| Up to higher level directory | |||
| Name | Date | Size | |
|---|---|---|---|
| Android.mk | 24-Aug-2016 | 1K | |
| CommandListener.cpp | 24-Aug-2016 | 8.2K | |
| CommandListener.h | 24-Aug-2016 | 2.2K | |
| event.logtags | 24-Aug-2016 | 1.2K | |
| FlushCommand.cpp | 24-Aug-2016 | 3.3K | |
| FlushCommand.h | 24-Aug-2016 | 1.4K | |
| libaudit.c | 24-Aug-2016 | 7.6K | |
| libaudit.h | 24-Aug-2016 | 2.3K | |
| LogAudit.cpp | 24-Aug-2016 | 7.6K | |
| LogAudit.h | 24-Aug-2016 | 1.2K | |
| LogBuffer.cpp | 24-Aug-2016 | 32.2K | |
| LogBuffer.h | 24-Aug-2016 | 4.7K | |
| LogBufferElement.cpp | 24-Aug-2016 | 7K | |
| LogBufferElement.h | 24-Aug-2016 | 2.8K | |
| LogCommand.cpp | 24-Aug-2016 | 5K | |
| LogCommand.h | 24-Aug-2016 | 876 | |
| logd.rc | 24-Aug-2016 | 349 | |
| LogKlog.cpp | 24-Aug-2016 | 25.1K | |
| LogKlog.h | 24-Aug-2016 | 2K | |
| LogListener.cpp | 24-Aug-2016 | 3.9K | |
| LogListener.h | 24-Aug-2016 | 1,018 | |
| LogReader.cpp | 24-Aug-2016 | 6.6K | |
| LogReader.h | 24-Aug-2016 | 1.1K | |
| LogStatistics.cpp | 24-Aug-2016 | 17.7K | |
| LogStatistics.h | 24-Aug-2016 | 14.5K | |
| LogTimes.cpp | 24-Aug-2016 | 6.9K | |
| LogTimes.h | 24-Aug-2016 | 3.7K | |
| LogUtils.h | 24-Aug-2016 | 2.6K | |
| LogWhiteBlackList.cpp | 24-Aug-2016 | 7.2K | |
| LogWhiteBlackList.h | 24-Aug-2016 | 1.9K | |
| main.cpp | 24-Aug-2016 | 14.9K | |
| README.auditd | 24-Aug-2016 | 549 | |
| README.property | 24-Aug-2016 | 4.1K | |
| tests/ | 24-Aug-2016 | ||
README.auditd
1 Auditd Daemon 2 3 The audit daemon is a simplified version of its desktop 4 counterpart designed to gather the audit logs from the 5 audit kernel subsystem. The audit subsystem of the kernel 6 includes Linux Security Modules (LSM) messages as well. 7 8 To enable the audit subsystem, you must add this to your 9 kernel config: 10 CONFIG_AUDIT=y 11 12 To enable a LSM, you must consult that LSM's documentation, the 13 example below is for SELinux: 14 CONFIG_SECURITY_SELINUX=y 15 16 This does not include possible dependencies that may need to be 17 satisfied for that particular LSM. 18
README.property
1 The properties that logd responds to are: 2 3 name type default description 4 ro.logd.auditd bool true Enable selinux audit daemon 5 ro.logd.auditd.dmesg bool true selinux audit messages duplicated and 6 sent on to dmesg log 7 persist.logd.security bool false Enable security buffer. 8 ro.device_owner bool false Override persist.logd.security to false 9 ro.logd.kernel bool+ svelte+ Enable klogd daemon 10 ro.logd.statistics bool+ svelte+ Enable logcat -S statistics. 11 ro.build.type string if user, logd.statistics & 12 ro.logd.kernel default false. 13 persist.logd.logpersistd string Enable logpersist daemon, "logcatd" 14 turns on logcat -f in logd context 15 persist.logd.size number ro Global default size of the buffer for 16 all log ids at initial startup, at 17 runtime use: logcat -b all -G <value> 18 ro.logd.size number svelte default for persist.logd.size. Larger 19 platform default sizes than 256KB are 20 known to not scale well under log spam 21 pressure. Address the spam first, 22 resist increasing the log buffer. 23 persist.logd.size.<buffer> number ro Size of the buffer for <buffer> log 24 ro.logd.size.<buffer> number svelte default for persist.logd.size.<buffer> 25 ro.config.low_ram bool false if true, logd.statistics, logd.kernel 26 default false, logd.size 64K instead 27 of 256K. 28 persist.logd.filter string Pruning filter to optimize content. 29 At runtime use: logcat -P "<string>" 30 ro.logd.filter string "~! ~1000/!" default for persist.logd.filter. 31 This default means to prune the 32 oldest entries of chattiest UID, and 33 the chattiest PID of system 34 (1000, or AID_SYSTEM). 35 persist.logd.timestamp string ro The recording timestamp source. 36 "m[onotonic]" is the only supported 37 key character, otherwise realtime. 38 ro.logd.timestamp string realtime default for persist.logd.timestamp 39 log.tag string persist The global logging level, VERBOSE, 40 DEBUG, INFO, WARN, ERROR, ASSERT or 41 SILENT. Only the first character is 42 the key character. 43 persist.log.tag string build default for log.tag 44 log.tag.<tag> string persist The <tag> specific logging level. 45 persist.log.tag.<tag> string build default for log.tag.<tag> 46 47 NB: 48 - bool+ - "true", "false" and comma separated list of "eng" (forced false if 49 ro.build.type is "user") or "svelte" (forced false if ro.config.low_ram is 50 true). 51 - svelte - see ro.config.low_ram for details. 52 - svelte+ - see ro.config.low_ram and ro.build.type for details. 53 - ro - <base property> temporary override, ro.<base property> platform default. 54 - persist - <base property> override, persist.<base property> platform default. 55 - build - VERBOSE for native, DEBUG for jvm isLoggable, or developer option. 56 - number - support multipliers (K or M) for convenience. Range is limited 57 to between 64K and 256M for log buffer sizes. Individual log buffer ids 58 such as main, system, ... override global default. 59 - Pruning filter is of form of a space-separated list of [~][UID][/PID] 60 references, where '~' prefix means to blacklist otherwise whitelist. For 61 blacklisting, UID or PID may be a '!' to instead reference the chattiest 62 client, with the restriction that the PID must be in the UID group 1000 63 (system or AID_SYSTEM). 64
