From 14e6dd3f806deebb794c1d7eaba0ad8aac663444 Mon Sep 17 00:00:00 2001
From: Calin Juravle <calin@google.com>
Date: Thu, 23 May 2019 13:14:35 -0700
Subject: Use conservative permissions when creating files in ART

Use 644 permissions by default so that only the owner has write-rights.

Bug: 130821293
Test: host run-test & gtest
Merged-In: I09eab9749d1ce5872ecaf7d5a80fc45c9c708853
Change-Id: Ic4dae399a5bfe862aff3d8614c45b38044d805db
(cherry picked from commit d224e964bd0de231c72008547b0246a2f70048ee)
---
 runtime/os_linux.cc | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/runtime/os_linux.cc b/runtime/os_linux.cc
index 0add4965d1..ae86a2f5b1 100644
--- a/runtime/os_linux.cc
+++ b/runtime/os_linux.cc
@@ -55,7 +55,8 @@ File* OS::OpenFileWithFlags(const char* name, int flags, bool auto_flush) {
   CHECK(name != nullptr);
   bool read_only = ((flags & O_ACCMODE) == O_RDONLY);
   bool check_usage = !read_only && auto_flush;
-  std::unique_ptr<File> file(new File(name, flags, 0666, check_usage));
+  std::unique_ptr<File> file(
+      new File(name, flags, S_IRUSR | S_IWUSR | S_IRGRP | S_IROTH, check_usage));
   if (!file->IsOpened()) {
     return nullptr;
   }
-- 
cgit v1.2.3