[git commit] mktemp: make it NOEXEC
Denys Vlasenko
vda.linux at googlemail.com
Fri Aug 4 15:39:05 UTC 2017
commit: https://git.busybox.net/busybox/commit/?id=6bec24c4f5a2c853c10fd59a56d0d197b5e5fd64
branch: https://git.busybox.net/busybox/commit/?id=refs/heads/master
Signed-off-by: Denys Vlasenko <vda.linux at googlemail.com>
---
NOFORK_NOEXEC.lst | 2 +-
coreutils/mktemp.c | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/NOFORK_NOEXEC.lst b/NOFORK_NOEXEC.lst
index 9741f21..90c802b 100644
--- a/NOFORK_NOEXEC.lst
+++ b/NOFORK_NOEXEC.lst
@@ -231,7 +231,7 @@ mkfs.vfat
mknod - noexec
mkpasswd
mkswap
-mktemp - leaks: xstrdup+concat_path_file
+mktemp - noexec. leaks: xstrdup+concat_path_file
modinfo - noexec
modprobe - noexec
more - interactive, longterm
diff --git a/coreutils/mktemp.c b/coreutils/mktemp.c
index bfef0b4..944eb0e 100644
--- a/coreutils/mktemp.c
+++ b/coreutils/mktemp.c
@@ -36,7 +36,7 @@
//config: help
//config: mktemp is used to create unique temporary files
-//applet:IF_MKTEMP(APPLET(mktemp, BB_DIR_BIN, BB_SUID_DROP))
+//applet:IF_MKTEMP(APPLET_NOEXEC(mktemp, mktemp, BB_DIR_BIN, BB_SUID_DROP, mktemp))
//kbuild:lib-$(CONFIG_MKTEMP) += mktemp.o
More information about the busybox-cvs
mailing list