Merge "Allow update_engine to create executable files."

commit: 145956092aa11984b55faa56865648f871b52fcd [log] [tgz]
author: Alex Deymo <deymo@google.com> Fri Sep 18 00:19:23 2015 +0000
committer: Gerrit Code Review <noreply-gerritcodereview@google.com> Fri Sep 18 00:19:23 2015 +0000
tree: 9b734b9da3b4f0d1a5c2ac238490f4bccefd6385
parent: 06ae78655e62595d3c3e0fd234bd182d6afac05e [diff]
parent: a9fea846fce755062537320ad5126a40078409fb [diff]
diff --git a/main.cc b/main.cc
index 0da9fe2..516c72c 100644
--- a/main.cc
+++ b/main.cc

@@ -114,10 +114,11 @@
   LOG(INFO) << "Chrome OS Update Engine starting";
 
   // Ensure that all written files have safe permissions.
-  // This is a mask, so we _block_ execute for the owner, and ALL
-  // permissions for other users.
+  // This is a mask, so we _block_ all permissions for the group owner and other
+  // users but allow all permissions for the user owner. We allow execution
+  // for the owner so we can create directories.
   // Done _after_ log file creation.
-  umask(S_IXUSR | S_IRWXG | S_IRWXO);
+  umask(S_IRWXG | S_IRWXO);
 
   chromeos_update_engine::UpdateEngineDaemon update_engine_daemon;
   int exit_code = update_engine_daemon.Run();
commit	145956092aa11984b55faa56865648f871b52fcd	[log] [tgz]
author	Alex Deymo <deymo@google.com>	Fri Sep 18 00:19:23 2015 +0000
committer	Gerrit Code Review <noreply-gerritcodereview@google.com>	Fri Sep 18 00:19:23 2015 +0000
tree	9b734b9da3b4f0d1a5c2ac238490f4bccefd6385
parent	06ae78655e62595d3c3e0fd234bd182d6afac05e [diff]
parent	a9fea846fce755062537320ad5126a40078409fb [diff]