Print this page
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

Split Close
Expand all
Collapse all
          --- old/usr/src/lib/auditd_plugins/syslog/systoken.h
          +++ new/usr/src/lib/auditd_plugins/syslog/systoken.h
↓ open down ↓ 90 lines elided ↑ open up ↑
  91   91   * Modifier tokens
  92   92   */
  93   93  
  94   94  extern void     acl_token(adr_t *, parse_context_t *);
  95   95  extern void     attribute_token(adr_t *, parse_context_t *);
  96   96  extern void     s5_IPC_perm_token(adr_t *, parse_context_t *);
  97   97  extern void     group_token();
  98   98  extern void     label_token(adr_t *, parse_context_t *);
  99   99  extern void     privilege_token(adr_t *, parse_context_t *);
 100  100  extern void     useofpriv_token(adr_t *, parse_context_t *);
      101 +extern void     secflags_token(adr_t *, parse_context_t *);
 101  102  extern void     zonename_token(adr_t *, parse_context_t *);
 102  103  extern void     liaison_token(adr_t *, parse_context_t *);
 103  104  extern void     newgroup_token(adr_t *, parse_context_t *);
 104  105  extern void     exec_args_token(adr_t *, parse_context_t *);
 105  106  extern void     exec_env_token(adr_t *, parse_context_t *);
 106  107  extern void     attribute32_token(adr_t *, parse_context_t *);
 107  108  extern void     useofauth_token(adr_t *, parse_context_t *);
 108  109  extern void     user_token(adr_t *, parse_context_t *);
 109  110  
 110  111  /*
↓ open down ↓ 58 lines elided ↑ open up ↑
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX