From owner-freebsd-stable@freebsd.org  Mon Jul 17 09:54:18 2017
Return-Path: <owner-freebsd-stable@freebsd.org>
Delivered-To: freebsd-stable@mailman.ysv.freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org
 [IPv6:2001:1900:2254:206a::19:1])
 by mailman.ysv.freebsd.org (Postfix) with ESMTP id 2DF28D6DF1E
 for <freebsd-stable@mailman.ysv.freebsd.org>;
 Mon, 17 Jul 2017 09:54:18 +0000 (UTC)
 (envelope-from vlad-fbsd@acheronmedia.com)
Received: from mx.irealone.hr (mx.irealone.hr [IPv6:2a01:4f8:212:2d90::25])
 (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
 (Client did not present a certificate)
 by mx1.freebsd.org (Postfix) with ESMTPS id EA34E7EBF1
 for <freebsd-stable@freebsd.org>; Mon, 17 Jul 2017 09:54:17 +0000 (UTC)
 (envelope-from vlad-fbsd@acheronmedia.com)
Received: by mx.irealone.hr (Postfix, from userid 58)
 id 14DC37FAA; Mon, 17 Jul 2017 11:54:07 +0200 (CEST)
X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
 postfix.xoth.irealone.hr
X-Spam-Level: 
X-Spam-Status: No, score=-2.9 required=5.0 tests=ALL_TRUSTED,BAYES_00
 autolearn=ham autolearn_force=no version=3.4.1
Received: from mail.irealone.com (unknown [10.0.0.10])
 by mx.irealone.hr (Postfix) with ESMTP id BFC577FA6
 for <freebsd-stable@freebsd.org>; Mon, 17 Jul 2017 11:54:06 +0200 (CEST)
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII;
 format=flowed
Content-Transfer-Encoding: 7bit
Date: Mon, 17 Jul 2017 11:54:06 +0200
From: "Vlad K." <vlad-fbsd@acheronmedia.com>
To: freebsd-stable@freebsd.org
Subject: stack_guard hardening bsdinstall option in STABLE and 11.1
Organization: Acheron Media
Message-ID: <f16afd19d4e0be57dc5cef0b68a7edea@acheronmedia.com>
X-Sender: vlad-fbsd@acheronmedia.com
User-Agent: Roundcube Webmail/1.2.5
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.23
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <https://lists.freebsd.org/mailman/options/freebsd-stable>, 
 <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <https://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
 <mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Jul 2017 09:54:18 -0000

Hello list,

the stack_guard hardening option in bsdinstall is now setting 512 pages 
of it in CURRENT, as of r320674. It's said to MFC after 1 day (on Jul 
5th), but STABLE hasn't got it yet. Is this simply an omission 
(understandable as the RELEASE is being prepared so things are a bit 
hectic I guess), or is there another reason?

Can we assume that in 11.1 the sysctl is integer and can we safely set 
 >1 number of pages, say 512 like the installer in CURRENT suggests?

Thanks!



-- 
Vlad K.