On Fri, Apr 01, 2022 at 03:45:13PM -0500, Luke Small wrote: > So if it’s a potential vulnerability for the kernel to be linked the same > without KARL (I presume because if the source code is known and ASLR and > PIE can potentially be randomly overcome) then can there be a KARL type > extension for cc/c++ ?!!!!-- > -Luke
AFAIU OpenBSD uses PIE for both dynamic and static binaries. IOW, ASLR happens on every execution for all system binaries. The only gap might be for static binaries from ports, but if those exist the proper fix would be to adjust their build flags.
