From mboxrd@z Thu Jan  1 00:00:00 1970
From: Ingo Molnar <mingo@kernel.org>
Subject: Re: x86: PIE support and option to extend KASLR
	randomization
Date: Wed, 16 Aug 2017 17:12:35 +0200
Message-ID: <20170816151235.oamkdva6cwpc4cex__28917.9200576202$1502896486$gmane$org@gmail.com>
References: <20170810172615.51965-1-thgarnie@google.com>
 <20170811124127.kkb5pnkljz4umxuj@gmail.com>
 <CAJcbSZFTX3uiS2g8JriS6+z_+WrG8z3hrQo4OSuyHpiyUDJWYA@mail.gmail.com>
 <20170815075609.mmzbfwritjzvrpsn@gmail.com>
 <CAJcbSZE+TiY2whT94WqCJNXzR=2ATOHcQ10H5RqBZA1j=k1VHQ@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <xen-devel-bounces@lists.xen.org>
Received: from mail6.bemta6.messagelabs.com ([193.109.254.103])
 by lists.xenproject.org with esmtp (Exim 4.84_2)
 (envelope-from <mingo.kernel.org@gmail.com>) id 1dhzzu-0008FD-QW
 for xen-devel@lists.xenproject.org; Wed, 16 Aug 2017 15:12:42 +0000
Received: by mail-wr0-f193.google.com with SMTP id z91so544330wrc.4
 for <xen-devel@lists.xenproject.org>; Wed, 16 Aug 2017 08:12:40 -0700 (PDT)
Content-Disposition: inline
In-Reply-To: <CAJcbSZE+TiY2whT94WqCJNXzR=2ATOHcQ10H5RqBZA1j=k1VHQ@mail.gmail.com>
List-Unsubscribe: <https://lists.xen.org/cgi-bin/mailman/options/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xen.org>
List-Help: <mailto:xen-devel-request@lists.xen.org?subject=help>
List-Subscribe: <https://lists.xen.org/cgi-bin/mailman/listinfo/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=subscribe>
Errors-To: xen-devel-bounces@lists.xen.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xen.org>
To: Thomas Garnier <thgarnie@google.com>
Cc: Nicolas Pitre <nicolas.pitre@linaro.org>, Peter Zijlstra <a.p.zijlstra@chello.nl>, Michal Hocko <mhocko@suse.com>, kvm list <kvm@vger.kernel.org>, Radim =?utf-8?B?S3LEjW3DocWZ?= <rkrcmar@redhat.com>, Peter Zijlstra <peterz@infradead.org>, Catalin Marinas <catalin.marinas@arm.com>, Christopher Li <sparse@chrisli.org>, Alexei Starovoitov <ast@kernel.org>, David Howells <dhowells@redhat.com>, Paul Gortmaker <paul.gortmaker@windriver.com>, Pavel Machek <pavel@ucw.cz>, "H . Peter Anvin" <hpa@zytor.com>, Kernel Hardening <kernel-hardening@lists.openwall.com>, Christoph Lameter <cl@linux.com>, Thomas Gleixner <tglx@linutronix.de>, Kees Cook <keescook@chromium.org>, the arch/x86 maintainers <x86@kernel.org>, Herbert Xu <herbert@gondor.apana.org.au>, Daniel Borkmann <daniel@iogearbox.net>, Matthew Wilcox <mawilcox@microsoft.com>, Peter Foley <pefoley2@pefoley.com>, Joerg
List-Id: xen-devel@lists.xenproject.org
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