[PATCH] Change executable permissions for Android

Dmitry Shmidt dimitrysh
Thu Feb 24 17:17:21 PST 2011


Signed-off-by: Dmitry Shmidt <dimitrysh at google.com>
---
 src/utils/os_unix.c |   29 +++++++++++++++++++++++++++++
 1 files changed, 29 insertions(+), 0 deletions(-)

diff --git a/src/utils/os_unix.c b/src/utils/os_unix.c
index c696fae..e1c13bb 100644
--- a/src/utils/os_unix.c
+++ b/src/utils/os_unix.c
@@ -16,6 +16,12 @@

 #include "os.h"

+#ifdef ANDROID
+#include <linux/capability.h>
+#include <linux/prctl.h>
+#include <private/android_filesystem_config.h>
+#endif
+
 #ifdef WPA_TRACE

 #include "common.h"
@@ -232,6 +238,29 @@ char * os_rel2abs_path(const char *rel_path)

 int os_program_init(void)
 {
+#ifdef ANDROID
+	/* We ignore errors here since errors are normal if we
+	 * are already running as non-root.
+	 */
+	gid_t groups[] = { AID_INET, AID_WIFI, AID_KEYSTORE };
+	struct __user_cap_header_struct header;
+	struct __user_cap_data_struct cap;
+
+	setgroups(sizeof(groups)/sizeof(groups[0]), groups);
+
+	prctl(PR_SET_KEEPCAPS, 1, 0, 0, 0);
+
+	setgid(AID_WIFI);
+	setuid(AID_WIFI);
+
+	header.version = _LINUX_CAPABILITY_VERSION;
+	header.pid = 0;
+	cap.effective = cap.permitted =
+		(1 << CAP_NET_ADMIN) | (1 << CAP_NET_RAW);
+	cap.inheritable = 0;
+	capset(&header, &cap);
+#endif
+
 #ifdef WPA_TRACE
 	dl_list_init(&alloc_list);
 #endif /* WPA_TRACE */
-- 
1.7.3.1



More information about the Hostap mailing list