Don't use GID-based capabilities for 'apmanager'. The two daemons launched by 'apmanager', 'hostapd' and 'dnsmasq', already use file capabilities. This means groups |net_admin| and |net_raw| are not needed. Group |inet| is needed for now because current kernels enable Android paranoid networking settings. Once that setting is removed, the group will not be needed anymore but will also be harmless. Bug: 27548062 Change-Id: Ic91cc4d989f4e6961cd54428ce004b17e291b085

commit: 57188eeae6e36334e15f2cec96f68fec330b0f34 [log] [tgz]
author: Jorge Lucangeli Obes <jorgelo@google.com> Tue Mar 08 14:29:49 2016 -0800
committer: Jorge Lucangeli Obes <jorgelo@google.com> Tue Mar 08 14:31:36 2016 -0800
tree: 4eaad6acce1221611a1192004de22f2beefcd462
parent: 9da60744196c3ac74758bea36131d183294f8343 [diff]
diff --git a/apmanager.rc b/apmanager.rc
index b373d57..61902e2 100644
--- a/apmanager.rc
+++ b/apmanager.rc

@@ -6,7 +6,7 @@
 service apmanager /system/bin/apmanager
     class late_start
     user system
-    group system dbus net_admin net_raw
+    group system dbus inet
     disabled
 
 on property:wifi-setup.complete=1
commit	57188eeae6e36334e15f2cec96f68fec330b0f34	[log] [tgz]
author	Jorge Lucangeli Obes <jorgelo@google.com>	Tue Mar 08 14:29:49 2016 -0800
committer	Jorge Lucangeli Obes <jorgelo@google.com>	Tue Mar 08 14:31:36 2016 -0800
tree	4eaad6acce1221611a1192004de22f2beefcd462
parent	9da60744196c3ac74758bea36131d183294f8343 [diff]