Closed Flamefire closed 1 year ago
Thanks, I'll try to do a quick test build now
looks like something is missing:
../../../../../../kernel/sony/msm8998/drivers/android/binder.c:3139:32: error: no member named 'cred' in 'struct binder_proc'
security_cred_getsecid(proc->cred, &secid);
Yes, seems you need 1 commit (or better all 4) from https://github.com/Flamefire/android_kernel_sony_msm8998/pull/15
I rebased this and https://github.com/Flamefire/android_kernel_sony_msm8998/pull/15 onto your 19.1 branch so this should work now. I'll also open a PR with the same 9 commits onto lineage-20
As described in #66 this is the minimal approach to fix CVE-2021-3968 (with 2 simple commits first for extra safety)
Upstream those are:
The IMO better approach would be to backport as many of the LSM changes as possible. I've done that for 17.1/18.1 with https://github.com/Flamefire/android_kernel_sony_msm8998/pull/24 I can rebase that on your 19.1 branch too if you want that (see again #66)
IMPORTANT: This an untested port from the 17.1/18.1 build where this works (device boots and camera shows pictures) but I couldn't test it for 19.1 myself, so please do that first. Note that you can fetch from a pr with
git fetch github pull/<pr-num>/head
and access that viagit checkout FETCH_HEAD
(ormerge
, or ...)