FORUMS

[5.0+][ROOT][3.4.0] AFWall+ IPTables Firewall [9 FEB 2020]

1,465 posts
Thanks Meter: 5,039
 
By ukanth, Recognized Developer on 26th October 2012, 05:41 PM
Post Reply Email Thread
11th October 2017, 01:58 PM |#4021  
bartito's Avatar
Inactive Recognized Developer
Thanks Meter: 1,753
 
Donate to Me
More
I attach a screenshot that shows the issue.
Note that I have enabled the "Fix the data leak at boot" at 14:54:34 and the only that appears in the afwall log is the issue with chmod command

EDIT:

I post a logcat portion...

Code:
10-11 15:00:12.527  1434  1434 I DeviceIdleController: updateChargingLocked: charging=true
10-11 15:00:12.527  1434  1434 I DeviceIdleController: becomeActiveLocked, reason = charging
10-11 15:00:12.529  2899  2943 D HeadsetStateMachine: Disconnected process message: 10, size: 0
10-11 15:00:12.529  2899  2943 D HeadsetStateMachine: Enter processIntentBatteryChanged()
10-11 15:00:12.529  2899  2943 D HeadsetStateMachine: Exit processIntentBatteryChanged()
10-11 15:00:12.529  2899  2943 D HeadsetStateMachine: Exit Disconnected processMessage() 
10-11 15:00:12.531  2233  2233 I BatteryController:  fireBatteryLevelChanged mLevel:74 PluggedIn:true Charging:true Fastcharge:false show:false style:0
10-11 15:00:12.854  2899  2899 D HeadsetPhoneState: Enter onSignalStrengthsChanged
10-11 15:00:12.854  2899  2899 D HeadsetPhoneState: sendDeviceStateChanged. mService=1 mSignal=5 mRoam=0 mBatteryCharge=3
10-11 15:00:12.855  2899  2899 D HeadsetPhoneState: Exit onSignalStrengthsChanged
10-11 15:00:12.855  2899  2943 D HeadsetStateMachine: Disconnected process message: 11, size: 0
10-11 15:00:12.854  2233  2565 D NetworkController.MobileSignalController(1): onSignalStrengthsChanged signalStrength=SignalStrength: 99 0 -120 -160 -120 -1 -1 22 -97 -9 182 2147483647 2147483647 4 4 gsm|lte level=4 voicelevel=4 datalevel=4
10-11 15:00:12.861  2233  2565 I NetworkController.MobileSignalController(1):  showDisableIcon:false
10-11 15:00:12.868  2233  2565 D NetworkController.MobileSignalController(1): getSlotProvisionStatus slotId: 0, status = 1
10-11 15:00:15.084  2233  2565 D NetworkController.MobileSignalController(2): onSignalStrengthsChanged signalStrength=SignalStrength: 14 0 -120 -160 -120 -1 -1 99 2147483647 2147483647 2147483647 2147483647 2147483647 4 4 gsm|lte level=4 voicelevel=4 datalevel=4
10-11 15:00:15.087  2233  2565 I NetworkController.MobileSignalController(2):  showDisableIcon:false
10-11 15:00:15.089  2233  2565 D NetworkController.MobileSignalController(2): getSlotProvisionStatus slotId: 1, status = 1
10-11 15:00:15.143 19916 19916 I AFWall  : Found init.d/su.d module support under /system/etc/init.d
10-11 15:00:15.143   859   859 D AudioPolicyManagerCustom: getOutputForDevice() returns output 13 flag 2
10-11 15:00:15.144   859   859 D AudioPolicyManagerCustom: getOutputForDevice() returns output 13 flag 2
10-11 15:00:15.144   859  1066 D APM_AudioPolicyManager: startOutput() output 13, stream 1, session 297
10-11 15:00:15.144   859  1066 D AudioPolicyManagerCustom: getNewOutputDevice() selected device 2
10-11 15:00:15.144   859  1066 D APM_AudioPolicyManager: setOutputDevice() device 0002 delayMs 0
10-11 15:00:15.147   859  1194 D audio_hw_primary: out_set_parameters: enter: usecase(1: low-latency-playback) kvpairs: routing=2
10-11 15:00:15.147   859  1194 D audio_hw_extn: audio_extn_set_anc_parameters: anc_enabled:0
10-11 15:00:15.147   859  1194 D audio_hw_spkr_prot: audio_extn_fbsp_set_parameters: Speaker protection disabled
10-11 15:00:15.148   859  1066 D APM_AudioPolicyManager: startOutput()--
10-11 15:00:15.152   859  1194 D audio_hw_primary: start_output_stream: enter: stream(0xe8353780)usecase(1: low-latency-playback) devices(0x2)
10-11 15:00:15.153   859  1194 D audio_hw_primary: select_devices for use case (low-latency-playback)
10-11 15:00:15.153   859  1194 D audio_hw_primary: select_devices: out_snd_device(2: speaker) in_snd_device(0: )
10-11 15:00:15.153   859  1194 I msm8974_platform: platform_check_and_set_codec_backend_cfg:becf: afe: bitwidth 24, samplerate 48000 channels 2, backend_idx 0 usecase = 1 device (speaker)
10-11 15:00:15.153   859  1194 D msm8974_platform: platform_split_snd_device: snd_device(2) new_snd_devices (speaker)
10-11 15:00:15.153   859  1194 I msm8974_platform: platform_check_and_set_codec_backend_cfg: new_snd_devices[0] is 2
10-11 15:00:15.153   859  1194 I msm8974_platform: platform_check_codec_backend_cfg:becf: afe: bitwidth 24, samplerate 48000 channels 2, backend_idx 0 usecase = 1 device (speaker)
10-11 15:00:15.153   859  1194 D msm8974_platform: platform_check_codec_backend_cfg:becf: afe: reset bitwidth to 24 (based on supported value for this platform)
10-11 15:00:15.153   859  1194 D msm8974_platform: platform_check_codec_backend_cfg:becf: afe: playback on codec device not supporting native playback set default Sample Rate(48k)
10-11 15:00:15.153   859  1194 I msm8974_platform: platform_check_codec_backend_cfg:becf: afe: Codec selected backend: 0 updated bit width: 24 and sample rate: 48000
10-11 15:00:15.153   859  1194 D audio_hw_primary: check_usecases_codec_backend:becf: force routing 0
10-11 15:00:15.153   859  1194 E msm8974_platform: platform_check_backends_match: Invalid snd_device = 
10-11 15:00:15.153   859  1194 D audio_hw_primary: check_usecases_codec_backend:becf: (44) check_usecases curr device: speaker, usecase device: backends match 0
10-11 15:00:15.153   859  1194 D audio_hw_primary: check_usecases_codec_backend:becf: check_usecases num.of Usecases to switch 0
10-11 15:00:15.153   859  1194 D hardware_info: hw_info_append_hw_type : device_name = speaker
10-11 15:00:15.153   859  1194 D msm8974_platform: platform_split_snd_device: snd_device(2) new_snd_devices (speaker)
10-11 15:00:15.153   859  1194 D audio_hw_primary: enable_snd_device: snd_device(2: speaker)
10-11 15:00:15.153   859  1194 I soundtrigger: audio_extn_sound_trigger_update_device_status: device 0x2 of type 0 for Event 1, with Raise=0
10-11 15:00:15.153   859  1194 I audio_hw_utils: audio_extn_utils_update_stream_output_app_type_cfg Allowing 24-bit playback on speaker ONLY at default sampling rate
10-11 15:00:15.153   859  1194 D soundtrigger: audio_extn_sound_trigger_update_stream_status: uc_id 1 of type 0 for Event 3, with Raise=0
10-11 15:00:15.153   859  1194 D audio_hw_utils: audio_extn_utils_send_app_type_cfg: usecase->out_snd_device speaker
10-11 15:00:15.154   859  1194 D msm8974_platform: platform_split_snd_device: snd_device(2) new_snd_devices (speaker)
10-11 15:00:15.154   859  1194 I audio_hw_utils: send_app_type_cfg_for_device PLAYBACK app_type 69937, acdb_dev_id 15, sample_rate 48000, snd_device_be_idx 39
10-11 15:00:15.155   859  1194 D msm8974_platform: platform_split_snd_device: snd_device(2) new_snd_devices (speaker)
10-11 15:00:15.155   859  1194 D msm8974_platform: adev->app_recoder_type = -1, acdb_dev_type = 1, snd_device = 2, mode = 0
10-11 15:00:15.155   859  1194 D ACDB-LOADER: ACDB -> send_audio_cal, acdb_id = 15, path = 0, app id = 0x11131, sample rate = 48000
10-11 15:00:15.155   859  1194 D ACDB-LOADER: ACDB -> ACDB_CMD_GET_AUDPROC_GAIN_DEP_STEP_TABLE, vol index 5
10-11 15:00:15.155   859  1194 D ACDB-LOADER: ACDB -> AUDIO_SET_VOL_CAL cal type = 12
10-11 15:00:15.155   859  1194 D ACDB-LOADER: ACDB -> audstrm_cal->cal_type.cal_data.cal_size = 16
10-11 15:00:15.155   859  1194 D ACDB-LOADER: ACDB -> GET_AFE_TOPOLOGY_ID for adcd_id 15, Topology Id 1025e
10-11 15:00:15.155   859  1194 D ACDB-LOADER: ACDB -> send_hw_delay : acdb_id = 15 path = 0
10-11 15:00:15.155   859  1194 D audio_hw_primary: enable_audio_route: apply mixer and update path: low-latency-playback quat_i2s
10-11 15:00:15.157   859  1194 D audio_hw_primary: select_devices: done
10-11 15:00:15.160   859  1194 D msm8974_platform: platform_set_channel_map mixer_ctl_name:Playback Channel Map13
10-11 15:00:15.160   859  1194 D msm8974_platform: platform_set_channel_map: set mapping(1 2 0 0 0 0 0 0) for channel:2
10-11 15:00:15.185   859  1194 D audio_hw_primary: start_output_stream: exit
10-11 15:00:15.185   681  3093 E ANDR-PERF-RESOURCEQS: Failed to reset optimization [3, 0]
10-11 15:00:15.222   582   582 W auditd  : type=1400 4173796E635461736B202334"RootToolsMounts""sda13"
10-11 15:00:15.237   582   582 W auditd  : type=1400 4173796E635461736B202334"RootToolsMounts""sda13"
10-11 15:00:15.252   582   582 W auditd  : type=1400 4173796E635461736B202334"RootToolsMounts""sda13"
10-11 15:00:15.272 19916 19916 I AFWall  : command 'chmod 755 /system/etc/init.d' exited with status 1
10-11 15:00:15.272 19916 19916 I AFWall  : Output:
10-11 15:00:15.272 19916 19916 I AFWall  : chmod: chmod '/system/etc/init.d' to 40755: Read-only file system
10-11 15:00:15.367   859  1066 D APM_AudioPolicyManager: stopOutput() output 13, stream 1, session 297
10-11 15:00:15.367   859  1066 D AudioPolicyManagerCustom: getNewOutputDevice() selected device 0
10-11 15:00:15.367   859  1066 D APM_AudioPolicyManager: setOutputDevice() device 0000 delayMs 96
10-11 15:00:15.438   582   582 W auditd  : type=1400 4173796E635461736B202334"RootToolsMounts""sda13"
10-11 15:00:15.452   582   582 W auditd  : type=1400 4173796E635461736B202334"RootToolsMounts""sda13"
10-11 15:00:15.468   582   582 W auditd  : type=1400 4173796E635461736B202334"RootToolsMounts""sda13"
10-11 15:00:15.468 19916 19916 I AFWall  : Found init.d/su.d module support under /system/etc/init.d
10-11 15:00:15.468 19916 19916 I AFWall  : Found init.d/su.d module support under /system/etc/init.d
10-11 15:00:15.478 20352 20352 D AndroidRuntime: >>>>>> START com.android.internal.os.RuntimeInit uid 0 <<<<<<
10-11 15:00:15.480 20352 20352 D AndroidRuntime: CheckJNI is OFF
10-11 15:00:15.542 20352 20352 D ICU     : No timezone override file found: /data/misc/zoneinfo/current/icu/icu_tzdata.dat
10-11 15:00:15.562 20352 20352 I Radio-JNI: register_android_hardware_Radio DONE
10-11 15:00:15.572 20352 20352 D AndroidRuntime: Calling main entry com.android.commands.am.Am
10-11 15:00:15.577  1434  1496 D CompatibilityInfo: mCompatibilityFlags - 0
10-11 15:00:15.577  1434  1496 D CompatibilityInfo: applicationDensity - 420
10-11 15:00:15.577  1434  1496 D CompatibilityInfo: applicationScale - 1.0
10-11 15:00:15.598 20352 20352 D AndroidRuntime: Shutting down VM
10-11 15:00:15.801  1434  1496 I ActivityManager: Waited long enough for: ServiceRecord{bda58b5 u0 com.google.android.googlequicksearchbox/com.google.android.apps.gsa.search.core.service.SearchService}
10-11 15:00:17.621  1434  1434 W WindowManager: Attempted to remove non-existing token: [email protected]
Quote:
Originally Posted by ukanth

It should be mounted before chmod

Ref:
https://github.com/ukanth/afwall/blo...ment.java#L120

Attached Thumbnails
Click image for larger version

Name:	Screenshot_20171011-145501.jpg
Views:	380
Size:	220.5 KB
ID:	4299550  
The Following User Says Thank You to bartito For This Useful Post: [ View ] Gift bartito Ad-Free
11th October 2017, 08:54 PM |#4022  
Member
Thanks Meter: 20
 
More
Hello,

I'm trying to write some custom rules to allow a specific app to access to a limited number of URL/ IP/networks. I have checked examples but this is not user friendly for people that do not understand iptables of Linux, like me. These rules should apply regardless of connection type ( WiFi or cellular).

If anybody could help me...

I don't know if it was already discussed but it could be useful to have this kind of feature directly in the interface (like a whitelist or blacklist by app), without to have to create custom rules.

Thanks!
15th October 2017, 11:04 AM |#4023  
ukanth's Avatar
OP Recognized Developer
Thanks Meter: 5,039
 
Donate to Me
More
Hello All,

After careful analysis and testing, I decided not to rewrite the way rules are being applied due to lot of under hood changes required. Instead added few enhancements. Now applying rules from menu will show how many rules are getting applied with progress status. Also when adding/removing few rules , it will apply only those related rules instead of full apply.

Also fixed couple of bugs and enhancements. You can get the full changelog from https://github.com/ukanth/afwall/blob/beta/Changelog.md

This is BETA Version which is not released on playstore. I have been using this for past week and it's stable. But there might be bugs which I haven't encountered. Please test it and report it in case of any issues.

Also I have been following XPrivacy thread on the decision by it's author. Just as FYI, I might fix it for my own usage when I update to nougat, I will share it here if anybody uses it here.

BETA Link - https://www.dropbox.com/s/isvi413qyx...ESTER.apk?dl=0
The Following 41 Users Say Thank You to ukanth For This Useful Post: [ View ]
15th October 2017, 11:34 AM |#4024  
robotnikz's Avatar
Senior Member
Thanks Meter: 55
 
More
Quote:
Originally Posted by ukanth

Hello All,

After careful analysis and testing, I decided not to rewrite the way rules are being applied due to lot of under hood changes required. Instead added few enhancements. Now applying rules from menu will show how many rules are getting applied with progress status. Also when adding/removing few rules , it will apply only those related rules instead of full apply.

Also fixed couple of bugs and enhancements. You can get the full changelog from https://github.com/ukanth/afwall/blob/beta/Changelog.md

This is BETA Version which is not released on playstore. I have been using this for past week and it's stable. But there might be bugs which I haven't encountered. Please test it and report it in case of any issues.

Also I have been following XPrivacy thread on the decision by it's author. Just as FYI, I might fix it for my own usage when I update to nougat, I will share it here if anybody uses it here.

BETA Link - https://www.dropbox.com/s/isvi413qyx...ESTER.apk?dl=0

Thank you, are the problems with Oreo solved?

Gesendet von meinem Pixel mit Tapatalk
15th October 2017, 11:41 AM |#4025  
ukanth's Avatar
OP Recognized Developer
Thanks Meter: 5,039
 
Donate to Me
More
Quote:
Originally Posted by robotnikz

Thank you, are the problems with Oreo solved?

Gesendet von meinem Pixel mit Tapatalk

I've tested with Oreo with LineageOS 15, but not able to simulate Pixel like behavior. But you have test it and report it with rules ( iptables -S & show rules-> error report )
The Following 5 Users Say Thank You to ukanth For This Useful Post: [ View ]
15th October 2017, 04:14 PM |#4026  
Senior Member
Thanks Meter: 113
 
More
Deleted
The Following 10 Users Say Thank You to user2k10 For This Useful Post: [ View ] Gift user2k10 Ad-Free
16th October 2017, 10:37 AM |#4027  
Senior Member
Thanks Meter: 1,193
 
More
Quote:
Originally Posted by ukanth

...Also I have been following XPrivacy thread on the decision by it's author. Just as FYI, I might fix it for my own usage when I update to nougat, I will share it here if anybody uses it here...


That would be AMAZING!!!! I'm stuck on M because of this.
The Following User Says Thank You to Droidphilev For This Useful Post: [ View ] Gift Droidphilev Ad-Free
16th October 2017, 10:58 AM |#4028  
Senior Member
Thanks Meter: 194
 
More
Quote:
Originally Posted by ukanth

Also I have been following XPrivacy thread on the decision by it's author. Just as FYI, I might fix it for my own usage when I update to nougat, I will share it here if anybody uses it here.

This will be great if you will update XPrivacy for the Android community.
The Following User Says Thank You to AndroTech For This Useful Post: [ View ] Gift AndroTech Ad-Free
16th October 2017, 11:00 AM |#4029  
OSheden's Avatar
Senior Member
Thanks Meter: 211
 
More
+1 for XPrivacy. I really miss this amazing app!
Many many (many) Android users would be happy
16th October 2017, 12:46 PM |#4030  
Orphee's Avatar
Senior Member
Thanks Meter: 747
 
More
+10000 for Xprivacy
16th October 2017, 12:58 PM |#4031  
Senior Member
Thanks Meter: 119
 
More
Hope xprivacy will go on with ukanth 👍

Sent from my Redmi Note 3 using XDA-Developers Legacy app
Post Reply Subscribe to Thread

Tags
block internet, droidwall, firewall, iptables, security

Guest Quick Reply (no urls or BBcode)
Message:
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes