• Home
Name Date Size #Lines LOC

..--

fuzz/03-May-2024-147105

tests/03-May-2024-1,062826

.clang-formatD03-May-2024291

Android.bpD03-May-20242.3 KiB10688

CommandListener.cppD03-May-202410.4 KiB379290

CommandListener.hD03-May-20243.6 KiB9968

FlushCommand.cppD03-May-20242.8 KiB8650

FlushCommand.hD03-May-20241.2 KiB4419

LogAudit.cppD03-May-202412.9 KiB403324

LogAudit.hD03-May-20241.6 KiB5731

LogBuffer.cppD03-May-202443.4 KiB1,226843

LogBuffer.hD03-May-20245.8 KiB190122

LogBufferElement.cppD03-May-20247.9 KiB282219

LogBufferElement.hD03-May-20242.9 KiB10067

LogCommand.cppD03-May-20244.9 KiB14679

LogCommand.hD03-May-2024893 3111

LogKlog.cppD03-May-202426.5 KiB827631

LogKlog.hD03-May-20242 KiB6535

LogListener.cppD03-May-20244 KiB13283

LogListener.hD03-May-20241 KiB3815

LogReader.cppD03-May-20248.2 KiB267197

LogReader.hD03-May-20241.2 KiB4921

LogStatistics.cppD03-May-202427 KiB856695

LogStatistics.hD03-May-202422.6 KiB791662

LogTags.cppD03-May-202430.8 KiB904647

LogTags.hD03-May-20244.8 KiB12563

LogTimes.cppD03-May-20246 KiB244169

LogTimes.hD03-May-20242.9 KiB10670

LogUtils.hD03-May-20242.3 KiB7738

LogWhiteBlackList.cppD03-May-20247.2 KiB272210

LogWhiteBlackList.hD03-May-20242 KiB8953

OWNERSD03-May-202440 32

README.auditdD03-May-2024549 1813

README.propertyD03-May-20245 KiB7774

auditctl.cppD03-May-20242.1 KiB7548

event.logtagsD03-May-20241.3 KiB4038

libaudit.cD03-May-20246.8 KiB254119

libaudit.hD03-May-20242.7 KiB10728

logd.rcD03-May-2024888 3631

logtagd.rcD03-May-2024291 109

main.cppD03-May-202413.9 KiB440322

README.auditd

1Auditd Daemon
2
3The audit daemon is a simplified version of its desktop
4counterpart designed to gather the audit logs from the
5audit kernel subsystem. The audit subsystem of the kernel
6includes Linux Security Modules (LSM) messages as well.
7
8To enable the audit subsystem, you must add this to your
9kernel config:
10CONFIG_AUDIT=y
11
12To enable a LSM, you must consult that LSM's documentation, the
13example below is for SELinux:
14CONFIG_SECURITY_SELINUX=y
15
16This does not include possible dependencies that may need to be
17satisfied for that particular LSM.
18

README.property

1The properties that logd and friends react to are:
2
3name                       type default  description
4ro.logd.auditd             bool   true   Enable selinux audit daemon
5ro.logd.auditd.dmesg       bool   true   selinux audit messages sent to dmesg.
6ro.logd.auditd.main        bool   true   selinux audit messages sent to main.
7ro.logd.auditd.events      bool   true   selinux audit messages sent to events.
8persist.logd.security      bool   false  Enable security buffer.
9ro.organization_owned      bool   false  Override persist.logd.security to false
10ro.logd.kernel             bool+ svelte+ Enable klogd daemon
11ro.logd.statistics         bool+ svelte+ Enable logcat -S statistics.
12ro.debuggable              number        if not "1", logd.statistics &
13                                         ro.logd.kernel default false.
14logd.logpersistd.enable    bool   auto   Safe to start logpersist daemon service
15logd.logpersistd          string persist Enable logpersist daemon, "logcatd"
16                                         turns on logcat -f in logd context.
17					 Responds to logcatd, clear and stop.
18logd.logpersistd.buffer          persist logpersistd buffers to collect
19logd.logpersistd.size            persist logpersistd size in MB
20logd.logpersistd.rotate_kbytes   	 persist logpersistd outout file size in KB.
21persist.logd.logpersistd   string        Enable logpersist daemon, "logcatd"
22                                         turns on logcat -f in logd context.
23persist.logd.logpersistd.buffer    all   logpersistd buffers to collect
24persist.logd.logpersistd.size      256   logpersistd size in MB
25persist.logd.logpersistd.count     256   sets max number of rotated logs to <count>.
26persist.logd.logpersistd.rotate_kbytes   1024  logpersistd output file size in KB
27persist.logd.size          number  ro    Global default size of the buffer for
28                                         all log ids at initial startup, at
29                                         runtime use: logcat -b all -G <value>
30ro.logd.size               number svelte default for persist.logd.size. Larger
31                                         platform default sizes than 256KB are
32                                         known to not scale well under log spam
33                                         pressure. Address the spam first,
34                                         resist increasing the log buffer.
35persist.logd.size.<buffer> number  ro    Size of the buffer for <buffer> log
36ro.logd.size.<buffer>      number svelte default for persist.logd.size.<buffer>
37ro.config.low_ram          bool   false  if true, logd.statistics,
38                                         ro.logd.kernel default false,
39                                         logd.size 64K instead of 256K.
40persist.logd.filter        string        Pruning filter to optimize content.
41                                         At runtime use: logcat -P "<string>"
42ro.logd.filter       string "~! ~1000/!" default for persist.logd.filter.
43                                         This default means to prune the
44                                         oldest entries of chattiest UID, and
45                                         the chattiest PID of system
46                                         (1000, or AID_SYSTEM).
47persist.logd.timestamp     string  ro    The recording timestamp source.
48                                         "m[onotonic]" is the only supported
49                                         key character, otherwise realtime.
50ro.logd.timestamp        string realtime default for persist.logd.timestamp
51log.tag                   string persist The global logging level, VERBOSE,
52                                         DEBUG, INFO, WARN, ERROR, ASSERT or
53                                         SILENT. Only the first character is
54                                         the key character.
55persist.log.tag            string build  default for log.tag
56log.tag.<tag>             string persist The <tag> specific logging level.
57persist.log.tag.<tag>      string build  default for log.tag.<tag>
58
59NB:
60- auto - managed by /init
61- bool+ - "true", "false" and comma separated list of "eng" (forced false if
62  ro.debuggable is not "1") or "svelte" (forced false if ro.config.low_ram is
63  true).
64- svelte - see ro.config.low_ram for details.
65- svelte+ - see ro.config.low_ram and ro.debuggable for details.
66- ro - <base property> temporary override, ro.<base property> platform default.
67- persist - <base property> override, persist.<base property> platform default.
68- build - VERBOSE for native, DEBUG for jvm isLoggable, or developer option.
69- number - support multipliers (K or M) for convenience. Range is limited
70  to between 64K and 256M for log buffer sizes. Individual log buffer ids
71  such as main, system, ... override global default.
72- Pruning filter is of form of a space-separated list of [~][UID][/PID]
73  references, where '~' prefix means to blacklist otherwise whitelist. For
74  blacklisting, UID or PID may be a '!' to instead reference the chattiest
75  client, with the restriction that the PID must be in the UID group 1000
76  (system or AID_SYSTEM).
77