Print this page
Code review comments from jeffpc
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

Split Close
Expand all
Collapse all
          --- old/usr/src/man/man4/core.4.man.txt
          +++ new/usr/src/man/man4/core.4.man.txt
↓ open down ↓ 325 lines elided ↑ open up ↑
 326  326                        The asrset_t structure is defined in <sys/regset.h>.
 327  327  
 328  328  
 329  329         psinfo_t
 330  330                        n_type: NT_SPYMASTER. This entry is present only for an
 331  331                        agent LWP and contains the psinfo_t of the process that
 332  332                        created the agent LWP. See the proc(4) description of
 333  333                        the spymaster entry for more details.
 334  334  
 335  335  
      336 +       prsecflags_t
      337 +                      n_type: NT_SECFLAGS.  This entry contains the process
      338 +                      security-flags, see security-flags(5), proc(4), and
      339 +                      psecflags(1M) for more information.
      340 +
      341 +
 336  342  
 337  343         Depending on the coreadm(1M) settings, the section header of an ELF
 338  344         core file can contain entries for CTF, symbol table, and string table
 339  345         sections. The sh_addr fields are set to the base address of the first
 340  346         mapping of the load object that they came from to. This can be used to
 341  347         match those sections with the corresponding load object.
 342  348  
 343  349  
 344  350         The size of the core file created by a process can be controlled by the
 345  351         user (see getrlimit(2)).
 346  352  
 347  353  SEE ALSO
 348  354         elfdump(1), gcore(1), mdb(1), proc(1), ps(1), coreadm(1M),
 349  355         getrlimit(2), setrlimit(2), setuid(2), sysinfo(2), uname(2),
 350  356         getzonenamebyid(3C), getzoneid(3C), elf(3ELF), signal.h(3HEAD),
 351      -       a.out(4), proc(4), zones(5)
      357 +       a.out(4), proc(4), zones(5), security-flags(5)
 352  358  
 353  359  
 354  360         ANSI C Programmer's Guide
 355  361  
 356  362  
 357  363  
 358      -                                March 31, 2013                         CORE(4)
      364 +                                 June 6, 2016                          CORE(4)
    
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX