Re: so_rerror

To: Martin Husemann <martin%duskware.de@localhost>
Subject: Re: so_rerror
From: Roy Marples <roy%marples.name@localhost>
Date: Sun, 4 Nov 2018 11:32:28 +0000

On 04/11/2018 08:44, Martin Husemann wrote:

On Sun, Nov 04, 2018 at 01:56:26AM +0000, Roy Marples wrote:

With 2 major differences:

1. pax-mprotect protects the system from random programs that misuse
     mmap; the class of programs that breaks is small and known (jit stuff);
     the majority of people think that the default should be on. And finally
     there is a sysctl to choose... Until I commit the code, the new behavior
     for sockets is mandatory.


I don't have a single NetBSD system where I can turn this option on (for
example, it's not found on ERLITE) and have all the programs I need to run
on it actually work.


I am not sure I can parse this correctly. With "this option" you mean PAX
mprotect?

Yes

The ERLITE kernel has none of the PAX kernel options, so at runtime
there is no option to turn it on or off - it is always off.


Exactly. So it works out of the box for me.

If you see other programs break with it, file a pkgsrc PR (assuming you
did install it from pkgsrc).


I'll see if I can get around to that in the coming week.

Roy

References:
- Re: so_rerror
  - From: Christos Zoulas
- Re: so_rerror
  - From: Roy Marples
- Re: so_rerror
  - From: Martin Husemann

Prev by Date: Re: so_rerror
Next by Date: Re: so_rerror
Previous by Thread: Re: so_rerror
Next by Thread: Re: so_rerror
Indexes:

Home | Main Index | Thread Index | Old Index