Print this page
7029 want per-process exploit mitigation features (secflags)
7030 want basic address space layout randomization (aslr)
7031 noexec_user_stack should be a secflag
7032 want a means to forbid mappings around NULL.
Split |
Close |
Expand all |
Collapse all |
--- old/usr/src/lib/libzonecfg/common/mapfile-vers
+++ new/usr/src/lib/libzonecfg/common/mapfile-vers
1 1 #
2 2 # CDDL HEADER START
3 3 #
4 4 # The contents of this file are subject to the terms of the
5 5 # Common Development and Distribution License (the "License").
6 6 # You may not use this file except in compliance with the License.
7 7 #
8 8 # You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
9 9 # or http://www.opensolaris.org/os/licensing.
10 10 # See the License for the specific language governing permissions
11 11 # and limitations under the License.
12 12 #
13 13 # When distributing Covered Code, include this CDDL HEADER in each
14 14 # file and include the License file at usr/src/OPENSOLARIS.LICENSE.
15 15 # If applicable, add the following below this CDDL HEADER, with the
16 16 # fields enclosed by brackets "[]" replaced with your own identifying
17 17 # information: Portions Copyright [yyyy] [name of copyright owner]
18 18 #
19 19 # CDDL HEADER END
20 20 #
21 21 #
22 22 # Copyright (c) 2006, 2010, Oracle and/or its affiliates. All rights reserved.
23 23 #
24 24
25 25 #
26 26 # MAPFILE HEADER START
27 27 #
28 28 # WARNING: STOP NOW. DO NOT MODIFY THIS FILE.
29 29 # Object versioning must comply with the rules detailed in
30 30 #
31 31 # usr/src/lib/README.mapfiles
32 32 #
33 33 # You should not be making modifications here until you've read the most current
34 34 # copy of that file. If you need help, contact a gatekeeper for guidance.
35 35 #
36 36 # MAPFILE HEADER END
37 37 #
38 38
39 39 $mapfile_version 2
40 40
41 41 SYMBOL_VERSION SUNWprivate_1.1 {
42 42 global:
43 43 endzoneent;
44 44 getzoneent;
45 45 getzoneent_private;
46 46 putzoneent;
47 47 setzoneent;
48 48 zonecfg_access;
49 49 zonecfg_add_attr;
50 50 zonecfg_add_dev;
↓ open down ↓ |
50 lines elided |
↑ open up ↑ |
51 51 zonecfg_add_ds;
52 52 zonecfg_add_filesystem;
53 53 zonecfg_add_fs_option;
54 54 zonecfg_add_admin;
55 55 zonecfg_add_nwif;
56 56 zonecfg_add_pkg;
57 57 zonecfg_add_pset;
58 58 zonecfg_add_rctl;
59 59 zonecfg_add_rctl_value;
60 60 zonecfg_add_scratch;
61 + zonecfg_add_secflags;
61 62 zonecfg_aliased_rctl_ok;
62 63 zonecfg_apply_rctls;
63 64 zonecfg_attach_manifest;
64 65 zonecfg_authorize_users;
65 66 zonecfg_bind_pool;
66 67 zonecfg_bind_tmp_pool;
67 68 zonecfg_call_zoneadmd;
68 69 zonecfg_check_handle;
69 70 zonecfg_close_scratch;
70 71 zonecfg_construct_rctlblk;
71 72 zonecfg_create_snapshot;
72 73 zonecfg_deauthorize_user;
73 74 zonecfg_deauthorize_users;
74 75 zonecfg_default_brand;
75 76 zonecfg_default_privset;
76 77 zonecfg_delete_admin;
↓ open down ↓ |
6 lines elided |
↑ open up ↑ |
77 78 zonecfg_delete_admins;
78 79 zonecfg_delete_attr;
79 80 zonecfg_delete_dev;
80 81 zonecfg_delete_ds;
81 82 zonecfg_delete_filesystem;
82 83 zonecfg_delete_mcap;
83 84 zonecfg_delete_nwif;
84 85 zonecfg_delete_pset;
85 86 zonecfg_delete_rctl;
86 87 zonecfg_delete_scratch;
88 + zonecfg_delete_secflags;
87 89 zonecfg_del_all_resources;
88 90 zonecfg_destroy;
89 91 zonecfg_destroy_snapshot;
90 92 zonecfg_destroy_tmp_pool;
91 93 zonecfg_detached;
92 94 zonecfg_detach_save;
93 95 zonecfg_devperms_apply;
94 96 zonecfg_dev_manifest;
95 97 zonecfg_enable_rcapd;
96 98 zonecfg_endadminent;
97 99 zonecfg_endattrent;
98 100 zonecfg_enddevent;
99 101 zonecfg_enddevperment;
100 102 zonecfg_enddsent;
101 103 zonecfg_endfsent;
102 104 zonecfg_endnwifent;
103 105 zonecfg_endrctlent;
104 106 zonecfg_find_mounts;
105 107 zonecfg_find_scratch;
106 108 zonecfg_fini_handle;
107 109 zonecfg_free_fs_option_list;
108 110 zonecfg_free_rctl_value_list;
109 111 zonecfg_get_aliased_rctl;
110 112 zonecfg_get_attach_handle;
111 113 zonecfg_get_attr_boolean;
112 114 zonecfg_getadminent;
113 115 zonecfg_getattrent;
114 116 zonecfg_get_attr_int;
115 117 zonecfg_get_attr_string;
116 118 zonecfg_get_attr_uint;
117 119 zonecfg_get_autoboot;
118 120 zonecfg_get_bootargs;
119 121 zonecfg_get_brand;
120 122 zonecfg_get_dflt_sched_class;
121 123 zonecfg_getdevent;
122 124 zonecfg_getdevperment;
123 125 zonecfg_getdsent;
124 126 zonecfg_getfsent;
125 127 zonecfg_get_fs_allowed;
126 128 zonecfg_get_handle;
127 129 zonecfg_get_hostid;
128 130 zonecfg_get_iptype;
129 131 zonecfg_get_limitpriv;
↓ open down ↓ |
33 lines elided |
↑ open up ↑ |
130 132 zonecfg_getmcapent;
131 133 zonecfg_get_name;
132 134 zonecfg_get_name_by_uuid;
133 135 zonecfg_getnwifent;
134 136 zonecfg_getpkgdata;
135 137 zonecfg_get_pool;
136 138 zonecfg_get_poolname;
137 139 zonecfg_get_privset;
138 140 zonecfg_getpsetent;
139 141 zonecfg_getrctlent;
142 + zonecfg_getsecflagsent;
140 143 zonecfg_get_root;
141 144 zonecfg_get_sched_class;
142 145 zonecfg_get_scratch;
143 146 zonecfg_get_snapshot_handle;
144 147 zonecfg_get_template_handle;
145 148 zonecfg_get_uuid;
146 149 zonecfg_get_xml_handle;
147 150 zonecfg_get_zonepath;
148 151 zonecfg_grab_lock_file;
149 152 zonecfg_ifname_exists;
150 153 zonecfg_in_alt_root;
151 154 zonecfg_insert_userauths;
152 155 zonecfg_init_handle;
153 156 zonecfg_init_lock_file;
154 157 zonecfg_is_rctl;
155 158 zonecfg_is_scratch;
156 159 zonecfg_lock_file_held;
↓ open down ↓ |
7 lines elided |
↑ open up ↑ |
157 160 zonecfg_lock_scratch;
158 161 zonecfg_lookup_admin;
159 162 zonecfg_lookup_attr;
160 163 zonecfg_lookup_dev;
161 164 zonecfg_lookup_ds;
162 165 zonecfg_lookup_filesystem;
163 166 zonecfg_lookup_mcap;
164 167 zonecfg_lookup_nwif;
165 168 zonecfg_lookup_pset;
166 169 zonecfg_lookup_rctl;
170 + zonecfg_lookup_secflags;
167 171 zonecfg_modify_admin;
168 172 zonecfg_modify_attr;
169 173 zonecfg_modify_dev;
170 174 zonecfg_modify_ds;
171 175 zonecfg_modify_filesystem;
172 176 zonecfg_modify_mcap;
173 177 zonecfg_modify_nwif;
174 178 zonecfg_modify_pset;
175 179 zonecfg_modify_rctl;
180 + zonecfg_modify_secflags;
176 181 zonecfg_notify_bind;
177 182 zonecfg_notify_critical_abort;
178 183 zonecfg_notify_critical_enter;
179 184 zonecfg_notify_critical_exit;
180 185 zonecfg_notify_unbind;
181 186 zonecfg_num_resources;
182 187 zonecfg_open_scratch;
183 188 zonecfg_ping_zoneadmd;
184 189 zonecfg_release_lock_file;
185 190 zonecfg_remove_fs_option;
186 191 zonecfg_remove_rctl_value;
187 192 zonecfg_remove_userauths;
188 193 zonecfg_reverse_scratch;
189 194 zonecfg_rm_aliased_rctl;
190 195 zonecfg_rm_detached;
191 196 zonecfg_same_net_address;
192 197 zonecfg_save;
193 198 zonecfg_setadminent;
194 199 zonecfg_setattrent;
195 200 zonecfg_set_aliased_rctl;
196 201 zonecfg_set_autoboot;
197 202 zonecfg_set_bootargs;
198 203 zonecfg_set_brand;
199 204 zonecfg_setdevent;
200 205 zonecfg_setdevperment;
201 206 zonecfg_setdsent;
202 207 zonecfg_setfsent;
203 208 zonecfg_set_fs_allowed;
204 209 zonecfg_set_hostid;
205 210 zonecfg_set_iptype;
206 211 zonecfg_set_limitpriv;
207 212 zonecfg_set_name;
208 213 zonecfg_setnwifent;
209 214 zonecfg_set_pool;
210 215 zonecfg_setrctlent;
211 216 zonecfg_set_root;
212 217 zonecfg_set_sched;
213 218 zonecfg_set_swinv;
214 219 zonecfg_set_zonepath;
215 220 zonecfg_strerror;
216 221 zonecfg_str_to_bytes;
217 222 zonecfg_update_userauths;
218 223 zonecfg_validate_zonename;
219 224 zonecfg_valid_auths;
220 225 zonecfg_valid_alias_limit;
221 226 zonecfg_valid_fs_type;
222 227 zonecfg_valid_importance;
223 228 zonecfg_valid_memlimit;
224 229 zonecfg_valid_ncpus;
225 230 zonecfg_valid_net_address;
226 231 zonecfg_valid_rctl;
227 232 zonecfg_valid_rctlblk;
228 233 zonecfg_valid_rctlname;
229 234 zonecfg_verify_save;
230 235 zonecfg_warn_poold;
231 236 zone_get_brand;
232 237 zone_get_devroot;
233 238 zone_get_id;
234 239 zone_get_rootpath;
235 240 zone_get_state;
236 241 zone_get_zonepath;
237 242 zone_set_state;
238 243 zone_state_str;
239 244 local:
240 245 *;
241 246 };
↓ open down ↓ |
56 lines elided |
↑ open up ↑ |
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX