Print this page
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.

Split Close
Expand all
Collapse all
          --- old/usr/src/uts/common/fs/proc/prdata.h
          +++ new/usr/src/uts/common/fs/proc/prdata.h
↓ open down ↓ 144 lines elided ↑ open up ↑
 145  145          PR_SPYMASTER,           /* /proc/<pid>/lwp/<lwpid>/spymaster    */
 146  146  #if defined(__sparc)
 147  147          PR_GWINDOWS,            /* /proc/<pid>/lwp/<lwpid>/gwindows     */
 148  148          PR_ASRS,                /* /proc/<pid>/lwp/<lwpid>/asrs         */
 149  149  #endif
 150  150          PR_PRIV,                /* /proc/<pid>/priv                     */
 151  151          PR_PATHDIR,             /* /proc/<pid>/path                     */
 152  152          PR_PATH,                /* /proc/<pid>/path/xxx                 */
 153  153          PR_CTDIR,               /* /proc/<pid>/contracts                */
 154  154          PR_CT,                  /* /proc/<pid>/contracts/<ctid>         */
      155 +        PR_SECFLAGS,            /* /proc/<pid>/secflags                 */
 155  156          PR_PIDFILE,             /* old process file                     */
 156  157          PR_LWPIDFILE,           /* old lwp file                         */
 157  158          PR_OPAGEDATA,           /* old page data file                   */
 158  159          PR_NFILES               /* number of /proc node types           */
 159  160  } prnodetype_t;
 160  161  
 161  162  typedef struct prnode {
 162  163          vnode_t         *pr_next;       /* list of all vnodes for process */
 163  164          uint_t          pr_flags;       /* private flags */
 164  165          kmutex_t        pr_mutex;       /* locks pr_files and child pr_flags */
↓ open down ↓ 252 lines elided ↑ open up ↑
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX