| Up to higher level directory | |||
| Name | Date | Size | |
|---|---|---|---|
| Android.mk | 21-Oct-2016 | 1K | |
| CommandListener.cpp | 21-Oct-2016 | 8.2K | |
| CommandListener.h | 21-Oct-2016 | 2.2K | |
| event.logtags | 21-Oct-2016 | 1.2K | |
| FlushCommand.cpp | 21-Oct-2016 | 3.3K | |
| FlushCommand.h | 21-Oct-2016 | 1.4K | |
| libaudit.c | 21-Oct-2016 | 7.6K | |
| libaudit.h | 21-Oct-2016 | 2.3K | |
| LogAudit.cpp | 21-Oct-2016 | 7.6K | |
| LogAudit.h | 21-Oct-2016 | 1.2K | |
| LogBuffer.cpp | 21-Oct-2016 | 32.2K | |
| LogBuffer.h | 21-Oct-2016 | 4.7K | |
| LogBufferElement.cpp | 21-Oct-2016 | 7K | |
| LogBufferElement.h | 21-Oct-2016 | 2.8K | |
| LogCommand.cpp | 21-Oct-2016 | 5K | |
| LogCommand.h | 21-Oct-2016 | 876 | |
| logd.rc | 21-Oct-2016 | 349 | |
| LogKlog.cpp | 21-Oct-2016 | 25.9K | |
| LogKlog.h | 21-Oct-2016 | 2K | |
| LogListener.cpp | 21-Oct-2016 | 3.9K | |
| LogListener.h | 21-Oct-2016 | 1,018 | |
| LogReader.cpp | 21-Oct-2016 | 6.6K | |
| LogReader.h | 21-Oct-2016 | 1.1K | |
| LogStatistics.cpp | 21-Oct-2016 | 17.7K | |
| LogStatistics.h | 21-Oct-2016 | 14.5K | |
| LogTimes.cpp | 21-Oct-2016 | 6.9K | |
| LogTimes.h | 21-Oct-2016 | 3.7K | |
| LogUtils.h | 21-Oct-2016 | 2.6K | |
| LogWhiteBlackList.cpp | 21-Oct-2016 | 7.2K | |
| LogWhiteBlackList.h | 21-Oct-2016 | 1.9K | |
| main.cpp | 21-Oct-2016 | 14.9K | |
| README.auditd | 21-Oct-2016 | 549 | |
| README.property | 21-Oct-2016 | 4.7K | |
| tests/ | 21-Oct-2016 | ||
README.auditd
1 Auditd Daemon 2 3 The audit daemon is a simplified version of its desktop 4 counterpart designed to gather the audit logs from the 5 audit kernel subsystem. The audit subsystem of the kernel 6 includes Linux Security Modules (LSM) messages as well. 7 8 To enable the audit subsystem, you must add this to your 9 kernel config: 10 CONFIG_AUDIT=y 11 12 To enable a LSM, you must consult that LSM's documentation, the 13 example below is for SELinux: 14 CONFIG_SECURITY_SELINUX=y 15 16 This does not include possible dependencies that may need to be 17 satisfied for that particular LSM. 18
README.property
1 The properties that logd and friends react to are: 2 3 name type default description 4 ro.logd.auditd bool true Enable selinux audit daemon 5 ro.logd.auditd.dmesg bool true selinux audit messages duplicated and 6 sent on to dmesg log 7 persist.logd.security bool false Enable security buffer. 8 ro.device_owner bool false Override persist.logd.security to false 9 ro.logd.kernel bool+ svelte+ Enable klogd daemon 10 ro.logd.statistics bool+ svelte+ Enable logcat -S statistics. 11 ro.build.type string if user, logd.statistics & 12 ro.logd.kernel default false. 13 logd.logpersistd.enable bool auto Safe to start logpersist daemon service 14 logd.logpersistd string persist Enable logpersist daemon, "logcatd" 15 turns on logcat -f in logd context. 16 Responds to logcatd, clear and stop. 17 logd.logpersistd.buffer persist logpersistd buffers to collect 18 logd.logpersistd.size persist logpersistd size in MB 19 persist.logd.logpersistd string Enable logpersist daemon, "logcatd" 20 turns on logcat -f in logd context. 21 persist.logd.logpersistd.buffer all logpersistd buffers to collect 22 persist.logd.logpersistd.size 256 logpersistd size in MB 23 persist.logd.size number ro Global default size of the buffer for 24 all log ids at initial startup, at 25 runtime use: logcat -b all -G <value> 26 ro.logd.size number svelte default for persist.logd.size. Larger 27 platform default sizes than 256KB are 28 known to not scale well under log spam 29 pressure. Address the spam first, 30 resist increasing the log buffer. 31 persist.logd.size.<buffer> number ro Size of the buffer for <buffer> log 32 ro.logd.size.<buffer> number svelte default for persist.logd.size.<buffer> 33 ro.config.low_ram bool false if true, logd.statistics, logd.kernel 34 default false, logd.size 64K instead 35 of 256K. 36 persist.logd.filter string Pruning filter to optimize content. 37 At runtime use: logcat -P "<string>" 38 ro.logd.filter string "~! ~1000/!" default for persist.logd.filter. 39 This default means to prune the 40 oldest entries of chattiest UID, and 41 the chattiest PID of system 42 (1000, or AID_SYSTEM). 43 persist.logd.timestamp string ro The recording timestamp source. 44 "m[onotonic]" is the only supported 45 key character, otherwise realtime. 46 ro.logd.timestamp string realtime default for persist.logd.timestamp 47 log.tag string persist The global logging level, VERBOSE, 48 DEBUG, INFO, WARN, ERROR, ASSERT or 49 SILENT. Only the first character is 50 the key character. 51 persist.log.tag string build default for log.tag 52 log.tag.<tag> string persist The <tag> specific logging level. 53 persist.log.tag.<tag> string build default for log.tag.<tag> 54 55 NB: 56 - auto - managed by /init 57 - bool+ - "true", "false" and comma separated list of "eng" (forced false if 58 ro.build.type is "user") or "svelte" (forced false if ro.config.low_ram is 59 true). 60 - svelte - see ro.config.low_ram for details. 61 - svelte+ - see ro.config.low_ram and ro.build.type for details. 62 - ro - <base property> temporary override, ro.<base property> platform default. 63 - persist - <base property> override, persist.<base property> platform default. 64 - build - VERBOSE for native, DEBUG for jvm isLoggable, or developer option. 65 - number - support multipliers (K or M) for convenience. Range is limited 66 to between 64K and 256M for log buffer sizes. Individual log buffer ids 67 such as main, system, ... override global default. 68 - Pruning filter is of form of a space-separated list of [~][UID][/PID] 69 references, where '~' prefix means to blacklist otherwise whitelist. For 70 blacklisting, UID or PID may be a '!' to instead reference the chattiest 71 client, with the restriction that the PID must be in the UID group 1000 72 (system or AID_SYSTEM). 73
