Allow wificond to drop privileges after startup

wificond will now change user/group to wifi/wifi after taking control of a particular path in the sysfs. Bug: 29870863 Change-Id: I9ccb23f60a66d6850f3969c364288f8850044fed Test: wificond unit and integration tests pass (cherry picked from commit 8a04a313)

Allow wificond to drop privileges after startup
wificond will now change user/group to wifi/wifi after taking control of a particular path in the sysfs. Bug: 29870863 Change-Id: I9ccb23f60a66d6850f3969c364288f8850044fed Test: wificond unit and integration tests pass (cherry picked from commit 8a04a313)
3c285a28 · Christopher Wiley · Mitchell Wills · baf3cc22 · 3c285a28
Commit 3c285a28 authored 8 years ago by Christopher Wiley Committed by Mitchell Wills 8 years ago
--- a/wificond.te
+++ b/wificond.te
@@ -10,7 +10,9 @@ binder_call(wificond, wpa)
 allow wificond wificond_service:service_manager { add find };
-allow wificond sysfs_wlan_fwpath:file w_file_perms;
+# wificond writes firmware paths to this file.
+# wificond also changes the owership of this file on startup.
+allow wificond sysfs_wlan_fwpath:file { w_file_perms setattr };
 set_prop(wificond, wifi_prop)
 set_prop(wificond, ctl_default_prop)
@@ -29,10 +31,10 @@ r_dir_file(wificond, proc_net)
 # wificond also reads pid files out of this directory
 allow wificond wifi_data_file:dir rw_dir_perms;
 allow wificond wifi_data_file:file create_file_perms;
-# TODO: Remove fowner when wificond runs as the wifi user b/29870863
-#       We need this today, because we need to chmod hostapd/supplicant
+# wificond drops root shortly after starting
-#       files, which are owned by system or wifi (not wificond's root).
+# wificond changes the ownership of some files before dropping root
-allow wificond self:capability { chown fowner };
+allow wificond self:capability { setuid setgid setpcap chown };
 # wificond cleans up sockets created by wpa_supplicant and framework
 allow wificond wpa_socket:dir rw_dir_perms;