tequilaOS/platform_system_core
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
No description
44941 commits 1 branch 0 tags 215 MiB
C++ 89.4%
C 7.3%
Shell 1.4%
Python 0.6%
Rust 0.5%
Other 0.7%
Find a file
Nick Kralevich be5e446791 introduce auditctl and use it to configure SELinux throttling 
In an effort to ensure that our development community does not
introduce new code without corresponding SELinux changes, Android
closely monitors the number of SELinux denials which occur during
boot. This monitoring occurs both in treehugger, as well as various
dashboards. If SELinux denials are dropped during early boot, this
could result in non-determinism for the various SELinux treehugger
tests.

Introduce /system/bin/auditctl. This tool, model after
https://linux.die.net/man/8/auditctl , allows for configuring the
throttling rate for the kernel auditing system.

Remove any throttling from early boot. This will hopefully reduce
treehugger flakiness by making denial generation more predictible
during early boot.

Reapply the throttling at boot complete, to avoid denial of service
attacks against the auditing subsystem.

Delete pre-existing unittests for logd / SELinux integration. It's
intended that all throttling decisions be made in the kernel, and
shouldn't be a concern of logd.

Bug: 118815957
Test: Perform an operation which generates lots of SELinux denials,
      and count how many occur before and after the time period.
Change-Id: I6c787dbdd4a28208dc854b543e1727ae92e5eeed
2019-04-09 13:19:08 -07:00
adb Merge "adb: defuse CHECK on IOVector::append of an empty block." 2019-04-04 21:02:02 +00:00
base Disallow operator!() on unique_fd 2019-03-28 15:56:07 +09:00
bootstat bootstat: add 4 reboot reasons to known set 2019-03-20 16:53:29 +00:00
cpio Switch from dist-for-goals to dist in Android.bp 2018-11-19 23:06:12 -08:00
debuggerd Remove include of backtrace/Backtrace.h. 2019-04-08 17:18:24 -07:00
demangle Build adbd for recovery 2018-05-24 14:11:11 +09:00
deprecated-adf adf: rename. 2019-02-14 16:30:24 -08:00
diagnose_usb Build adbd for recovery 2018-05-24 14:11:11 +09:00
fastboot Test is-logical command for vendor and boot partitions. 2019-04-05 11:30:21 -07:00
fs_mgr Merge "Increase adb-remount timeout" 2019-04-08 15:13:47 +00:00
gatekeeperd Use distinct GateKeeper userids when running a GSI. 2019-02-28 08:56:30 -08:00
healthd healthd: charger: shutdown timer configurable 2019-04-08 12:46:47 -07:00
include Move android_filesystem_config.h => fs_config.h 2017-08-02 16:31:19 -07:00
init init: fixes to README.mk 2019-04-08 10:06:49 -07:00
janitors Add the two best build system janitors. 2019-03-25 10:25:13 -07:00
libappfuse use epoll_create1(EPOLL_CLOEXEC) 2018-12-17 09:32:23 -08:00
libasyncio Revert "Mark libs as double_loadable" 2019-03-11 14:10:34 +00:00
libbacktrace Revert "Check for data races when reading JIT/DEX entries." 2019-04-05 18:23:32 +00:00
libbinderwrapper Make libbinderwrapper available in /vendor partition 2018-04-06 08:41:21 +09:00
libcrypto_utils Convert more modules to Android.bp 2018-10-31 21:53:37 -07:00
libcutils cutils: add ashmem_init 2019-04-04 17:30:25 -07:00
libdiskconfig Rename target.linux[_x86[_64]] to target.linux_glibc[_x86[_64]] 2017-10-02 10:44:29 -07:00
libgrallocusage Merge "Build both static and shared lib." 2018-09-25 22:29:31 +00:00
libion libion: cleanup logging 2018-03-07 10:56:06 -08:00
libkeyutils mini-keyctl: move logs to stdout 2019-04-08 10:59:54 -07:00
liblog Merge "Version liblog LL-NDK library" 2019-04-02 23:16:22 +00:00
libmeminfo libmeminfo: librank optimization using maps instead of vectors 2019-03-01 16:17:20 -08:00
libmemtrack Revert "Mark libs as double_loadable" 2019-03-11 14:10:34 +00:00
libmemunreachable Catch SIGBUS in HeapWalker 2019-03-20 16:06:52 -07:00
libmetricslogger DO NOT MERGE - Merge pie-platform-release (PPRL.181205.001) into master 2018-12-11 14:46:12 -08:00
libnativebridge Update OWNERS for libnativebridge 2019-02-13 19:20:59 +09:00
libnativeloader Add dependency on libdl_android 2019-03-28 12:52:27 +01:00
libnetutils Refactor OWNERS files for Android Core Networking 2019-02-12 13:25:13 +08:00
libpackagelistparser Add versionCode parser for package list. 2019-03-19 17:04:46 +00:00
libpixelflinger Mark gglMulx and gglMulAddx as always_inline 2019-02-14 11:59:48 -08:00
libprocessgroup Merge "CgroupSetupCgroups: don't leak fd." 2019-04-04 17:27:27 +00:00
libprocinfo Merge "Revert "Mark libs as double_loadable"" 2019-03-12 22:11:27 +00:00
libqtaguid Redirect qtaguid native call to netd fwmark client 2017-11-09 18:02:22 -08:00
libsparse Convert Android.mk file to Android.bp 2019-01-24 21:16:39 -08:00
libstats Merge "Report last atom tag of the failed stats log." 2019-04-02 23:18:14 +00:00
libsuspend Remove libsuspend from VNDK. 2018-08-14 13:39:55 -07:00
libsync Merge libsync_recovery rules into libsync. 2018-08-07 11:00:50 -07:00
libsystem Freshen libsystem/OWNERS 2019-02-07 10:19:01 -08:00
libsysutils Enlarge cmd buffer size of FrameworkListener 2019-03-21 23:09:16 +08:00
libunwindstack Merge "Revert "Check for data races when reading JIT/DEX entries."" 2019-04-06 17:09:10 +00:00
libusbhost Revert "Mark libs as double_loadable" 2019-03-11 14:10:34 +00:00
libutils Merge "libutils: more detailed logging." 2019-04-02 02:45:41 +00:00
libvndksupport Add dependency on libdl_android 2019-03-28 12:52:27 +01:00
libziparchive Merge "zip_archive.cc: Use static cast instead of masking" 2019-04-08 16:23:51 +00:00
llkd llkd: do not call sync() 2019-01-10 12:52:35 -08:00
lmkd lmkd: set PSI_POLL_PERIOD to 10ms 2019-03-27 02:10:10 +00:00
logcat Merge "Logtags for com.android.server.policy" 2019-03-27 14:41:12 +00:00
logd introduce auditctl and use it to configure SELinux throttling 2019-04-09 13:19:08 -07:00
logwrapper Build adbd for recovery 2018-05-24 14:11:11 +09:00
mkbootimg mkbootimg: print addresses and offsets in hex 2019-03-07 05:06:09 +00:00
property_service Add libc_headers to header_libs for libpropertyinfoparser 2019-01-17 21:18:01 +08:00
qemu_pipe Build adbd for recovery 2018-05-24 14:11:11 +09:00
reboot reboot: only pause indefinitely for non-shutdown operations 2017-09-29 16:29:52 +00:00
rootdir Merge "Move gcov output to /data/misc/trace" 2019-04-05 18:11:30 +00:00
run-as run-as: improve diagnostics on failure. 2019-03-13 11:16:03 -07:00
sdcard Allow callers to pass a flag to not link obb dirs of multiple users. 2019-03-05 14:41:54 -08:00
shell_and_utilities introduce auditctl and use it to configure SELinux throttling 2019-04-09 13:19:08 -07:00
storaged Remove liblog's rate limiting 2019-01-16 10:37:14 -08:00
toolbox Remove r in R. 2019-04-04 10:45:12 -07:00
trusty Enable Trusty Gatekeeper@1.0 2019-03-19 11:18:38 -07:00
usbd bpfmt. 2018-02-16 17:58:14 -08:00
watchdogd Move watchdogd out of init 2018-08-02 12:25:58 -07:00
.clang-format Add a 2 width option of clang format. 2017-03-10 13:01:39 -08:00
.clang-format-2 Move clang-formats to build. 2019-01-18 14:26:33 -08:00
.clang-format-4 Move clang-formats to build. 2019-01-18 14:26:33 -08:00
.gitignore Ignore adb/*.pyc files 2015-08-11 12:59:58 -07:00
Android.bp Export android_filesystem_config.h as a filegroup 2017-01-17 18:20:28 -08:00
CleanSpec.mk healthd: charger uses shared libraries. 2019-03-06 14:36:59 -08:00
MODULE_LICENSE_APACHE2 auto import from //depot/cupcake/@135843 2013-07-30 13:56:49 -07:00
NOTICE Fix omission in NOTICE file. 2013-07-30 13:56:55 -07:00
OWNERS Move per-file OWNERS directives to their directories. 2018-06-06 11:49:40 +09:00
PREUPLOAD.cfg Add a PREUPLOAD.cfg file to run git-clang-format on every commit 2017-03-08 16:51:26 +08:00
TEST_MAPPING Add presubmit test for vendor overlay 2019-02-16 08:24:35 +09:00