diff options
| author | William Roberts <w.roberts@sta.samsung.com> | 2013-02-08 09:45:26 +0900 |
|---|---|---|
| committer | Ricardo Cerqueira <cyanogenmod@cerqueira.org> | 2013-07-18 20:38:39 +0100 |
| commit | 44677e46395555657a59a42a374c325135fc4beb (patch) | |
| tree | e92ddd4e6f251ce4a382435f86c2bc384ee7a370 /rootdir | |
| parent | 1f34e1cb563506ed0d9c27420a3bb2203ee8396e (diff) | |
| download | system_core-44677e46395555657a59a42a374c325135fc4beb.tar.gz system_core-44677e46395555657a59a42a374c325135fc4beb.tar.bz2 system_core-44677e46395555657a59a42a374c325135fc4beb.zip | |
Auditd initial commit
Initial commit for an audit daemon that
writes kernel audit messages to a log
file. The daemon runs in uid "audit" or
AID_AUDIT.
The log files are located at /data/misc/audit/
The daemon maintains two files at this location:
audit.log and optionally audit.old. On boot (
if the file is non-zero in size), or
when a fixed threshold is hit, the daemon rotates
audit.log to audit.old.
Optionally, if passed the -k option, the daemon polls
dmesg for all lines that contain "audit" and writes
them into the log. After that it continues to operate
as normal, receiving the messages from the netlink
socket.
Change-Id: I5b5037a5a8b39a054213848249afb7808f8b0ffa
Diffstat (limited to 'rootdir')
| -rw-r--r-- | rootdir/init.rc | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/rootdir/init.rc b/rootdir/init.rc index 8bddf31a..d261e4a6 100644 --- a/rootdir/init.rc +++ b/rootdir/init.rc @@ -218,6 +218,7 @@ on post-fs-data # create basic filesystem structure mkdir /data/misc 01771 system misc mkdir /data/misc/adb 02750 system shell + mkdir /data/misc/audit 02750 audit system mkdir /data/misc/bluedroid 0770 bluetooth net_bt_stack mkdir /data/misc/bluetooth 0770 system system mkdir /data/misc/keystore 0700 keystore keystore @@ -453,6 +454,9 @@ service console /system/bin/sh user shell group log +service auditd /system/bin/auditd -k + class main + on property:ro.debuggable=1 start console |