Print this page
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

@@ -27,10 +27,13 @@
 #define _LIBSCF_PRIV_H
 
 
 #include <libscf.h>
 #include <unistd.h>
+#if !defined(NATIVE_BUILD)
+#include <sys/secflags.h>
+#endif
 
 #ifdef  __cplusplus
 extern "C" {
 #endif
 

@@ -590,10 +593,14 @@
  * Specialized function to get notification parametes from a pg into an
  * nvlist_t
  */
 int _scf_notify_get_params(scf_propertygroup_t *, nvlist_t *);
 
+#if !defined(NATIVE_BUILD)
+int scf_default_secflags(scf_handle_t *, psecflags_t *);
+#endif
+
 #define SCF_NOTIFY_PARAMS_SOURCE_NAME   ((const char *)"preference_source")
 
 #ifdef  __cplusplus
 }
 #endif