mirror of
https://github.com/optim-enterprises-bv/secureblue.git
synced 2025-11-02 19:38:10 +00:00
31 KiB
31 KiB
A list of Vanadium patches and their secureblue counterpart (if any).
| Vanadium patch | Patch description | Relevance | Counterpart |
|---|---|---|---|
| 0001-disable-checkout_nacl | Disables checking out nacl | Yes | nacl is completely disabled in upstream Fedora |
| 0002-use-64-bit-WebView-processes | Forbid use of 32-bit ABI in WebView | No, Android only | N/A |
| 0003-switch-to-fstack-protector-strong | Use -fstack-protector-strong cflag | Yes | Set in upstream Fedora already |
| 0004-enable-fwrapv-in-Clang-for-non-UBSan-builds | Set -fwrapv to make signed integer overflow defined behavior to improve memory safety | Yes | MISSING, https://bugzilla.redhat.com/show_bug.cgi?id=2265039 |
| 0005-enable-ftrivial-auto-var-init-zero | Set -ftrivial-auto-var-init=zero to force clang to initialize automatic variables with zeroes | Yes | MISSING, https://bugzilla.redhat.com/show_bug.cgi?id=2265043 |
| 0006-disable-broken-warning-for-auto-var-init | Minor fix related to the prior patch | Yes | MISSING |
| 0007-Vanadium-branding.patch | Apply branding changes specific to Vanadium | No, branding related | N/A |
| 0008-Vanadium-branding-for-WebView.patch | Apply branding changes specific to Vanadium for the WebView | No, branding related | N/A |
| 0009-Vanadium-string-rebranding.patch | Adjust strings to reflect Vanadium branding | No, branding related | N/A |
| 0010-Support-for-extended-version-name-and-increments.patch | Add support for extended version names and increments | No, not desired | N/A |
| 0011-disable-first-run-welcome-page.patch | Disable first-run welcome page | No, branding related | N/A |
| 0012-disable-seed-based-field-trials.patch | Disable seed-based field trials (variations) | Yes | Disabled in secureblue policies for everything except critical fixes |
| 0013-disable-fetching-variations.patch | Disable fetching variations | Yes | Disabled in secureblue policies for everything except critical fixes |
| 0014-disable-WebView-variations-support.patch | Disable WebView variations support | No, Android only | N/A |
| 0015-disable-navigation-error-correction-by-default.patch | Disable navigation error correction by default | Yes | Disabled in secureblue policies |
| 0016-disable-contextual-search-by-default.patch | Disable contextual search by default | No, Android only | N/A |
| 0017-disable-network-prediction-by-default.patch | Disable network prediction by default | Yes | Disabled in secureblue policies |
| 0018-disable-metrics-by-default.patch | Disable metrics by default | Yes | Disabled in secureblue policies |
| 0019-disable-hyperlink-auditing-by-default.patch | Disable hyperlink auditing by default | Yes | MISSING |
| 0020-disable-showing-popular-sites-by-default.patch | Disable showing popular sites by default | Yes | MISSING |
| 0021-disable-article-suggestions-feature-by-default.patch | Disable article suggestions feature by default | Yes | MISSING |
| 0022-disable-content-feed-suggestions-by-default.patch | Disable content feed suggestions by default | Yes | MISSING |
| 0023-disable-sensors-access-by-default.patch | Disable sensors access by default | Yes | Disabled in secureblue policies |
| 0024-block-playing-protected-media-by-default.patch | Block playing protected media by default | Yes | MISSING |
| 0025-disable-third-party-cookies-by-default.patch | Disable third-party cookies by default | Yes | Disabled in secureblue policies |
| 0026-disable-background-sync-by-default.patch | Disable background sync by default | No, not desired | N/A |
| 0027-disable-payment-support-by-default.patch | Disable payment support by default | Yes | Disabled in secureblue policies |
| 0028-disable-media-router-media-remoting-by-default.patch | Disable media router media remoting by default | Yes | Disabled in secureblue policies |
| 0029-disable-media-router-by-default.patch | Disable media router by default | Yes | Disabled in secureblue policies |
| 0030-disable-offering-translations-by-default.patch | Disable offering translations by default | Yes | Disabled in secureblue policies |
| 0031-disable-browser-sign-in-feature-by-default.patch | Disable browser sign-in feature by default | Yes | Disabled in secureblue policies |
| 0032-disable-browser-autologin-by-default.patch | Disable browser autologin feature by default | Yes | Disabled in secureblue policies |
| 0033-disable-safe-browsing-reporting-opt-in-by-default | Disable safe browsing reporting opt-in by default | Yes | Disabled in secureblue policies |
| 0034-disable-unused-safe-browsing-option-by-default | Disable safe browsing due to lack of Play Services | No, Android only | N/A |
| 0035-disable-media-DRM-preprovisioning-by-default.patch | Disables media DRM preprovisioning | Yes | MISSING |
| 0036-disable-autofill-server-communication-by-default.patch | Disables autofill server communication | Yes | MISSING |
| 0037-disable-component-updater-pings-by-default.patch | Disables component updater pings | Yes | MISSING |
| 0038-disable-search-provider-logo.patch | Disables search provider logo | No, branding related | N/A |
| 0039-disable-trivial-subdomain-hiding.patch | Disables trivial subdomain hiding | Yes | MISSING |
| 0040-disable-learn-more-link-in-incognito-new-tab.patch | Disables learn more link in incognito new tab | No, branding related | N/A |
| 0041-disable-Omaha-update-check-support.patch | Disables Omaha update check support | No, not desired | N/A |
| 0042-disable-GaiaAuthFetcher-code-due-to-upstream-bug.patch | Disables GaiaAuthFetcher code due to upstream bug | No, not desired | N/A |
| 0043-Disable-adding-a-signed-out-avatar-on-new-tab-pages-.patch | Disables adding a signed-out avatar on new tab pages | No, not desired | N/A |
| 0044-Disable-newer-privacy-sandbox-features-by-default.patch | Disables newer privacy sandbox features | Yes | MISSING |
| 0045-Disable-WebGPU-in-Android-by-default.patch | Disables WebGPU in Android | No, Android only | N/A |
| 0046-always-use-local-new-tab-page.patch | Always use local new tab page | No, not desired | N/A |
| 0047-mark-non-secure-origins-as-dangerous.patch | Marks non-secure origins as dangerous | Yes | MISSING |
| 0048-most-private-WebRTC-IP-handling-policy-by-default.patch | Most private WebRTC IP handling policy by default | Yes | Set in secureblue policies |
| 0049-stub-out-the-battery-status-API.patch | Stubs out the battery status API | No, Android only | N/A |
| 0050-stop-ignoring-download-location-prompt-setting.patch | Stops ignoring download location prompt setting | No, Android only | N/A |
| 0051-show-download-prompt-again-by-default.patch | Shows download prompt again by default | No, Android only | N/A |
| 0052-disable-trials-of-privacy-aware-analytics-advertisin.patch | Disables trials of privacy-aware analytics advertising | Yes | MISSING |
| 0053-disable-using-Play-services-fonts.patch | Disables using Play services fonts | No, Android only | N/A |
| 0054-disable-appending-variations-header.patch | Disables appending variations header | No, not desired | N/A |
| 0055-Disable-detailed-language-settings-by-default.patch | Disables detailed language settings by default | No, not desired | N/A |
| 0056-disable-fetching-optimization-guides-by-default.patch | Disables fetching optimization guides by default | No, not desired | N/A |
| 0057-set-default-search-engine-to-DuckDuckGo.patch | Sets default search engine to DuckDuckGo | No, not desired | N/A |
| 0058-set-original-package-to-org.chromium.chrome.patch | Sets original package to org.chromium.chrome | No, Android only | N/A |
| 0059-Make-HTTPS-only-mode-the-default.patch | Makes HTTPS-only mode the default | Yes | Set in secureblue policies |
| 0060-require-HTTPS-for-component-updates.patch | Requires HTTPS for component updates | Yes | MISSING |
| 0061-use-vanadium.app-for-component-updates.patch | Use vanadium.app for component updates | No, not desired | N/A |
| 0062-use-grapheneos.network-when-verifying-DNS-over-HTTPS.patch | Use grapheneos.network when verifying DNS over HTTPS | No, not desired | N/A |
| 0063-Use-GrapheneOS-connectivity-check-as-well-for-Help-a.patch | Use GrapheneOS connectivity check as well for Help | No, not desired | N/A |
| 0064-enable-memory-tagging-in-all-processes.patch | Enable memory tagging in all processes | No, Android only | N/A |
| 0065-bugfix-do-not-attempt-to-re-enable-memory-tagging.patch | Bugfix: do not attempt to re-enable memory tagging | No, Android only | N/A |
| 0066-enable-prefetch-privacy-changes-by-default.patch | Enable prefetch privacy changes by default | Yes | MISSING |
| 0067-enable-split-cache-by-default.patch | Enable split cache by default | Yes | MISSING |
| 0068-enable-partitioning-connections-by-default.patch | Enable partitioning connections by default | Yes | MISSING |
| 0069-enable-dubious-Do-Not-Track-feature-by-default.patch | Enable dubious Do Not Track feature by default | No, not desired | N/A |
| 0070-enable-strict-site-isolation-by-default-on-Android.patch | Enable strict site isolation by default on Android | No, Android only | N/A |
| 0071-Enable-strict-origin-isolation-by-default.patch | Enable strict origin isolation by default | Yes | MISSING |
| 0072-Enable-reduce-accept-language-header-by-default.patch | Enable reduce accept language header by default | No, fingerprinting related | N/A |
| 0073-enable-process-isolated-sandboxed-iframes-by-default.patch | Enable process isolated sandboxed iframes by default | Yes | MISSING |
| 0074-use-Google-Chrome-branding-for-client-hints.patch | Use Google Chrome branding for client hints | No, fingerprinting related | N/A |
| 0075-add-trichrome-browser-apk-targets.patch | Add trichrome browser APK targets | No, Android only | N/A |
| 0076-Remove-logo-from-chrome-version.patch | Remove logo from Chrome version | No, Android only | N/A |
| 0077-redirect-settings-help-icon.patch | Redirect settings help icon | No, branding related | N/A |
| 0078-remove-Google-prefix-from-storage-settings-label.patch | Remove Google prefix from storage settings label | No, branding related | N/A |
| 0079-remove-Help-feedback-menu-entry.patch | Remove Help feedback menu entry | No, Android only | N/A |
| 0080-hide-passwords.google.com-link-when-not-supported.patch | Hide passwords.google.com link when not supported | No, Android only | N/A |
| 0081-update-trichrome_library_apk-expectation-file.patch | Update trichrome_library_apk expectation file | No, Android only | N/A |
| 0082-Consolidate-downstream-changes-in-dependencies-sourc.patch | Consolidate downstream changes in dependencies source | No, Android only | N/A |
| 0083-Consolidate-downstream-strings-in-a-separate-file-fo.patch | Consolidate downstream strings in a separate file | No, branding related | N/A |
| 0084-Utility-class-for-adding-shared-preference-keys.patch | Utility class for adding shared preference keys | No, Android only | N/A |
| 0085-Helper-class-for-modifying-preferences-at-chrome-lay.patch | Helper class for modifying preferences at Chrome layer | No, Android only | N/A |
| 0086-Utility-class-for-modifying-preferences-at-Privacy-s.patch | Utility class for modifying preferences at Privacy settings layer | No, Android only | N/A |
| 0087-Remove-not-applicable-additional-terms-of-services.patch | Remove not applicable additional terms of services | No, branding related | N/A |
| 0088-remove-Google-terms-of-use-and-privacy-policy.patch | Remove Google terms of use and privacy policy | No, branding related | N/A |
| 0089-disable-unused-password-check-feature.patch | Disable unused password check feature | No, Android only | N/A |
| 0090-remove-unwanted-sync-and-services-link.patch | Remove unwanted sync and services link | No, branding related | N/A |
| 0091-remove-safety-check-menu.patch | Remove safety check menu | No, not desired | N/A |
| 0092-remove-unwanted-account-and-services-section.patch | Remove unwanted account and services section | No, not desired | N/A |
| 0093-remove-translate-offer-preference.patch | Remove translate offer preference | Yes | Disabled in secureblue policies |
| 0094-Hide-Sign-In-preference-when-disallowed.patch | Hide Sign-In preference when disallowed | No, not desired | N/A |
| 0095-Hide-currently-no-op-preload-settings.patch | Hide currently no-op preload settings | No, not desired | N/A |
| 0096-Remove-privacy-trials-preference-UI.patch | Remove privacy trials preference UI | No, not desired | N/A |
| 0097-Remove-privacy-guides-preference-UI.patch | Remove privacy guides preference UI | No, not desired | N/A |
| 0098-Move-search-suggestions-back-to-privacy-section.patch | Move search suggestions back to privacy section | No, not desired | N/A |
| 0099-Toggle-for-closing-tabs-on-exit.patch | Toggle for closing tabs on exit | No, not desired | N/A |
| 0100-Toggle-for-navigating-external-URL-in-incognito.patch | Toggle for navigating external URL in incognito | No, not desired | N/A |
| 0101-Implement-UI-for-JIT-site-settings.patch | Implement UI for JIT site settings | Yes | JIT is globally disabled in secureblue config |
| 0102-Implement-UI-for-WebRTC-toggle.patch | Implement UI for WebRTC toggle | No, not desired | N/A |
| 0103-Do-not-clear-the-url-bar-on-focus-by-default-for-sea.patch | Do not clear the URL bar on focus by default for search | No, Android only | N/A |
| 0104-Handle-web-search-action-in-browser.patch | Handle web search action in browser | No, Android only | N/A |
| 0105-Support-opening-external-web-search-in-incognito.patch | Support opening external web search in incognito | No, Android only | N/A |
| 0106-Add-missing-null-check-for-password-manager-autofill.patch | Add missing null check for password manager autofill | No, not desired | N/A |
| 0107-make-cross-origin-referrer-behavior-configurable.patch | Make cross-origin referrer behavior configurable | No, not desired | N/A |
| 0108-temporary-Workaround-for-crashes-at-StackTrace-calls.patch | Temporary workaround for crashes at StackTrace calls | No, not desired | N/A |
| 0109-Derive-high-entropy-client-hints-with-reduced-user-a.patch | Derive high entropy client hints with reduced user agent | No, fingerprinting related | N/A |
| 0110-temporary-Disable-changes-to-high-entropy-client-hin.patch | Temporary disable changes to high entropy client hints | No, fingerprinting related | N/A |
| 0111-Drop-workaround-with-android-autofill-in-compatibili.patch | Drop workaround with Android autofill in compatibility | No, Android only | N/A |
| 0112-Enable-android-autofill-on-http-authentication-dialo.patch | Enable Android autofill on HTTP authentication dialog | No, Android only | N/A |
| 0113-Support-both-password-manager-and-android-autofill-f.patch | Support both password manager and Android autofill | No, Android only | N/A |
| 0114-Support-for-both-browser-and-android-autofill-functi.patch | Support for both browser and Android autofill functionalities | No, Android only | N/A |
| 0115-Support-native-Android-autofill-at-browser.patch | Support native Android autofill at browser | No, Android only | N/A |
| 0116-Disable-Play-services-dependent-password-manager-pre.patch | Disable Play services dependent password manager | No, Android only | N/A |
| 0117-Use-local-list-of-supported-languages-for-Language-s.patch | Use local list of supported languages for Language settings | Yes | MISSING |
| 0118-Checkout-PGO-profiles.patch | Checkout PGO profiles | No, not desired | N/A |
| 0119-Extend-opening-links-from-external-apps-in-incognito.patch | Extend opening links from external apps in incognito | No, Android only | N/A |
| 0120-Extend-opening-links-from-external-apps-incognito-fo.patch | Extend opening links from external apps incognito for | No, Android only | N/A |
| 0121-temporary-Always-partition-third-party-storage.patch | Temporary always partition third-party storage | Yes | MISSING |
| 0122-Do-not-select-search-query-text-when-opening-web-and.patch | Do not select search query text when opening web and | No, Android only | N/A |