From owner-freebsd-security@FreeBSD.ORG Tue Feb 24 13:30:21 2015 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 19885C14 for ; Tue, 24 Feb 2015 13:30:21 +0000 (UTC) Received: from mail-qa0-x22c.google.com (mail-qa0-x22c.google.com [IPv6:2607:f8b0:400d:c00::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id C4D0F916 for ; Tue, 24 Feb 2015 13:30:20 +0000 (UTC) Received: by mail-qa0-f44.google.com with SMTP id n8so26966961qaq.3 for ; Tue, 24 Feb 2015 05:30:19 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=EsjV/3uJvEDhpPUnEkKuXdICQF+9lzTv6+hWscf1IGA=; b=Xqi6reZ/A6/uRWv04QVt2OiO3K1PJAWBWz0+FxKWxdaSbeDcF4BxhkTgRGGOtzPDaM Lf5NsdhDpyio8sBTb/98nj3E/IXoCLpo1+fRZCgeLFB0wq9gvy05qc3SmWyvI8f9A5Ju dpjBrLD2lO5/Tu1U6uRSICiapSH7jHYVGcttwhB3kjGY1PDnbx2My3wqTKGcwG/SZejI 8MA9hxfWzil35ECuc4lc2zi6Q49SQy6sf2HarD9vluP/RYPxQ0fsnkstVzUwRF8jB+2z O0mrgkhVYsQt40cq4GTyHGdChZpfILiC5tFlDpNHDXbDjQH/wbljCDH9fnYHfwTTSgA+ 605g== MIME-Version: 1.0 X-Received: by 10.140.107.75 with SMTP id g69mr34644235qgf.103.1424784619778; Tue, 24 Feb 2015 05:30:19 -0800 (PST) Sender: spankthespam@gmail.com Received: by 10.229.131.204 with HTTP; Tue, 24 Feb 2015 05:30:19 -0800 (PST) In-Reply-To: <2473923.nPpcAzaekg@shawnwebb-laptop> References: <2473923.nPpcAzaekg@shawnwebb-laptop> Date: Tue, 24 Feb 2015 13:30:19 +0000 X-Google-Sender-Auth: 28IjDAXj6DVpGX2lVhYLt2erlyA Message-ID: Subject: Re: CFT: New ASLR Patch From: Bartek Rutkowski To: Shawn Webb Content-Type: text/plain; charset=UTF-8 Cc: "freebsd-security@freebsd.org" X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Feb 2015 13:30:21 -0000 On Sat, Feb 21, 2015 at 3:59 PM, Shawn Webb wrote: > Hey All, > > It has been a long time since we sent out a call for testing request for our > ASLR patch. We've been hard at work making our ASLR implementation as robust > as possible. We'd like to invite all adventurous souls to test our ASLR > implementation. Put it through the ringer. > > Since the patch is much too large to attach to an email, you can find our > latest patch on FreeBSD's Phabricator: > > https://reviews.freebsd.org/D473 > > Or download the raw version of the patch: > https://reviews.freebsd.org/D473?download=true > > Please let me know if you find any issues. > > Thanks, > > Shawn Webb > HardenedBSD Hi, First of all, thanks a lot for your work on that, cant wait to see it implemented in FreeBSD release! Could you perhaps update your call for testing with some instructions for potential testers as to how to test (I assume this patch is agains -CURRENT, but I could be wrong here, and other could make different assumptions), is there anything else than applying patches, compilation and reboot required (any configuration?), what to look at when running on these patches, what are you interested in when reporting any success/issues with them (any instructions for generating a relevant problem report for you?) and so on? Kind regards, Bartek Rutkowski