
16.0+17.1: Extra July ASB backport from @MSe1969
...
Signed-off-by: Tad <tad@spotco.us>
2023-07-09 14:49:51 -04:00
Tad
293f97d678
16.0 July ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-07-07 17:24:47 -04:00
Tad
a1a3cbb94e
Fix overlay conflicts
...
Should mostly fix https://github.com/Divested-Mobile/DivestOS-Build/issues/219
Signed-off-by: Tad <tad@spotco.us>
2023-07-06 14:51:40 -04:00
Tad
f2c8005853
16.0: switch to upstream P_asb_2023-06
...
Has two extra patches for Traceur, but misses a patch for CarSettings
Signed-off-by: Tad <tad@spotco.us>
2023-07-03 15:22:32 -04:00
Tad
2e2ac4557d
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-06-26 19:41:11 -04:00
Tad
cda898f141
Certificate Authority store updates
...
- Remove some untrustworthy CAs
- Update CA store for all branches to aosp/e302aa968334b3c3fc9cd709a7c7661e0cf534eb
Signed-off-by: Tad <tad@spotco.us>
2023-06-17 15:13:54 -04:00
Tad
41e2669884
17.1: switch to flamefire's ASB topics
...
This gets us ~9 extra patches
Signed-off-by: Tad <tad@spotco.us>
2023-06-17 15:13:46 -04:00
Tad
a07133a064
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-06-16 11:03:46 -04:00
Tad
8c7f3daa00
15.1+16.0 June ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-06-10 05:16:45 -04:00
Tad
ab52996e4f
16.0: switch to upstream topic for May ASB patches
...
They're identical
I'll likely eventually pull them back in anyway
Signed-off-by: Tad <tad@spotco.us>
2023-06-10 01:57:59 -04:00
Tad
2ee99fe3ef
Update CVE patchers
...
CVE-2020-36694 appears to be a duplicate of CVE-2021-29650
Signed-off-by: Tad <tad@spotco.us>
2023-06-01 21:12:08 -04:00
Tad
cd0a29d69b
Update CVE patchers
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-12 23:28:44 -04:00
Tad
6fb0a581c3
15.1 and 16.0 May ASB work
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-07 21:28:27 -04:00
Tad
6d2a255eef
Remove User-Agent (and serial) from source built libloc
...
Signed-off-by: Tad <tad@spotco.us>
2023-05-05 22:27:27 -04:00