tequilaOS/platform_system_core

Fork 0

Commit graph

Author	SHA1	Message	Date
Nick Kralevich	a15db51bbf	libaudit: limit to 5 selinux denials per sec watchdog is triggering on shamu. This may be due to an excessive number of SELinux denials. Drop the limit from 20/sec to 5/sec. Bug: 19950451 Bug: 19949988 Change-Id: I979f11e17c241ff2ebda4dec9694ef441dc5d0ed	2015-03-26 14:04:13 -07:00
Nick Kralevich	c234a1b879	logd: throttle SELinux denials to 20/sec Impose a limit of 20 selinux denials per second. Denials beyond that point don't add any value, and have the potential to cause crashes or denial of service attacks. Do some other misc cleanup while I'm here. Bug: 18341932 Change-Id: I6125d629ae4d6ae131d2e53bfa41e1f50277d402	2014-11-19 13:35:36 -08:00
William Roberts	29d238d2a8	logd: selinux auditd initial commit Initial commit for an audit daemon that writes kernel audit messages to the Android logger. The daemon searches dmesg for all lines that contain "audit" and writes them. Then receiving the messages from the netlink socket. It also formats the messages so they are compatable with ausearch (type=<t> <m> format) Modified: Mark Salyzyn <salyzyn@google.com> - do not start auditd - merge into logd, stripping unnecessary file logging. - Convert headers and code to support C++ - Fix bugs in libaudit - squash timestamp (replace with 0.0) due to duplication - squash pid due to duplication - squash comm due to duplication Change-Id: I421bcf33e7e670d596628b1b5c7c25536ce2d3fe	2014-04-07 10:51:00 -07:00

Author

SHA1

Message

Date

Nick Kralevich

a15db51bbf

libaudit: limit to 5 selinux denials per sec

watchdog is triggering on shamu. This may be due to an excessive
number of SELinux denials. Drop the limit from 20/sec to 5/sec.

Bug: 19950451
Bug: 19949988
Change-Id: I979f11e17c241ff2ebda4dec9694ef441dc5d0ed

2015-03-26 14:04:13 -07:00

Nick Kralevich

c234a1b879

logd: throttle SELinux denials to 20/sec

Impose a limit of 20 selinux denials per second. Denials beyond
that point don't add any value, and have the potential to cause
crashes or denial of service attacks.

Do some other misc cleanup while I'm here.

Bug: 18341932
Change-Id: I6125d629ae4d6ae131d2e53bfa41e1f50277d402

2014-11-19 13:35:36 -08:00

William Roberts

29d238d2a8

logd: selinux auditd initial commit

Initial commit for an audit daemon that writes kernel audit
messages to the Android logger. The daemon searches dmesg
for all lines that contain "audit" and writes them. Then
receiving the messages from the netlink socket.

It also formats the messages so they are compatable with
ausearch (type=<t> <m> format)

Modified: Mark Salyzyn <salyzyn@google.com>

- do not start auditd
- merge into logd, stripping unnecessary file logging.
- Convert headers and code to support C++
- Fix bugs in libaudit
- squash timestamp (replace with 0.0) due to duplication
- squash pid due to duplication
- squash comm due to duplication

Change-Id: I421bcf33e7e670d596628b1b5c7c25536ce2d3fe

2014-04-07 10:51:00 -07:00

3 commits