aboutsummaryrefslogtreecommitdiff
path: root/sysdeps
diff options
context:
space:
mode:
Diffstat (limited to 'sysdeps')
-rw-r--r--sysdeps/linux/Config.in59
1 files changed, 35 insertions, 24 deletions
diff --git a/sysdeps/linux/Config.in b/sysdeps/linux/Config.in
index 4d72cd688..d5adee5d0 100644
--- a/sysdeps/linux/Config.in
+++ b/sysdeps/linux/Config.in
@@ -90,21 +90,39 @@ config CONFIG_FEATURE_SUID
90 bool "Support for SUID/SGID handling" 90 bool "Support for SUID/SGID handling"
91 default n 91 default n
92 help 92 help
93 Please submit a patch to add help text for this item. 93 Support SUID and SGID binaries.
94 94
95config CONFIG_FEATURE_SUID_CONFIG 95config CONFIG_FEATURE_SUID_CONFIG
96 bool "Runtime SUID/SGID configuration via /etc/busybox.conf" 96 bool "Runtime SUID/SGID configuration via /etc/busybox.conf"
97 default y if CONFIG_FEATURE_SUID 97 default y if CONFIG_FEATURE_SUID
98 depends on CONFIG_FEATURE_SUID 98 depends on CONFIG_FEATURE_SUID
99 help 99 help
100 Please submit a patch to add help text for this item. 100 Allow the SUID / SGID state of an applet to be determinded runtime by
101 checking /etc/busybox.conf. The format of this file is as follows:
102
103 <applet> = [Ssx-][Ssx-][x-] (<username>|<uid>).(<groupname>|<gid>)
104
105 An example might help:
106
107 [SUID]
108 su = ssx root.0 # applet su can be run by anyone and runs with euid=0/egid=0
109 su = ssx # exactly the same
110
111 mount = sx- root.disk # applet mount can be run by root and members of group disk
112 # and runs with euid=0
113
114 cp = --- # disable applet cp for everyone
115
116 Robert 'sandman' Griebl has more information here:
117 <url: http://www.softforge.de/bb/suid.html >.
101 118
102config CONFIG_FEATURE_SUID_CONFIG_QUIET 119config CONFIG_FEATURE_SUID_CONFIG_QUIET
103 bool "Suppress warning message if /etc/busybox.conf is not readable" 120 bool "Suppress warning message if /etc/busybox.conf is not readable"
104 default n 121 default n
105 depends on CONFIG_FEATURE_SUID_CONFIG 122 depends on CONFIG_FEATURE_SUID_CONFIG
106 help 123 help
107 Please submit a patch to add help text for this item. 124 /etc/busybox.conf should be readable by the user needing the SUID, check
125 this option to avoid users to be notified about missing permissions.
108 126
109config CONFIG_SELINUX 127config CONFIG_SELINUX
110 bool "Support NSA Security Enhanced Linux" 128 bool "Support NSA Security Enhanced Linux"
@@ -117,14 +135,21 @@ endmenu
117 135
118menu 'Build Options' 136menu 'Build Options'
119 137
120config DOSTATIC 138config CONFIG_STATIC
121 bool "Build BusyBox as a static binary (no shared libs)" 139 bool "Build BusyBox as a static binary (no shared libs)"
122 default n 140 default n
123 help 141 help
124 If you want to build a static BusyBox binary, which does not 142 If you want to build a static BusyBox binary, which does not
125 use or require any shared libraries, then enable this option. 143 use or require any shared libraries, then enable this option.
144 This can make BusyBox be considerably larger, so you should
145 leave this option false unless you have a good reason (i.e.
146 your target platform does not support shared libraries, or
147 you are building an initrd which doesn't need anything but
148 BusyBox, etc).
126 149
127config DOLFS 150 Most people will leave this set to 'N'.
151
152config CONFIG_LFS
128 bool "Build with Large File Support (for accessing files > 2 GB)" 153 bool "Build with Large File Support (for accessing files > 2 GB)"
129 default n 154 default n
130 help 155 help
@@ -201,21 +226,7 @@ source util-linux/Config.in
201 226
202menu 'Debugging Options' 227menu 'Debugging Options'
203 228
204config DOSTATIC 229config CONFIG_DEBUG
205 bool "Build BusyBox as a static binary (no shared libs)"
206 default n
207 help
208 If you want to build a static BusyBox binary, which does not
209 use or require any shared libraries, then enable this option.
210 This will make BusyBox be considerable larger, so you should
211 leave this option false unless you have a good reason (i.e.
212 your target platform does not support shared libraries, or
213 you are building an initrd which doesn't need anything but
214 BusyBox, etc).
215
216 Most people will leave this set to 'N'.
217
218config DODEBUG
219 bool "Build BusyBox with Debugging symbols" 230 bool "Build BusyBox with Debugging symbols"
220 default n 231 default n
221 help 232 help
@@ -227,10 +238,10 @@ config DODEBUG
227 238
228 Otherwise, answer N. 239 Otherwise, answer N.
229 240
230config DODMALLOC 241config CONFIG_DMALLOC
231 bool "Build BusyBox with dmalloc support" 242 bool "Build BusyBox with dmalloc support"
232 default n 243 default n
233 depends on DODEBUG && !DOEFENCE 244 depends on CONFIG_DEBUG && !CONFIG_EFENCE
234 help 245 help
235 This enables compiling with dmalloc ( http://dmalloc.com/ ) 246 This enables compiling with dmalloc ( http://dmalloc.com/ )
236 which is an excellent public domain mem leak and malloc problem 247 which is an excellent public domain mem leak and malloc problem
@@ -245,10 +256,10 @@ config DODMALLOC
245 This will make BusyBox be considerable larger and run slower, so 256 This will make BusyBox be considerable larger and run slower, so
246 you should leave this option disabled for production use. 257 you should leave this option disabled for production use.
247 258
248config DOEFENCE 259config CONFIG_EFENCE
249 bool "Build BusyBox with Electric-fence support" 260 bool "Build BusyBox with Electric-fence support"
250 default n 261 default n
251 depends on DODEBUG && !DODMALLOC 262 depends on CONFIG_DEBUG && !CONFIG_DMALLOC
252 help 263 help
253 This enables compiling with Electric-fence support. Electric 264 This enables compiling with Electric-fence support. Electric
254 fence is another very useful malloc debugging library which used 265 fence is another very useful malloc debugging library which used
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-03-29 23:28:24 +0000