| Prepared by: | Richard Lowe (richlowe) on 2015-May-27 19:47 -0400 EDT |
|---|---|
| Workspace: | /builds/work/illumos/illumos-git (at 22e72a430659) |
| Compare against: | illumos/master (http://github.com/illumos/illumos-gate.git at cb5842f8b0ca) |
| Summary of changes: | 2026 lines changed: 1897 ins; 47 del; 82 mod; 93298 unchg |
| Patch of changes: | il-aslr.patch |
| Printable review: | il-aslr.pdf |
------ ------ ------ ------ ------ --- New Patch Raw README-ASLR.md
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it124 lines changed: 124 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/ptools/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 1 ins; 0 del; 2 mod; 102 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/ptools/Makefile.bld
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it18 lines changed: 1 ins; 0 del; 17 mod; 114 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/ptools/pargs/pargs.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it26 lines changed: 25 ins; 0 del; 1 mod; 1560 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/cmd/ptools/psecflags/psecflags.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it351 lines changed: 351 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/dump/common/dump.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 2130 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/elfdump/common/corenote.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it30 lines changed: 30 ins; 0 del; 0 mod; 1863 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/elfdump/common/elfdump.msg
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it4 lines changed: 4 ins; 0 del; 0 mod; 660 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/elfdump/common/gen_struct_layout.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it12 lines changed: 12 ins; 0 del; 0 mod; 954 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/elfdump/common/struct_layout.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it8 lines changed: 8 ins; 0 del; 0 mod; 583 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/elfdump/common/struct_layout_amd64.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it9 lines changed: 9 ins; 0 del; 0 mod; 410 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/elfdump/common/struct_layout_i386.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it9 lines changed: 9 ins; 0 del; 0 mod; 410 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/include/conv.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it8 lines changed: 8 ins; 0 del; 0 mod; 1112 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/include/libld.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it5 lines changed: 5 ins; 0 del; 0 mod; 1569 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libconv/common/corenote.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it48 lines changed: 43 ins; 0 del; 5 mod; 2579 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libconv/common/corenote.msg
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 3 ins; 0 del; 0 mod; 1123 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libconv/common/dynamic.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it9 lines changed: 6 ins; 0 del; 3 mod; 978 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libconv/common/dynamic.msg
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 3 ins; 0 del; 0 mod; 426 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libld/common/args.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it27 lines changed: 26 ins; 1 del; 0 mod; 2144 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libld/common/libld.msg
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it5 lines changed: 5 ins; 0 del; 0 mod; 1596 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libld/common/sections.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 3 ins; 0 del; 0 mod; 3525 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/sgs/libld/common/update.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it7 lines changed: 7 ins; 0 del; 0 mod; 4309 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/svc/milestone/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 163 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/cmd/svc/milestone/process-security.xml
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it62 lines changed: 62 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/svc/startd/startd.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it73 lines changed: 73 ins; 0 del; 0 mod; 1087 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/truss/print.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it53 lines changed: 53 ins; 0 del; 0 mod; 2874 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/truss/print.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 2 ins; 0 del; 1 mod; 155 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/cmd/truss/systable.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 0 ins; 0 del; 1 mod; 1736 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/brand/ipkg/zone/config.xml
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 112 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/brand/labeled/zone/config.xml
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 113 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/brand/sn1/zone/config.xml
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 106 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libbsm/audit_event.txt
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 675 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/amd64/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 1241 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/common/sys/brk.s
libc: adjust brk(0) to return the existing break, and use it to initialize sbrk()1 line changed: 0 ins; 0 del; 1 mod; 40 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/lib/libc/common/sys/psecflagsset.s
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it23 lines changed: 23 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/i386/Makefile.com
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 1315 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/lib/libc/port/gen/psecflags.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it30 lines changed: 30 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/port/mapfile-vers
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 3274 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/port/sys/sbrk.c
libc: adjust brk(0) to return the existing break, and use it to initialize sbrk()30 lines changed: 20 ins; 3 del; 7 mod; 173 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/sparc/Makefile.com
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 1393 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libc/sparcv9/Makefile.com
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 1310 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libproc/common/P32ton.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it6 lines changed: 4 ins; 2 del; 0 mod; 819 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libsecdb/auth_attr.txt
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 213 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/libsecdb/help/auths/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 209 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/lib/libsecdb/help/auths/SmfValueProcSec.html
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it24 lines changed: 24 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/lib/pam_modules/unix_cred/unix_cred.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 671 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/man/man1/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 722 unchg
Cdiffs
Udiffs
Wdiffs
Sdiffs
Frames
Old
New
Patch
Raw
usr/src/man/man1/ld.1
man:
Cdiffs
Udiffs
Wdiffs
Sdiffs
Frames
TXT
HTML
Raw
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it18 lines changed: 17 ins; 0 del; 1 mod; 1866 unchg
------ ------
------
------ ------
---
New
Patch
Raw
usr/src/man/man1/psecflags.1
man:
------ ------
------
------ ------
TXT
HTML
Raw
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it281 lines changed: 281 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/man/man5/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 203 unchg
Cdiffs
Udiffs
Wdiffs
Sdiffs
Frames
Old
New
Patch
Raw
usr/src/man/man5/privileges.5
man:
Cdiffs
Udiffs
Wdiffs
Sdiffs
Frames
TXT
HTML
Raw
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it11 lines changed: 11 ins; 0 del; 0 mod; 1334 unchg
------ ------
------
------ ------
---
New
Patch
Raw
usr/src/man/man5/security-flags.5
man:
------ ------
------
------ ------
TXT
HTML
Raw
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it79 lines changed: 79 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/pkg/manifests/SUNWcs.man5.inc
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 66 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/pkg/manifests/SUNWcs.mf
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 1864 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/pkg/manifests/consolidation-osnet-osnet-message-files.mf
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 332 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/pkg/manifests/system-extended-system-utilities.mf
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it4 lines changed: 4 ins; 0 del; 0 mod; 279 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/pkg/manifests/system-header.mf
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 2134 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/Makefile.files
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 1 ins; 0 del; 2 mod; 2120 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/c2/audit_event.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it16 lines changed: 15 ins; 0 del; 1 mod; 5867 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/c2/audit_kevents.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it5 lines changed: 0 ins; 3 del; 2 mod; 357 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/exec/elf/elf.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it111 lines changed: 92 ins; 0 del; 19 mod; 2198 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/exec/elf/elf_impl.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 0 ins; 2 del; 0 mod; 129 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/fs/proc/prsubr.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 4330 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/cred.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 1478 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/exec.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it67 lines changed: 58 ins; 9 del; 0 mod; 2024 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/fork.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it5 lines changed: 5 ins; 0 del; 0 mod; 1462 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/grow.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it libc: adjust brk(0) to return the existing break, and use it to initialize sbrk()24 lines changed: 17 ins; 1 del; 6 mod; 1016 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/mmapobj.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it26 lines changed: 17 ins; 0 del; 9 mod; 2440 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/policy.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it13 lines changed: 13 ins; 0 del; 0 mod; 2577 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/priv_defs
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it5 lines changed: 5 ins; 0 del; 0 mod; 619 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/proc.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it27 lines changed: 27 ins; 0 del; 0 mod; 161 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/os/sysent.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it3 lines changed: 1 ins; 0 del; 2 mod; 1204 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/Makefile
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 1364 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/auxv.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 226 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/link.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it2 lines changed: 2 ins; 0 del; 0 mod; 639 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/mman.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it7 lines changed: 4 ins; 3 del; 0 mod; 423 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/policy.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 240 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/proc.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it9 lines changed: 9 ins; 0 del; 0 mod; 820 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/procfs.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it5 lines changed: 3 ins; 0 del; 2 mod; 859 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/uts/common/sys/secflags.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it49 lines changed: 49 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/common/sys/syscall.h
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 526 unchg
------ ------ ------ ------ ------ --- New Patch Raw usr/src/uts/common/syscall/psecflags.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it91 lines changed: 91 ins; 0 del; 0 mod; 0 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/i86pc/vm/vm_machdep.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it32 lines changed: 26 ins; 6 del; 0 mod; 3982 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/intel/os/name_to_sysnum
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 242 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/sparc/os/name_to_sysnum
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it1 line changed: 1 ins; 0 del; 0 mod; 241 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/sun4u/vm/mach_vm_dep.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it41 lines changed: 35 ins; 6 del; 0 mod; 351 unchg
Cdiffs Udiffs Wdiffs Sdiffs Frames Old New Patch Raw usr/src/uts/sun4v/vm/mach_vm_dep.c
uts: Allow for address space randomisation. Randomise the base addresses of shared objects, non-fixed mappings, the stack and the heap. Introduce a service, svc:/system/process-security, and a tool psecflags(1) to control and observe it36 lines changed: 25 ins; 11 del; 0 mod; 777 unchg
This code review page was prepared using /opt/onbld/bin/webrev. Webrev is maintained by the illumos project. The latest version may be obtained here.