add CLOEXECs Ensure that open file descriptors do not leak across an execve() boundary by setting the O_CLOEXEC flag on them. Leaking file descriptors to exec()d processes may prevent file descriptors from being properly freed, introduce security bugs if the child process is untrusted, and causes problems for systems like SELinux which perform strict checking of passed file descriptors. Bug: 112357170 Test: cts-tradefed run cts -m CtsRenderscriptTestCases Change-Id: I91107f5712c2f5b4648b3dc45d6cbbc97d13762d

commit: 95e1702d1bd98ccb12802ca20087b54dcf649f97 [log] [tgz]
author: Nick Kralevich <nnk@google.com> Tue Dec 11 14:35:57 2018 -0800
committer: Nick Kralevich <nnk@google.com> Tue Dec 11 14:35:57 2018 -0800
tree: f9f1a2614729411c94c0487272ee4165c9af6ef0
parent: 6d20a8536dbfb49888711970098c998caf58acfe [diff] [blame]
diff --git a/script_api/Specification.cpp b/script_api/Specification.cpp
index 5056b08..95ebc78 100644
--- a/script_api/Specification.cpp
+++ b/script_api/Specification.cpp

@@ -802,7 +802,7 @@
 
 // Read the specification, adding the definitions to the global functions map.
 bool SpecFile::readSpecFile(unsigned int maxApiLevel) {
-    FILE* specFile = fopen(mSpecFileName.c_str(), "rt");
+    FILE* specFile = fopen(mSpecFileName.c_str(), "rte");
     if (!specFile) {
         cerr << "Error opening input file: " << mSpecFileName << "\n";
         return false;
commit	95e1702d1bd98ccb12802ca20087b54dcf649f97	[log] [tgz]
author	Nick Kralevich <nnk@google.com>	Tue Dec 11 14:35:57 2018 -0800
committer	Nick Kralevich <nnk@google.com>	Tue Dec 11 14:35:57 2018 -0800
tree	f9f1a2614729411c94c0487272ee4165c9af6ef0
parent	6d20a8536dbfb49888711970098c998caf58acfe [diff] [blame]