uts: Allow for address space randomisation.
Randomise the base addresses of shared objects, non-fixed mappings, the
stack and the heap.  Introduce a service, svc:/system/process-security,
and a tool psecflags(1) to control and observe it

@@ -323,10 +323,16 @@
 typedef union {
         Conv_inv_buf_t                  inv_buf;
         char                            buf[CONV_CNOTE_PROC_FLAG_BUFSIZE];
 } Conv_cnote_proc_flag_buf_t;
 
+/* conv_psecflags() */
+#define CONV_PSECFLAGS_BUFSIZE          31
+typedef union {
+        Conv_inv_buf_t                  inv_buf;
+        char                            buf[CONV_PSECFLAGS_BUFSIZE];
+} Conv_secflags_buf_t;
 
 /* conv_cnote_sigset() */
 #define CONV_CNOTE_SIGSET_BUFSIZE       639
 typedef union {
         Conv_inv_buf_t                  inv_buf;

@@ -820,10 +826,12 @@
                             Conv_inv_buf_t *);
 extern  const char      *conv_cnote_pr_why(short, Conv_fmt_flags_t,
                             Conv_inv_buf_t *);
 extern  const char      *conv_cnote_priv(int, Conv_fmt_flags_t,
                             Conv_inv_buf_t *);
+extern  const char      *conv_psecflags(int, Conv_fmt_flags_t,
+                            Conv_secflags_buf_t *);
 extern  const char      *conv_cnote_psetid(int, Conv_fmt_flags_t,
                             Conv_inv_buf_t *);
 extern  const char      *conv_cnote_sa_flags(int, Conv_fmt_flags_t,
                             Conv_cnote_sa_flags_buf_t *);
 extern  const char      *conv_cnote_signal(Word, Conv_fmt_flags_t,