diff for duplicates of <1529447937.27370.33.camel@intel.com> diff --git a/a/1.txt b/N1/1.txt index 9a40755..b846d7c 100644 --- a/a/1.txt +++ b/N1/1.txt @@ -41,3 +41,7 @@ The system-wide setting (somewhere in /etc?) can be: -- Yu-cheng +-- +To unsubscribe from this list: send the line "unsubscribe linux-doc" in +the body of a message to majordomo@vger.kernel.org +More majordomo info at http://vger.kernel.org/majordomo-info.html diff --git a/a/content_digest b/N1/content_digest index c6a4277..7a75e48 100644 --- a/a/content_digest +++ b/N1/content_digest @@ -89,6 +89,10 @@ "\texec=force|relaxed /* controls exec of non-cet apps */\n" "\n" "--\n" - Yu-cheng + "Yu-cheng\n" + "--\n" + "To unsubscribe from this list: send the line \"unsubscribe linux-doc\" in\n" + "the body of a message to majordomo@vger.kernel.org\n" + More majordomo info at http://vger.kernel.org/majordomo-info.html -7c389650d82495fc092ddd96c7160754e64010a2149dfe294bd2179165851443 +6e70079901df06d3c4fe406abd1dd45405880b1cdd4399b3999bdb89ad10bcb0
diff --git a/a/1.txt b/N2/1.txt index 9a40755..fa78dc5 100644 --- a/a/1.txt +++ b/N2/1.txt @@ -20,18 +20,18 @@ On Tue, 2018-06-19 at 13:47 -0700, Andy Lutomirski wrote: > > > No, other way around. The valid CET states are on/unlocked, > off/unlocked, on/locked, off/locked. arch_prctl can freely the state -> unless locked. ptrace can change it no matter what. The lock is to +> unless locked. ptrace can change it no matter what.A A The lock is to > prevent the existence of a gadget to disable CET (unless the gadget -> involves ptrace, but I don’t think that’s a real concern). +> involves ptrace, but I dona??t think thata??s a real concern). We have the arch_prctl now and only need to add ptrace lock/unlock. Back to the dlopen() "relaxed" mode. Would the following work? If the lib being loaded does not use setjmp/getcontext families (the -loader knows?), then the loader leaves shstk on. Otherwise, if the +loader knows?), then the loader leaves shstk on. A Otherwise, if the system-wide setting is "relaxed", the loader turns off shstk and issues -a warning. In addition, if (dlopen == relaxed), then cet is not locked +a warning. A In addition, if (dlopen == relaxed), then cet is not locked in any time. The system-wide setting (somewhere in /etc?) can be: diff --git a/a/content_digest b/N2/content_digest index c6a4277..c18dd67 100644 --- a/a/content_digest +++ b/N2/content_digest @@ -69,18 +69,18 @@ "> > \n" "> No, other way around. The valid CET states are on/unlocked,\n" "> off/unlocked, on/locked, off/locked. arch_prctl can freely the state\n" - "> unless locked. ptrace can change it no matter what.\302\240\302\240The lock is to\n" + "> unless locked. ptrace can change it no matter what.A A The lock is to\n" "> prevent the existence of a gadget to disable CET (unless the gadget\n" - "> involves ptrace, but I don\342\200\231t think that\342\200\231s a real concern).\n" + "> involves ptrace, but I dona??t think thata??s a real concern).\n" "\n" "We have the arch_prctl now and only need to add ptrace lock/unlock.\n" "\n" "Back to the dlopen() \"relaxed\" mode. Would the following work?\n" "\n" "If the lib being loaded does not use setjmp/getcontext families (the\n" - "loader knows?), then the loader leaves shstk on. \302\240Otherwise, if the\n" + "loader knows?), then the loader leaves shstk on. A Otherwise, if the\n" "system-wide setting is \"relaxed\", the loader turns off shstk and issues\n" - "a warning. \302\240In addition, if (dlopen == relaxed), then cet is not locked\n" + "a warning. A In addition, if (dlopen == relaxed), then cet is not locked\n" "in any time.\n" "\n" "The system-wide setting (somewhere in /etc?) can be:\n" @@ -91,4 +91,4 @@ "--\n" Yu-cheng -7c389650d82495fc092ddd96c7160754e64010a2149dfe294bd2179165851443 +38fc6bf047bd50812aed67440c50e0f1be97fe27487046ae54103451cf17631e
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.