From 25024901781db197880fc398e43c76008ecde524 Mon Sep 17 00:00:00 2001
From: Christopher Wiley <wiley@google.com>
Date: Tue, 12 Jul 2016 14:30:21 -0700
Subject: [PATCH] Tag hostapd binary with CAP_NET_ADMIN | CAP_NET_RAW

Bug: 30041118
Change-Id: I14d1fd601fc4bce12c563a2004e91bd8ba0f42c3
Test: hostapd can start as the wifi user with these capabilities.
---
 libcutils/fs_config.c | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/libcutils/fs_config.c b/libcutils/fs_config.c
index 08db7dcf8..e68171808 100644
--- a/libcutils/fs_config.c
+++ b/libcutils/fs_config.c
@@ -145,6 +145,10 @@ static const struct fs_path_config android_files[] = {
     /* Support FIFO scheduling mode in SurfaceFlinger. */
     { 00755, AID_SYSTEM,    AID_GRAPHICS,     CAP_MASK_LONG(CAP_SYS_NICE), "system/bin/surfaceflinger" },
 
+    /* Support hostapd administering a network interface. */
+    { 00755, AID_WIFI,      AID_WIFI,     CAP_MASK_LONG(CAP_NET_ADMIN) |
+                                          CAP_MASK_LONG(CAP_NET_RAW),    "system/bin/hostapd" },
+
     { 00750, AID_ROOT,      AID_ROOT,      0, "system/bin/uncrypt" },
     { 00750, AID_ROOT,      AID_ROOT,      0, "system/bin/install-recovery.sh" },
     { 00755, AID_ROOT,      AID_SHELL,     0, "system/bin/*" },