il_7029-4 Cdiff usr/src/uts/common/fs/proc/prsubr.c

Print this page

7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.


*** 4153,4162 ****
--- 4153,4174 ----
          mutex_enter(&p->p_crlock);
          cred2prcred(p->p_cred, pcrp);
          mutex_exit(&p->p_crlock);
  }
  
+ void
+ prgetsecflags(proc_t *p, prsecflags_t *psfp)
+ {
+         ASSERT(psfp != NULL);
+ 
+         psfp->pr_version = PRSECFLAGS_VERSION_CURRENT;
+         psfp->pr_lower = p->p_secflags.psf_lower;
+         psfp->pr_upper = p->p_secflags.psf_upper;
+         psfp->pr_effective = p->p_secflags.psf_effective;
+         psfp->pr_inherit = p->p_secflags.psf_inherit;
+ }
+ 
  /*
   * Compute actual size of the prpriv_t structure.
   */
  
  size_t