il_7029-3 Udiff usr/src/cmd/sgs/libld/common/sections.c

Print this page

7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

@@ -1267,10 +1267,13 @@
                 if (ofl->ofl_oscapchain)
                         cnt += 3;
 
                 if (flags & FLG_OF_SYMBOLIC)
                         cnt++;                  /* DT_SYMBOLIC */
+
+                if (ofl->ofl_aslr != 0)         /* DT_SUNW_ASLR */
+                        cnt++;
         }
 
         /*
          * Account for Architecture dependent .dynamic entries, and defaults.
          */