From mboxrd@z Thu Jan  1 00:00:00 1970
From: Thomas Garnier <thgarnie@google.com>
Subject: Re: x86: PIE support and option to extend KASLR
	randomization
Date: Thu, 21 Sep 2017 17:06:15 -0700
Message-ID: <CAJcbSZEuQqK-LNBC0psG-Md9JZiyb2+p0ikh2_C7Jgr2o_GVEA__22425.8837792606$1506038849$gmane$org@mail.gmail.com>
References: <20170815075609.mmzbfwritjzvrpsn@gmail.com>
 <CAJcbSZE+TiY2whT94WqCJNXzR=2ATOHcQ10H5RqBZA1j=k1VHQ@mail.gmail.com>
 <20170816151235.oamkdva6cwpc4cex@gmail.com>
 <CAJcbSZFM_zpL1av1JVaow8NdsGeH+6oZKeDnMPdXR0PGfynzsg@mail.gmail.com>
 <20170817080920.5ljlkktngw2cisfg@gmail.com>
 <CAJcbSZGbtc-i0X1NiBAvZA7cxpGkwSLKNB7oDNCsFxOCdhkR_g@mail.gmail.com>
 <CAJcbSZGhvwt=5ERtBHLJnwS=6AXBZLTMfrafzeUCqYy=-MKWDg@mail.gmail.com>
 <20170825080443.tvvr6wzs362cjcuu@gmail.com>
 <CAJcbSZFJQMKw21kLwr4QGoSM7DMgKRzzjWxkYBF2c1HciCzvGg@mail.gmail.com>
 <CAJcbSZH6hwaWKrvUZR33ExYaZaWKMSv4tJJA3yZkniLvLbTFMw@mail.gmail.com>
 <20170921155919.skpyt7dutod5ul4t@gmail.com>
 <CAJcbSZHOuxy5BVxD0xJUdQfB-OMgbvfiP-2CJzf52K-7JZAy-A@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <xen-devel-bounces@lists.xen.org>
Received: from mail6.bemta5.messagelabs.com ([195.245.231.135])
 by lists.xenproject.org with esmtp (Exim 4.84_2)
 (envelope-from <thgarnie@google.com>) id 1dvBU4-0008I9-1p
 for xen-devel@lists.xenproject.org; Fri, 22 Sep 2017 00:06:20 +0000
Received: by mail-io0-f172.google.com with SMTP id q11so14533802ioe.10
 for <xen-devel@lists.xenproject.org>; Thu, 21 Sep 2017 17:06:17 -0700 (PDT)
In-Reply-To: <CAJcbSZHOuxy5BVxD0xJUdQfB-OMgbvfiP-2CJzf52K-7JZAy-A@mail.gmail.com>
List-Unsubscribe: <https://lists.xen.org/cgi-bin/mailman/options/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xen.org>
List-Help: <mailto:xen-devel-request@lists.xen.org?subject=help>
List-Subscribe: <https://lists.xen.org/cgi-bin/mailman/listinfo/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=subscribe>
Errors-To: xen-devel-bounces@lists.xen.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xen.org>
To: Ingo Molnar <mingo@kernel.org>
Cc: Nicolas Pitre <nicolas.pitre@linaro.org>, Peter Zijlstra <a.p.zijlstra@chello.nl>, Michal Hocko <mhocko@suse.com>, kvm list <kvm@vger.kernel.org>, =?UTF-8?B?UmFkaW0gS3LEjW3DocWZ?= <rkrcmar@redhat.com>, Peter Zijlstra <peterz@infradead.org>, Catalin Marinas <catalin.marinas@arm.com>, Christopher Li <sparse@chrisli.org>, Alexei Starovoitov <ast@kernel.org>, David Howells <dhowells@redhat.com>, Paul Gortmaker <paul.gortmaker@windriver.com>, Pavel Machek <pavel@ucw.cz>, "H . Peter Anvin" <hpa@zytor.com>, Kernel Hardening <kernel-hardening@lists.openwall.com>, Christoph Lameter <cl@linux.com>, Thomas Gleixner <tglx@linutronix.de>, Kees Cook <keescook@chromium.org>, the arch/x86 maintainers <x86@kernel.org>, Herbert Xu <herbert@gondor.apana.org.au>, Daniel Borkmann <daniel@iogearbox.net>, Matthew Wilcox <mawilcox@microsoft.com>, Peter Foley <pefoley2@pefoley.com>, Joerg
List-Id: xen-devel@lists.xenproject.org
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