Date: Thu, 14 May 2020 10:00:31 +0200 From: Marcin Wojtas <mw@semihalf.com> To: Ed Maste <emaste@freebsd.org> Cc: freebsd-security@freebsd.org, Rafal Jaworowski <raj@semihalf.com> Subject: Re: ASLR/PIE status in FreeBSD HEAD Message-ID: <CAPv3WKcbPoAk1E3Ujx8GPjLJttZgwMLZr-oFD5r3UNDAEb_3Dw@mail.gmail.com> In-Reply-To: <CAPv3WKeYe2BY6%2BMF5Pgi_Eq2orNj4CCiy2fvzO5pa8iLRcu2Bg@mail.gmail.com> References: <CAPv3WKfYyVnfNDTPOEN6TF_GjJr=ThdNeB1yMtTEoQoxEdHMDg@mail.gmail.com> <CAPyFy2Cis6mKP%2BtRqEG8CwODgLXVBpQsxQ4FJX6wrpiPODr=Bg@mail.gmail.com> <CAPv3WKdQrS4oAcUcNn_mQOUJCmKm88LWhv62yf5B0BkmnyGpaA@mail.gmail.com> <CAPyFy2Cd0U-yRhpF3n9ypM2q7VPdSo4CMjYXHGWQBnG%2BFCsJAQ@mail.gmail.com> <CAPv3WKeYe2BY6%2BMF5Pgi_Eq2orNj4CCiy2fvzO5pa8iLRcu2Bg@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi, wt., 5 maj 2020 o 12:03 Marcin Wojtas <mw@semihalf.com> napisa=C5=82(a): > > pon., 4 maj 2020 o 17:24 Ed Maste <emaste@freebsd.org> napisa=C5=82(a): > > > > On Mon, 20 Apr 2020 at 10:22, Marcin Wojtas <mw@semihalf.com> wrote: > > > > > > Indeed I thought of kyua and measuring buildworld execution time for > > > stressing the DUT and having the first comparison numbers for the low > > > price. > > > > > > Do you think it is possible to get help here, i.e. is there a FreeBSD > > > devops team, maintaining the Jenkins CI whose spare cycles could be > > > used for this purpose? Or is this a field requiring external help fro= m > > > interested parties? > > > > There aren't a lot of spare cycles to go around, but putting > > automation in place so that tests like this can easily be performed is > > certainly something that's in the Jenkins team's domain. > > Of course the available bandwidth is a limitation, but IMO we should > start with defining the requirements so that eventually it could be > added to the backlog. > > > > > > Yes, making use of something actively maintained would be great. Do > > > you see a need for IO stressing/benchmarking for the discussed cases? > > > > In the fullness of time I think it's important, but my opinion is that > > it's really functional tests that we need, for enabling features in > > -CURRENT; we can work on benchmarking before and after changing a > > default. > > Understood. Since there seem to be no blockers / major objections at > this point, how do you suggest proceed with the topic? How about > having a live discussion with interested parties, so that we can > establish at least a rough plan allowing to achieve the enablement of > this (and possibly other) feature in a foreseeable perspective? > Any thoughts about having a live discussion on the ALSR/PIE enablement topi= c? Best regards, Marcin
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPv3WKcbPoAk1E3Ujx8GPjLJttZgwMLZr-oFD5r3UNDAEb_3Dw>