property_service: log pid,uid and gid of setprop client When auditing setprop denials, it is often unclear of who the process is in a multi-process domain. To help identify the invoker, log the pid, uid, and gid of the caller. Before: avc: denied { set } for property=wifi.xxx ... After: avc: denied { set } for property=wifi.xxx pid=30691 uid=123 gid=345 ... Change-Id: I5cdcb3d18fbd52e0987b5e1497b9f6620c6c742a Signed-off-by: William Roberts <william.c.roberts@intel.com>

commit: d7aea443d9bc0b1f37a2c31d0d476d61ff41fb66 [log] [tgz]
author: William Roberts <william.c.roberts@intel.com> Thu Oct 01 16:03:47 2015 -0700
committer: William Roberts <william.c.roberts@intel.com> Mon Oct 05 11:39:56 2015 -0700
tree: cc671c413d24b1e4169cbafc942ac29743ffc696
parent: bd4f52b2e2d1f03e77e2bef7b40865b631c8d115 [diff] [blame]
diff --git a/init/property_service.h b/init/property_service.h
index 51d7404..1a48fb1 100644
--- a/init/property_service.h
+++ b/init/property_service.h

@@ -18,9 +18,15 @@
 #define _INIT_PROPERTY_H
 
 #include <stddef.h>
+#include <sys/socket.h>
 #include <sys/system_properties.h>
 #include <string>
 
+struct property_audit_data {
+    ucred *cr;
+    const char* name;
+};
+
 extern void property_init(void);
 extern void property_load_boot_defaults(void);
 extern void load_persist_props(void);
commit	d7aea443d9bc0b1f37a2c31d0d476d61ff41fb66	[log] [tgz]
author	William Roberts <william.c.roberts@intel.com>	Thu Oct 01 16:03:47 2015 -0700
committer	William Roberts <william.c.roberts@intel.com>	Mon Oct 05 11:39:56 2015 -0700
tree	cc671c413d24b1e4169cbafc942ac29743ffc696
parent	bd4f52b2e2d1f03e77e2bef7b40865b631c8d115 [diff] [blame]