From mboxrd@z Thu Jan  1 00:00:00 1970
From: Thomas Garnier <thgarnie@google.com>
Subject: Re: x86: PIE support and option to extend KASLR
	randomization
Date: Fri, 22 Sep 2017 16:55:27 -0700
Message-ID: <CAJcbSZHNXQH6V8-f5Yq_YGm=iFCRPQ1OMSa6znh=zKMbQZojog__36195.0043509298$1506124609$gmane$org@mail.gmail.com>
References: <20170815075609.mmzbfwritjzvrpsn@gmail.com>
 <CAJcbSZE+TiY2whT94WqCJNXzR=2ATOHcQ10H5RqBZA1j=k1VHQ@mail.gmail.com>
 <20170816151235.oamkdva6cwpc4cex@gmail.com>
 <CAJcbSZFM_zpL1av1JVaow8NdsGeH+6oZKeDnMPdXR0PGfynzsg@mail.gmail.com>
 <20170817080920.5ljlkktngw2cisfg@gmail.com>
 <CAJcbSZGbtc-i0X1NiBAvZA7cxpGkwSLKNB7oDNCsFxOCdhkR_g@mail.gmail.com>
 <CAJcbSZGhvwt=5ERtBHLJnwS=6AXBZLTMfrafzeUCqYy=-MKWDg@mail.gmail.com>
 <20170825080443.tvvr6wzs362cjcuu@gmail.com>
 <CAJcbSZFJQMKw21kLwr4QGoSM7DMgKRzzjWxkYBF2c1HciCzvGg@mail.gmail.com>
 <CAJcbSZH6hwaWKrvUZR33ExYaZaWKMSv4tJJA3yZkniLvLbTFMw@mail.gmail.com>
 <20170921155919.skpyt7dutod5ul4t@gmail.com>
 <CAKv+Gu8Uw18pW9nK8aVdBoyuybAV6_mhtagVrje_cBUHMGY4WA@mail.gmail.com>
 <CAJcbSZGAsXwMNWnZUs28-3f--ssUYh75XW+aoQztPFYe0j52yQ@mail.gmail.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Return-path: <xen-devel-bounces@lists.xen.org>
Received: from mail6.bemta6.messagelabs.com ([193.109.254.103])
 by lists.xenproject.org with esmtp (Exim 4.84_2)
 (envelope-from <thgarnie@google.com>) id 1dvXnA-0003oH-08
 for xen-devel@lists.xenproject.org; Fri, 22 Sep 2017 23:55:32 +0000
Received: by mail-io0-f176.google.com with SMTP id l15so5838839iol.8
 for <xen-devel@lists.xenproject.org>; Fri, 22 Sep 2017 16:55:30 -0700 (PDT)
In-Reply-To: <CAJcbSZGAsXwMNWnZUs28-3f--ssUYh75XW+aoQztPFYe0j52yQ@mail.gmail.com>
List-Unsubscribe: <https://lists.xen.org/cgi-bin/mailman/options/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=unsubscribe>
List-Post: <mailto:xen-devel@lists.xen.org>
List-Help: <mailto:xen-devel-request@lists.xen.org?subject=help>
List-Subscribe: <https://lists.xen.org/cgi-bin/mailman/listinfo/xen-devel>,
 <mailto:xen-devel-request@lists.xen.org?subject=subscribe>
Errors-To: xen-devel-bounces@lists.xen.org
Sender: "Xen-devel" <xen-devel-bounces@lists.xen.org>
To: Ard Biesheuvel <ard.biesheuvel@linaro.org>
Cc: Nicolas Pitre <nicolas.pitre@linaro.org>, Peter Zijlstra <a.p.zijlstra@chello.nl>, Michal Hocko <mhocko@suse.com>, kvm list <kvm@vger.kernel.org>, =?UTF-8?B?UmFkaW0gS3LEjW3DocWZ?= <rkrcmar@redhat.com>, Peter Zijlstra <peterz@infradead.org>, Catalin Marinas <catalin.marinas@arm.com>, Christopher Li <sparse@chrisli.org>, Alexei Starovoitov <ast@kernel.org>, David Howells <dhowells@redhat.com>, Paul Gortmaker <paul.gortmaker@windriver.com>, Pavel Machek <pavel@ucw.cz>, "H . Peter Anvin" <hpa@zytor.com>, Kernel Hardening <kernel-hardening@lists.openwall.com>, Christoph Lameter <cl@linux.com>, Ingo Molnar <mingo@kernel.org>, Kees Cook <keescook@chromium.org>, the arch/x86 maintainers <x86@kernel.org>, Herbert Xu <herbert@gondor.apana.org.au>, Daniel Borkmann <daniel@iogearbox.net>, Matthew Wilcox <mawilcox@microsoft.com>, Peter Foley <pefoley2@pefoley.com>, Joerg Roedel <jo>
List-Id: xen-devel@lists.xenproject.org
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