The list below is taken from the XPrivacy documentation.
- Bold means that XPrivacyLua supports the restriction
Strike throughmeans that XPrivacyLua won't support the restriction
Before asking questions, please read this FAQ.
- Accounts
return an empty account listsee remark belowreturn an empty account type listsee remark below- return fake account info
return empty authorization tokensuser choice- return an empty list of synchronizations
Since account info can be faked, it is not really necessary to hide the account list, which can also cause apps to crash.
- Browser
return an empty bookmark listsee remark belowreturn an empty download listsee remark belowreturn empty search historysee remark below
Different browsers (stock, Chrome, Firefox, etc) have different content providers, so this is app specific. Browser data is generally not accessible on recent Android versions anymore.
- Calendar
- return an empty calendar
- Calling
prevent calls from being placeduser choiceprevent SIP calls from being placeduser choice- prevent SMS messages from being sent
- prevent MMS messages from being sent
- prevent data messages from being sent
- return an empty call log
- Clipboard
- prevent paste from clipboard (both manual and from an application)
- Contacts
- return an empty contact list
- content://com.android.contacts
- content://com.android.contacts/contacts
- content://com.android.contacts/data
- content://com.android.contacts/phone_lookup
- content://com.android.contacts/profile
- SIM card
- return an empty contact list
- Dictionary
return an empty user dictionarynot privacy related
- E-mail
return an empty list of accounts, e-mails, etc (standard)see remark belowreturn an empty list of accounts, e-mails, etc (Gmail)see remark below
Information about e-mail accounts and messages depends on the installed e-mail app and is therefore app specific. E-mail data is generally not accessible on recent Android versions anymore.
- Identification
- return a fake Android ID
- return a fake device serial number
return a fake host namenot available on recent Android versions anymore- return a fake Google services framework ID
return file not found for folder /procwill result in crashes- return a fake Google advertising ID
return a fake system property CID (Card Identification Register = SD-card serial number)tracking relatedreturn file not found for /sys/block/.../cidwill result in crashesreturn file not found for /sys/class/.../cidwill result in crashesreturn a fake input device descriptortracking relatedreturn a fake USB ID/name/numbertracking relatedreturn a fake Cast device ID / IP addresstracking related
- Internet
revoke permission to internet accesswill result in crashesrevoke permission to internet administrationwill result in crashesrevoke permission to internet bandwidth statistics/administrationwill result in crashesrevoke permission to VPN serviceswill result in crashesrevoke permission to Mesh networking serviceswill result in crashes- return fake extra info
return fake disconnected statenot privacy relatedreturn fake supplicant disconnected statenot privacy related
If you want to fake offline state, see the example definitions about how this can be done with a custom restriction definition.
- IPC
Binderwill result in crashesReflectionwill result in crashes
- Location
- return a random or set location (also for Google Play services)
- return empty cell location
- return an empty list of (neighboring) cell info
- prevents geofences from being set (also for Google Play services)
- prevents proximity alerts from being set
- prevents sending NMEA data to an application
- prevent phone state from being sent to an application
- Cell info changed
- Cell location changed
prevent sending extra commands (aGPS data)not privacy related- return an empty list of Wi-Fi scan results
- prevent activity recognition
- Media
- prevent recording audio
- prevent taking pictures
- prevent recording video
- you will be notified if an application tries to perform any of these actions
- Messages
- return an empty SMS/MMS message list
- return an empty list of SMS messages stored on the SIM (ICC SMS)
- return an empty list of voicemail messages
- Network
return fake IP'ssee this FAQreturn fake MAC's (network, Wi-Fi, bluetooth)see remark below- return fake BSSID/SSID
- return an empty list of Wi-Fi scan results
- return an empty list of configured Wi-Fi networks
return an empty list of bluetooth adapters/devicestracking related
MAC addresses are not available anymore on supported Android versions.
- NFC
prevent receiving NFC adapter state changesuser choiceprevent receiving NDEF discovereduser choiceprevent receiving TAG discovereduser choiceprevent receiving TECH discovereduser choice
- Notifications
- prevent applications from receiving statusbar notifications (Android 4.3+)
prevent C2DM messagesuse a firewall and block xxx.mtalk.google.com:yyy for Google Play services
- Overlay
prevent draw over / on topwill result in crashes
- Phone
- return a fake own/in/outgoing/voicemail number
- return a fake subscriber ID (IMSI for a GSM phone)
- return a fake phone device ID (IMEI): 000000000000000
return a fake phone type: GSM (matching IMEI)not privacy relatedreturn a fake network type: unknownnot privacy relatedreturn an empty ISIM domainnot available in user space- return an empty IMPI/IMPU
- return a fake MSISDN
- return fake mobile network info
- Country: XX
- Operator: 00101 (test network)
- Operator name: fake
- return fake SIM info
- Country: XX
- Operator: 00101
- Operator name: faket
- Serial number (ICCID): fake
return empty APN listnot privacy relatedreturn no currently used APNnot privacy relatedprevent phone state from being sent to an applicationnot privacy relatedCall forwarding indicationCall state changed (ringing, off-hook)Mobile data connection state change / being usedMessage waiting indicationService state changed (service/no service)Signal level changed
- return an empty group identifier level 1
- Sensors
- return an empty default sensor
- return an empty list of sensors
- restrict individual sensors: might be implemented as pro feature
- acceleration
- gravity
- heartrate
- humidity
- light
- magnetic
- motion
- orientation
- pressure
- proximity
- rotation
- step
- temperature
- Shell
return I/O exception for Linux shellwill result in crashesreturn I/O exception for Superuser shellwill result in crashesreturn unsatisfied link error for load/loadLibrarywill result in crashes
- Storage
revoke permission to the media storagewill result in crashesrevoke permission to the external storage (SD-card)will result in crashesrevoke permission to MTPwill result in crashesreturn fake unmounted statenot privacy relatedprevent access to provided assets (media, etc.)will result in crashes
The supported Android versions provide the Storage Access Framework, which apps should use to open files instead of opening files directly. Moreover, the supported Android versions provide runtime permissions, so you can always choose to not grant storage permission to an app.
If you want to confine apps to their own folder, see the example definitions about how this can be done with a custom restriction definition.
- System
- return an empty list of installed applications
- return an empty list of recent tasks
- return an empty list of running processes
- return an empty list of running services
- return an empty list of running tasks
- return an empty list of widgets
return an empty list of applications (provider)not available on recent Android versions anymore- prevent package add, replace, restart, and remove notifications
- View
prevent links from opening in the browsernot privacy related- return fake browser user agent string (WebView)
- Mozilla/5.0 (Linux; U; Android; en-us) AppleWebKit/999+ (KHTML, like Gecko) Safari/999.9