X-Git-Url: https://git.librecmc.org/?a=blobdiff_plain;f=Config.in;h=79fe8ff9a086701be28f27f95a20403996542070;hb=ee0f444f11504e47fc0f3ab6bc2bf95defb6e6ae;hp=4439ce4f998723604680bd9fa9da33f37354ce48;hpb=aa167556cd2954bb9a9fb0a005178462087a4600;p=oweals%2Fbusybox.git diff --git a/Config.in b/Config.in index 4439ce4f9..79fe8ff9a 100644 --- a/Config.in +++ b/Config.in @@ -15,7 +15,7 @@ menu "General Configuration" config DESKTOP bool "Enable options for full-blown desktop systems" - default n + default y help Enable options and features which are not essential. Select this only if you plan to use busybox on full-blown @@ -47,6 +47,17 @@ config USE_PORTABLE_CODE compiler other than gcc. If you do use gcc, this option may needlessly increase code size. +config PLATFORM_LINUX + bool "Enable Linux-specific applets and features" + default y + help + For the most part, busybox requires only POSIX compatibility + from the target system, but some applets and features use + Linux-specific interfaces. + + Answering 'N' here will disable such applets and hide the + corresponding configuration options. + choice prompt "Buffer allocation policy" default FEATURE_BUFFERS_USE_MALLOC @@ -72,20 +83,21 @@ config FEATURE_BUFFERS_GO_IN_BSS endchoice config SHOW_USAGE - bool "Show terse applet usage messages" + bool "Show applet usage messages" default y help - All BusyBox applets will show help messages when invoked with - wrong arguments. You can turn off printing these terse usage - messages if you say no here. - This will save you up to 7k. + Enabling this option, BusyBox applets will show terse help messages + when invoked with wrong arguments. + If you do not want to show any (helpful) usage message when + issuing wrong command syntax, you can say 'N' here, + saving approximately 7k. config FEATURE_VERBOSE_USAGE bool "Show verbose applet usage messages" - default n - select SHOW_USAGE + default y + depends on SHOW_USAGE help - All BusyBox applets will show more verbose help messages when + All BusyBox applets will show verbose help messages when busybox is invoked with --help. This will add a lot of text to the busybox binary. In the default configuration, this will add about 13k, but it can add much more depending on your configuration. @@ -95,8 +107,8 @@ config FEATURE_COMPRESS_USAGE default y depends on SHOW_USAGE help - Store usage messages in compressed form, uncompress them on-the-fly - when --help is called. + Store usage messages in .bz compressed form, uncompress them + on-the-fly when --help is called. If you have a really tiny busybox with few applets enabled (and bunzip2 isn't one of them), the overhead of the decompressor might @@ -106,12 +118,20 @@ config FEATURE_COMPRESS_USAGE config FEATURE_INSTALLER bool "Support --install [-s] to install applet links at runtime" - default n + default y help Enable 'busybox --install [-s]' support. This will allow you to use busybox at runtime to create hard links or symlinks for all the applets that are compiled into busybox. +config INSTALL_NO_USR + bool "Don't use /usr" + default n + help + Disable use of /usr. busybox --install and "make install" + will install applets only to /bin and /sbin, + never to /usr/bin or /usr/sbin. + config LOCALE_SUPPORT bool "Enable locale support (system needs locale for this to work)" default n @@ -119,9 +139,9 @@ config LOCALE_SUPPORT Enable this if your system has locale support and you would like busybox to support locale settings. -config FEATURE_ASSUME_UNICODE +config UNICODE_SUPPORT bool "Support Unicode" - default n + default y help This makes various applets aware that one byte is not one character on screen. @@ -131,10 +151,19 @@ config FEATURE_ASSUME_UNICODE Probably by the time when busybox will be fully Unicode-clean, other encodings will be mainly of historic interest. +config UNICODE_USING_LOCALE + bool "Use libc routines for Unicode (else uses internal ones)" + default n + depends on UNICODE_SUPPORT && LOCALE_SUPPORT + help + With this option on, Unicode support is implemented using libc + routines. Otherwise, internal implementation is used. + Internal implementation is smaller. + config FEATURE_CHECK_UNICODE_IN_ENV bool "Check $LANG environment variable" - default y - depends on FEATURE_ASSUME_UNICODE && !LOCALE_SUPPORT + default n + depends on UNICODE_SUPPORT && !UNICODE_USING_LOCALE help With this option on, Unicode support is activated only if LANG variable has the value of the form "xxxx.utf8" @@ -143,7 +172,7 @@ config FEATURE_CHECK_UNICODE_IN_ENV config SUBST_WCHAR int "Character code to substitute unprintable characters with" - depends on FEATURE_ASSUME_UNICODE + depends on UNICODE_SUPPORT default 63 help Typical values are 63 for '?' (works with any output device), @@ -152,7 +181,7 @@ config SUBST_WCHAR config LAST_SUPPORTED_WCHAR int "Range of supported Unicode characters" - depends on FEATURE_ASSUME_UNICODE + depends on UNICODE_SUPPORT default 767 help Any character with Unicode value bigger than this is assumed @@ -183,7 +212,7 @@ config LAST_SUPPORTED_WCHAR config UNICODE_COMBINING_WCHARS bool "Allow zero-width Unicode characters on output" default n - depends on FEATURE_ASSUME_UNICODE + depends on UNICODE_SUPPORT help With this option off, any Unicode char with width of 0 is substituted on output. @@ -191,7 +220,7 @@ config UNICODE_COMBINING_WCHARS config UNICODE_WIDE_WCHARS bool "Allow wide Unicode characters on output" default n - depends on FEATURE_ASSUME_UNICODE + depends on UNICODE_SUPPORT help With this option off, any Unicode char with width > 1 is substituted on output. @@ -199,7 +228,7 @@ config UNICODE_WIDE_WCHARS config UNICODE_BIDI_SUPPORT bool "Bidirectional character-aware line input" default n - depends on FEATURE_ASSUME_UNICODE && !LOCALE_SUPPORT + depends on UNICODE_SUPPORT && !UNICODE_USING_LOCALE help With this option on, right-to-left Unicode characters are treated differently on input (e.g. cursor movement). @@ -215,6 +244,18 @@ config UNICODE_NEUTRAL_TABLE With this option on, more extensive (and bigger) table of neutral chars will be used. +config UNICODE_PRESERVE_BROKEN + bool "Make it possible to enter sequences of chars which are not Unicode" + default n + depends on UNICODE_SUPPORT + help + With this option on, on line-editing input (such as used by shells) + invalid UTF-8 bytes are not substituted with the selected + substitution character. + For example, this means that entering 'l', 's', ' ', 0xff, [Enter] + at shell prompt will list file named 0xff (single char name + with char value 255), not file named '?'. + config LONG_OPTS bool "Support for --long-options" default y @@ -244,40 +285,83 @@ config FEATURE_CLEAN_UP Don't enable this unless you have a really good reason to clean things up manually. +config FEATURE_UTMP + bool "Support utmp file" + default y + help + The file /var/run/utmp is used to track who is currently logged in. + With this option on, certain applets (getty, login, telnetd etc) + will create and delete entries there. + "who" applet requires this option. + +config FEATURE_WTMP + bool "Support wtmp file" + default y + depends on FEATURE_UTMP + help + The file /var/run/wtmp is used to track when users have logged into + and logged out of the system. + With this option on, certain applets (getty, login, telnetd etc) + will append new entries there. + "last" applet requires this option. + config FEATURE_PIDFILE bool "Support writing pidfiles" - default n + default y help This option makes some applets (e.g. crond, syslogd, inetd) write a pidfile in /var/run. Some applications rely on them. config FEATURE_SUID bool "Support for SUID/SGID handling" - default n + default y help With this option you can install the busybox binary belonging - to root with the suid bit set, and it will automatically drop - priviledges for applets that don't need root access. + to root with the suid bit set, enabling some applets to perform + root-level operations even when run by ordinary users + (for example, mounting of user mounts in fstab needs this). + + Busybox will automatically drop priviledges for applets + that don't need root access. If you are really paranoid and don't want to do this, build two busybox binaries with different applets in them (and the appropriate symlinks pointing to each binary), and only set the suid bit on the - one that needs it. The applets currently marked to need the suid bit - are: + one that needs it. + + The applets which require root rights (need suid bit or + to be run by root) and will refuse to execute otherwise: + crontab, login, passwd, su, vlock, wall. - crontab, dnsd, findfs, ipcrm, ipcs, login, passwd, ping, su, - traceroute, vlock. + The applets which will use root rights if they have them + (via suid bit, or because run by root), but would try to work + without root right nevertheless: + findfs, ping[6], traceroute[6], mount. + + Note that if you DONT select this option, but DO make busybox + suid root, ALL applets will run under root, which is a huge + security hole (think "cp /some/file /etc/passwd"). config FEATURE_SUID_CONFIG bool "Runtime SUID/SGID configuration via /etc/busybox.conf" - default n if FEATURE_SUID + default y depends on FEATURE_SUID help Allow the SUID / SGID state of an applet to be determined at runtime by checking /etc/busybox.conf. (This is sort of a poor man's sudo.) The format of this file is as follows: - = [Ssx-][Ssx-][x-] (|).(|) + APPLET = [Ssx-][Ssx-][x-] [USER.GROUP] + + s: USER or GROUP is allowed to execute APPLET. + APPLET will run under USER or GROUP + (reagardless of who's running it). + S: USER or GROUP is NOT allowed to execute APPLET. + APPLET will run under USER or GROUP. + This option is not very sensical. + x: USER/GROUP/others are allowed to execute APPLET. + No UID/GID change will be done when it is run. + -: USER/GROUP/others are not allowed to execute APPLET. An example might help: @@ -287,7 +371,8 @@ config FEATURE_SUID_CONFIG su = ssx # exactly the same mount = sx- root.disk # applet mount can be run by root and members - # of group disk and runs with euid=0 + # of group disk (but not anyone else) + # and runs with euid=0 (egid is not changed) cp = --- # disable applet cp for everyone @@ -313,6 +398,7 @@ config FEATURE_SUID_CONFIG_QUIET config SELINUX bool "Support NSA Security Enhanced Linux" default n + select PLATFORM_LINUX help Enable support for SELinux in applets ls, ps, and id. Also provide the option of compiling in SELinux applets. @@ -393,7 +479,10 @@ config PIE default n depends on !STATIC help - (TODO: what is it and why/when is it useful?) + Hardened code option. PIE binaries are loaded at a different + address at each invocation. This has some overhead, + particularly on x86-32 which is short on registers. + Most people will leave this set to 'N'. config NOMMU @@ -489,8 +578,7 @@ config FEATURE_SHARED_BUSYBOX config LFS bool "Build with Large File Support (for accessing files > 2 GB)" - default n - select FDISK_SUPPORT_LARGE_DISKS + default y help If you want to build BusyBox with large file support, then enable this option. This will have no effect if your kernel or your C @@ -594,25 +682,15 @@ config EFENCE endchoice -### config PARSE -### bool "Uniform config file parser debugging applet: parse" - endmenu -menu 'Installation Options' - -config INSTALL_NO_USR - bool "Don't use /usr" - default n - help - Disable use of /usr. Don't activate this option if you don't know - that you really want this behaviour. +menu 'Installation Options ("make install" behavior)' choice - prompt "Applets links" + prompt "What kind of applet links to install" default INSTALL_APPLET_SYMLINKS help - Choose how you install applets links. + Choose what kind of links to applets are created by "make install". config INSTALL_APPLET_SYMLINKS bool "as soft-links" @@ -634,10 +712,10 @@ config INSTALL_APPLET_SCRIPT_WRAPPERS config INSTALL_APPLET_DONT bool "not installed" - depends on FEATURE_INSTALLER || FEATURE_SH_STANDALONE || FEATURE_PREFER_APPLETS help - Do not install applet links. Useful when using the -install feature - or a standalone shell for rescue purposes. + Do not install applet links. Useful when you plan to use + busybox --install for installing links, or plan to use + a standalone shell and thus don't need applet links. endchoice @@ -661,8 +739,8 @@ config INSTALL_SH_APPLET_HARDLINK config INSTALL_SH_APPLET_SCRIPT_WRAPPER bool "as script wrapper" help - Install /bin/sh applet as script wrapper that call the busybox - binary. + Install /bin/sh applet as script wrapper that calls + the busybox binary. endchoice