security/hakurei.app
security/hakurei.app
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 4 Wiki Activity

major USB security improvements

Browse Source
This commit is contained in:
Daniel Micay 2024-06-19 09:16:07 -04:00
parent 7214e57ecc
commit c8950ceb04
2 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
static/releases.html
View File

@ -775,6 +775,11 @@
<p>Changes since the 2024061400 release:</p> <p>Changes since the 2024061400 release:</p>
<ul> <ul>
<li>hide USB peripheral security setting when USB-C port setting is available</li>
<li>extend USB-C port setting to pogo pins (for Pixel Tablet)</li>
<li>kernel (5.10, 5.15, 6.1, 6.6): replace our deny_new_usb feature with a new deny_new_usb2 feature also disabling USB gadgets</li>
<li>extend USB-C port setting to enable deny_new_usb2 as a second layer of defense beyond low-level hardware disabling of new USB connections and then USB data</li>
<li>require user authentication for changing auto-reboot, USB peripheral and USB-C port security settings</li>
<li>temporarily add back memory tagging exception for Pixel wifi_ext service</li> <li>temporarily add back memory tagging exception for Pixel wifi_ext service</li>
<li>add GrapheneOS Linux kernel port to the 6.6 GKI LTS branch</li> <li>add GrapheneOS Linux kernel port to the 6.6 GKI LTS branch</li>
<li>kernel (5.10): update to latest GKI LTS branch revision including update to 5.10.215</li> <li>kernel (5.10): update to latest GKI LTS branch revision including update to 5.10.215</li>

1
static/source.html
View File

@ -204,6 +204,7 @@
<li><a href="https://github.com/GrapheneOS/kernel_common-6.6">kernel_common-6.6</a>: Generic Linux 6.6 kernel sources.</li> <li><a href="https://github.com/GrapheneOS/kernel_common-6.6">kernel_common-6.6</a>: Generic Linux 6.6 kernel sources.</li>
<li><a href="https://github.com/GrapheneOS/kernel_manifest-gs">kernel_manifest-gs</a>: Kernel manifest for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold.</li> <li><a href="https://github.com/GrapheneOS/kernel_manifest-gs">kernel_manifest-gs</a>: Kernel manifest for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold.</li>
<li><a href="https://github.com/GrapheneOS/kernel_devices_google_tangorpro">kernel_devices_google_tangorpro</a>: Kernel setup for Pixel Tablet.</li>
<li><a href="https://github.com/GrapheneOS/kernel_build-gs">kernel_build-gs</a>: Kernel build system for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold.</li> <li><a href="https://github.com/GrapheneOS/kernel_build-gs">kernel_build-gs</a>: Kernel build system for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold.</li>
<li><a href="https://github.com/GrapheneOS/kernel_gs">kernel_gs</a>: Kernel sources for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold. These sources are only used to build device-specific modules. The Generic Kernel Image is built from the common kernel.</li> <li><a href="https://github.com/GrapheneOS/kernel_gs">kernel_gs</a>: Kernel sources for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold. These sources are only used to build device-specific modules. The Generic Kernel Image is built from the common kernel.</li>
<li><a href="https://github.com/GrapheneOS/kernel_google-modules_power_reset-gs">kernel_google-modules_power_reset-gs</a>: Kernel reset driver for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold.</li> <li><a href="https://github.com/GrapheneOS/kernel_google-modules_power_reset-gs">kernel_google-modules_power_reset-gs</a>: Kernel reset driver for the Pixel 6, Pixel 6 Pro, Pixel 6a, Pixel 7, Pixel 7 Pro, Pixel 7a, Pixel Tablet and Pixel Fold.</li>