[git commit] freeramdisk: make NOEXEC

Denys Vlasenko vda.linux at googlemail.com
Mon Aug 7 21:17:14 UTC 2017


commit: https://git.busybox.net/busybox/commit/?id=ec98e3a628b06f6cb8823e5197dcd413113d7ed6
branch: https://git.busybox.net/busybox/commit/?id=refs/heads/master

Signed-off-by: Denys Vlasenko <vda.linux at googlemail.com>
---
 NOFORK_NOEXEC.lst        | 2 +-
 util-linux/freeramdisk.c | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/NOFORK_NOEXEC.lst b/NOFORK_NOEXEC.lst
index a8823be..fd53063 100644
--- a/NOFORK_NOEXEC.lst
+++ b/NOFORK_NOEXEC.lst
@@ -134,7 +134,7 @@ flashcp - hardware
 flock - spawner, changes state (file locks), let's play safe and not be noexec
 fold - noexec. runner
 free - noexec. nofork candidate(struct globals, needs to close /proc/meminfo fd)
-freeramdisk - leaks: open+ioctl_or_perror_and_die
+freeramdisk - noexec. leaks: open+ioctl_or_perror_and_die
 fsck - interactive, longterm
 fsck.minix - needs ^C
 fsfreeze - noexec. leaks: open+xioctl
diff --git a/util-linux/freeramdisk.c b/util-linux/freeramdisk.c
index a735784..6752e49 100644
--- a/util-linux/freeramdisk.c
+++ b/util-linux/freeramdisk.c
@@ -33,9 +33,9 @@
 //config:	ramdisk. If you have no use for freeing memory from a ramdisk, leave
 //config:	this disabled.
 
-//                  APPLET_ODDNAME:name     main         location    suid_type     help
-//applet:IF_FDFLUSH(APPLET_ODDNAME(fdflush, freeramdisk, BB_DIR_BIN, BB_SUID_DROP, fdflush))
-//applet:IF_FREERAMDISK(APPLET(freeramdisk, BB_DIR_SBIN, BB_SUID_DROP))
+//                     APPLET_ODDNAME:name         main         location     suid_type     help
+//applet:IF_FDFLUSH(   APPLET_ODDNAME(fdflush,     freeramdisk, BB_DIR_BIN,  BB_SUID_DROP, fdflush    ))
+//applet:IF_FREERAMDISK(APPLET_NOEXEC(freeramdisk, freeramdisk, BB_DIR_SBIN, BB_SUID_DROP, freeramdisk))
 
 //kbuild:lib-$(CONFIG_FDFLUSH) += freeramdisk.o
 //kbuild:lib-$(CONFIG_FREERAMDISK) += freeramdisk.o


More information about the busybox-cvs mailing list