Page MenuHomePhabricator

Don't create directories as `0777` by default.
ClosedPublic

Authored by joshuaspence on Jun 17 2014, 2:59 AM.
Tags
None
Referenced Files
F14722204: D9594.id23008.diff
Fri, Jan 17, 11:21 PM
Unknown Object (File)
Fri, Jan 17, 3:19 AM
Unknown Object (File)
Sun, Jan 12, 4:09 AM
Unknown Object (File)
Sun, Jan 5, 10:38 AM
Unknown Object (File)
Wed, Jan 1, 9:39 PM
Unknown Object (File)
Tue, Dec 24, 2:53 AM
Unknown Object (File)
Dec 19 2024, 12:51 AM
Unknown Object (File)
Dec 15 2024, 1:53 PM
Subscribers

Details

Summary

Currently, Filesystem::createDirectory('...') will create a directory with (rather open) 0777 permissions (regardless of the return value of umask()). In particular, the .git/arc directory (or similar directory for another VCS) will have 0777 permissions.

Test Plan

Removed the .git/arc directory and ran arc lint. Verified that the .git/arc directory had more restrictive permissions than 0777.

Diff Detail

Repository
rPHU libphutil
Branch
chmod
Lint
Lint Errors
SeverityLocationCodeMessage
Errorsrc/filesystem/Filesystem.php:403XHP31Use Of PHP 5.3 Features
Errorsrc/filesystem/Filesystem.php:559XHP31Use Of PHP 5.3 Features
Unit
Tests Passed
Build Status
Buildable 1167
Build 1167: [Placeholder Plan] Wait for 30 Seconds

Event Timeline

joshuaspence retitled this revision from to Don't create directories as `0777` by default..
joshuaspence updated this object.
joshuaspence edited the test plan for this revision. (Show Details)
joshuaspence added a reviewer: epriestley.

I don't think we should trust the system umask. This will lead to inexplicable failure if the umask is set incorrectly.

How about defaulting to mode 0755 (equivalent to umask 0022) instead?

(Or, is there any reason that a system might reasonably have a different umask and want it preserved?)

I think supporting null to mean "trust system umask" is also reasonable, but that this shouldn't be the default.

joshuaspence edited edge metadata.
  • Create directories as 0755 by default.
epriestley edited edge metadata.
This revision is now accepted and ready to land.Jun 17 2014, 4:53 PM