Starting March 27, 2025, we recommend using android-latest-release instead of aosp-main to build and contribute to AOSP. For more information, see Changes to AOSP.
Stay organized with collections
Save and categorize content based on your preferences.
Vendors should monitor end user native crash reports. Memory safety bugs
should be treated with urgency as they most often represent an exploitable
vulnerability or user visible instability.
The Android OS manages bug reports using the DropboxManager,
which broadcasts the ACTION_DROPBOX_ENTRY_ADDED
intent when a crash occurs.
Vendors should implement a system app that listens for these broadcasts,
using BroadcastReceiver
and retrieve the crash reports from the DropboxManager.
These should be sent to the vendor's servers for analysis.
Google implements such a mechanism in Google Play Services and monitors
bugs from end user devices. Where permitted by applicable legal and privacy
standards, Google may share a subset of the most frequently occurring bugs with
vendors. However, only a subset of crashes may be shared, and Google strongly
recommends that vendors should be implementing their own end user bug tracking
as described above.
Content and code samples on this page are subject to the licenses described in the Content License. Java and OpenJDK are trademarks or registered trademarks of Oracle and/or its affiliates.
Last updated 2025-06-12 UTC.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-06-12 UTC."],[],[],null,["# End user bug reports\n\nVendors should monitor end user native crash reports. Memory safety bugs\nshould be treated with urgency as they most often represent an exploitable\nvulnerability or user visible instability.\nThe Android OS manages bug reports using the [DropboxManager](https://developer.android.com/reference/android/os/DropBoxManager),\nwhich broadcasts the [ACTION_DROPBOX_ENTRY_ADDED](https://developer.android.com/reference/android/os/DropBoxManager#ACTION_DROPBOX_ENTRY_ADDED)\nintent when a crash occurs.\n\n\nVendors should implement a system app that listens for these broadcasts,\nusing [BroadcastReceiver](https://developer.android.com/reference/android/content/BroadcastReceiver)\nand retrieve the crash reports from the [DropboxManager](https://developer.android.com/reference/android/os/DropBoxManager#getNextEntry(java.lang.String,%20long)).\nThese should be sent to the vendor's servers for analysis.\n| **Important:** Depending on the local privacy rules and regulations the vendor might have to request user consent for sending the bug crashes off device for processing.\n\n\nGoogle implements such a mechanism in Google Play Services and monitors\nbugs from end user devices. Where permitted by applicable legal and privacy\nstandards, Google may share a subset of the most frequently occurring bugs with\nvendors. However, only a subset of crashes may be shared, and Google strongly\nrecommends that vendors should be implementing their own end user bug tracking\nas described above."]]
