il_7029-3 Sdiff usr/src/lib/libbsm/auditxml

Print this page

7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

 596         #         'exec_env'            => 'AUT_EXEC_ENV',   # not defined
 597         #         'exit'                => 'AUT_EXIT',               # not defined
 598                   'fmri'                => 'AUT_FMRI',
 599         #         'groups'              => 'AUT_GROUPS',     # not defined
 600         #         'header'              => 'AUT_HEADER',     # not defined
 601                   'in_peer'             => 'ADT_IN_PEER',    # dummy token id
 602                   'in_remote'           => 'ADT_IN_REMOTE',  # dummy token id
 603         #         'ipc'                 => 'AUT_IPC',                # not defined
 604         #         'ipc_perm'            => 'AUT_IPC_PERM',   # not defined
 605                   'iport'               => 'AUT_IPORT',
 606                   'label'               => 'AUT_LABEL',
 607                   'newgroups'           => 'AUT_NEWGROUPS',
 608         #         'opaque'              => 'AUT_OPAQUE',     # not defined
 609                   'path'                => 'AUT_PATH',
 610                   'path_list'           => '-AUT_PATH',              # dummy token id
 611                   'process'             => 'AUT_PROCESS',
 612                   'priv_effective'      => 'ADT_AUT_PRIV_E', # dummy token id
 613                   'priv_limit'          => 'ADT_AUT_PRIV_L',         # dummy token id
 614                   'priv_inherit'        => 'ADT_AUT_PRIV_I', # dummy token id
 615                   'return'              => 'AUT_RETURN',

 616         #         'seq'                 => 'AUT_SEQ',                # not defined
 617         #         'socket'              => 'AUT_SOCKET',     # not defined
 618         #         'socket-inet'         => 'AUT_SOCKET_INET',
 619                   'subject'             => 'AUT_SUBJECT',
 620                   'text'                => 'AUT_TEXT',
 621                   'tid'                 => 'AUT_TID',
 622         #         'trailer'             => 'AUT_TRAILER',    # not defined
 623                   'uauth'               => 'AUT_UAUTH',
 624                   'user'                => 'AUT_USER',
 625                   'zonename'            => 'AUT_ZONENAME'
 626                  );
 627 
 628     my @xlateEntryList = ();
 629 
 630     my $external = $event->getExternal();
 631     my $internal = $event->getInternal();
 632 
 633     unless ($external) {
 634         print STDERR "No external object captured for event $eventId\n";
 635         return;

 596         #         'exec_env'            => 'AUT_EXEC_ENV',   # not defined
 597         #         'exit'                => 'AUT_EXIT',               # not defined
 598                   'fmri'                => 'AUT_FMRI',
 599         #         'groups'              => 'AUT_GROUPS',     # not defined
 600         #         'header'              => 'AUT_HEADER',     # not defined
 601                   'in_peer'             => 'ADT_IN_PEER',    # dummy token id
 602                   'in_remote'           => 'ADT_IN_REMOTE',  # dummy token id
 603         #         'ipc'                 => 'AUT_IPC',                # not defined
 604         #         'ipc_perm'            => 'AUT_IPC_PERM',   # not defined
 605                   'iport'               => 'AUT_IPORT',
 606                   'label'               => 'AUT_LABEL',
 607                   'newgroups'           => 'AUT_NEWGROUPS',
 608         #         'opaque'              => 'AUT_OPAQUE',     # not defined
 609                   'path'                => 'AUT_PATH',
 610                   'path_list'           => '-AUT_PATH',              # dummy token id
 611                   'process'             => 'AUT_PROCESS',
 612                   'priv_effective'      => 'ADT_AUT_PRIV_E', # dummy token id
 613                   'priv_limit'          => 'ADT_AUT_PRIV_L',         # dummy token id
 614                   'priv_inherit'        => 'ADT_AUT_PRIV_I', # dummy token id
 615                   'return'              => 'AUT_RETURN',
 616                   'secflags'            => 'AUT_SECFLAGS',
 617         #         'seq'                 => 'AUT_SEQ',                # not defined
 618         #         'socket'              => 'AUT_SOCKET',     # not defined
 619         #         'socket-inet'         => 'AUT_SOCKET_INET',
 620                   'subject'             => 'AUT_SUBJECT',
 621                   'text'                => 'AUT_TEXT',
 622                   'tid'                 => 'AUT_TID',
 623         #         'trailer'             => 'AUT_TRAILER',    # not defined
 624                   'uauth'               => 'AUT_UAUTH',
 625                   'user'                => 'AUT_USER',
 626                   'zonename'            => 'AUT_ZONENAME'
 627                  );
 628 
 629     my @xlateEntryList = ();
 630 
 631     my $external = $event->getExternal();
 632     my $internal = $event->getInternal();
 633 
 634     unless ($external) {
 635         print STDERR "No external object captured for event $eventId\n";
 636         return;