From d2a70789f056fc6c9ce3ab047b52126d80b0e3da Mon Sep 17 00:00:00 2001
From: Richard Lowe <richlowe@richlowe.net>
Date: Wed, 16 Apr 2014 02:39:14 +0100
Subject: 7029 want per-process exploit mitigation features (secflags) 7030
 want basic address space layout randomization (ASLR) 7031 noexec_user_stack
 should be a security-flag 7032 want a means to forbid mappings around NULL
 Reviewed by: Robert Mustacchi <rm@joyent.com> Reviewed by: Josef 'Jeff' Sipek
 <jeffpc@josefsipek.net> Reviewed by: Patrick Mooney <pmooney@joyent.com>
 Approved by: Dan McDonald <danmcd@omniti.com>

---
 usr/src/cmd/auditreduce/token.c | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'usr/src/cmd/auditreduce')

diff --git a/usr/src/cmd/auditreduce/token.c b/usr/src/cmd/auditreduce/token.c
index c1d67d910c..5153522865 100644
--- a/usr/src/cmd/auditreduce/token.c
+++ b/usr/src/cmd/auditreduce/token.c
@@ -1940,6 +1940,20 @@ privilege_token(adr_t *adr)
 	return (-1);
 }
 
+/*
+ * Format of security flags token:
+ *	security flag set		string
+ *	security flags		string
+ */
+
+int
+secflags_token(adr_t *adr)
+{
+	skip_string(adr);	/* set name */
+	skip_string(adr);	/* security flags */
+	return (-1);
+}
+
 /*
  * Format of label token:
  *      label ID                1 byte
-- 
cgit v1.2.3