Oliver Pinter <oliver.pntr_at_gmail.com> writes: > PAX LOG: implement new logging subsystem > PAX LOG: fix pax_ulog_segvguard > PAX LOG: added sysctl's and tunables > PAX ASLR: use PAX LOG > PAX LOG: fix pax_ulog_##name() > PAX LOG: fix prison init > PAX LOG: fixed log and ulog sysctl What exactly is the purpose of PAX LOG? Have you considered using ktrace instead? > PAX: blacklist clang and related binaries from PIE support Why? Performance, or do they actually break? > PAX ASLR: Blacklist the applications that don't support being built as a position-independent executable "don't support" as in you have tested them and confirmed that they break in some way? Could you post your test methodology so people can replicate the failures and look into fixing them? > PAX ASLR: Use a full kernel config for LATT-ASLR What is the difference between LATT-ASLR and OP-ASLR, and why not just "include GENERIC"? You know about "nooptions", right? > Revert "PAX: blacklist clang and related binaries from PIE support" > Revert "Revert "PAX: blacklist clang and related binaries from PIE support"" Hmm... DES -- Dag-Erling Smørgrav - des_at_des.noReceived on Sun May 25 2014 - 15:23:55 UTC
This archive was generated by hypermail 2.4.0 : Wed May 19 2021 - 11:40:49 UTC