mktemp: make it NOEXEC

author Denys Vlasenko <vda.linux@googlemail.com>

Fri, 4 Aug 2017 15:39:05 +0000 (17:39 +0200)

committer Denys Vlasenko <vda.linux@googlemail.com>

Fri, 4 Aug 2017 15:39:05 +0000 (17:39 +0200)
author Denys Vlasenko <vda.linux@googlemail.com>
Fri, 4 Aug 2017 15:39:05 +0000 (17:39 +0200)
committer Denys Vlasenko <vda.linux@googlemail.com>
Fri, 4 Aug 2017 15:39:05 +0000 (17:39 +0200)
diff --git a/NOFORK_NOEXEC.lst b/NOFORK_NOEXEC.lst

index 9741f21ea87d226a8f17012dfe815f717516a87f..90c802b2a617435389e26d50aeaedc74dcf16d5f 100644 (file)
--- a/NOFORK_NOEXEC.lst
+++ b/NOFORK_NOEXEC.lst
@@ -231,7 +231,7 @@ mkfs.vfat
  mknod - noexec
  mkpasswd
  mkswap
-mktemp - leaks: xstrdup+concat_path_file
+mktemp - noexec. leaks: xstrdup+concat_path_file
  modinfo - noexec
  modprobe - noexec
  more - interactive, longterm
diff --git a/coreutils/mktemp.c b/coreutils/mktemp.c

index bfef0b4a6aed94bfdd3be0d8a15557d3a72aef13..944eb0e06eef1c6859202f39ff8e51465710f53b 100644 (file)
--- a/coreutils/mktemp.c
+++ b/coreutils/mktemp.c
@@ -36,7 +36,7 @@
  //config:      help
  //config:      mktemp is used to create unique temporary files
  
-//applet:IF_MKTEMP(APPLET(mktemp, BB_DIR_BIN, BB_SUID_DROP))
+//applet:IF_MKTEMP(APPLET_NOEXEC(mktemp, mktemp, BB_DIR_BIN, BB_SUID_DROP, mktemp))
  
  //kbuild:lib-$(CONFIG_MKTEMP) += mktemp.o
author	Denys Vlasenko <vda.linux@googlemail.com>
	Fri, 4 Aug 2017 15:39:05 +0000 (17:39 +0200)
committer	Denys Vlasenko <vda.linux@googlemail.com>
	Fri, 4 Aug 2017 15:39:05 +0000 (17:39 +0200)
NOFORK_NOEXEC.lst		patch \| blob \| history
coreutils/mktemp.c		patch \| blob \| history