Print this page
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

Split Close
Expand all
Collapse all
          --- old/usr/src/cmd/zonecfg/zonecfg.h
          +++ new/usr/src/cmd/zonecfg/zonecfg.h
↓ open down ↓ 82 lines elided ↑ open up ↑
  83   83  #define RT_MAXMSGIDS    19      /* really a rctl alias property, but for info */
  84   84  #define RT_MAXSEMIDS    20      /* really a rctl alias property, but for info */
  85   85  #define RT_SHARES       21      /* really a rctl alias property, but for info */
  86   86  #define RT_SCHED        22      /* really a property, but for info ... */
  87   87  #define RT_IPTYPE       23      /* really a property, but for info ... */
  88   88  #define RT_PCAP         24
  89   89  #define RT_HOSTID       25      /* really a property, but for info ... */
  90   90  #define RT_ADMIN        26
  91   91  #define RT_FS_ALLOWED   27
  92   92  #define RT_MAXPROCS     28      /* really a rctl alias property, but for info */
       93 +#define RT_SECFLAGS     29
  93   94  
  94   95  #define RT_MIN          RT_UNKNOWN
  95      -#define RT_MAX          RT_MAXPROCS
       96 +#define RT_MAX          RT_SECFLAGS
  96   97  
  97   98  /* property types: increment PT_MAX when expanding this list */
  98   99  #define PT_UNKNOWN      0
  99  100  #define PT_ZONENAME     1
 100  101  #define PT_ZONEPATH     2
 101  102  #define PT_AUTOBOOT     3
 102  103  #define PT_POOL         4
 103  104  #define PT_DIR          5
 104  105  #define PT_SPECIAL      6
 105  106  #define PT_TYPE         7
↓ open down ↓ 24 lines elided ↑ open up ↑
 130  131  #define PT_MAXSWAP      32
 131  132  #define PT_SCHED        33
 132  133  #define PT_IPTYPE       34
 133  134  #define PT_DEFROUTER    35
 134  135  #define PT_HOSTID       36
 135  136  #define PT_USER         37
 136  137  #define PT_AUTHS        38
 137  138  #define PT_FS_ALLOWED   39
 138  139  #define PT_MAXPROCS     40
 139  140  #define PT_ALLOWED_ADDRESS      41
      141 +#define PT_DEFAULT      42
      142 +#define PT_LOWER        43
      143 +#define PT_UPPER        44
 140  144  
 141  145  #define PT_MIN          PT_UNKNOWN
 142      -#define PT_MAX          PT_ALLOWED_ADDRESS
      146 +#define PT_MAX          PT_UPPER
 143  147  
 144  148  #define MAX_EQ_PROP_PAIRS       3
 145  149  
 146  150  #define PROP_VAL_SIMPLE         0
 147  151  #define PROP_VAL_COMPLEX        1
 148  152  #define PROP_VAL_LIST           2
 149  153  
 150  154  #define PROP_VAL_MIN            PROP_VAL_SIMPLE
 151  155  #define PROP_VAL_MAX            PROP_VAL_LIST
 152  156  
↓ open down ↓ 89 lines elided ↑ open up ↑
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX