On Wed, Sep 07, 2022 at 08:39:56AM -0700, John Reiser wrote:
> On 9/5/22 19:45, Daniel Micay wrote:
> > On Wed, Aug 31, 2022 at 10:19:51AM -0700, John Reiser wrote:
> > > > Bottom line opinion: hardened_malloc ... costs too much.
> > >
> > > Attempting to be constructive: Psychologically, I might
On 9/5/22 19:45, Daniel Micay wrote:
On Wed, Aug 31, 2022 at 10:19:51AM -0700, John Reiser wrote:
Bottom line opinion: hardened_malloc ... costs too much.
Attempting to be constructive: Psychologically, I might be willing to pay
a "security tax" of something like 17%, partly on the basis of si
On 9/5/22 21:02, Daniel Micay via devel wrote:
On Wed, Aug 31, 2022 at 05:59:42PM +0200, Pablo Mendez Hernandez wrote:
Adding Daniel for awareness.
Why was the heavyweight rather than lightweight configuration used? Why
compare with all the expensive optional security features enabled?
The
On Mon, 2022-09-05 at 22:45 -0400, Daniel Micay via devel wrote:
> The comparison is being done incorrectly. Since hardened_malloc
> builds
> both a lightweight and heavyweight library by default, and since I
> already explained this and that the lightweight library still has
> optional security fe
On Wed, Aug 31, 2022 at 05:59:42PM +0200, Pablo Mendez Hernandez wrote:
> Adding Daniel for awareness.
Why was the heavyweight rather than lightweight configuration used? Why
compare with all the expensive optional security features enabled? Even
the lightweight configuration has 2 of the optional
On Wed, Aug 31, 2022 at 10:19:51AM -0700, John Reiser wrote:
> > Bottom line opinion: hardened_malloc ... costs too much.
>
> Attempting to be constructive: Psychologically, I might be willing to pay
> a "security tax" of something like 17%, partly on the basis of similarity
> to the VAT rate (Val
Bottom line opinion: hardened_malloc ... costs too much.
Attempting to be constructive: Psychologically, I might be willing to pay
a "security tax" of something like 17%, partly on the basis of similarity
to the VAT rate (Value Added Tax) in some parts of the developed world.
___
Adding Daniel for awareness.
Regards.
Pablo
El mié., 31 ago. 2022 16:09, John Reiser escribió:
> Here is one end-to-end performance measurement of using hardened_malloc.
>
> sudo sh -c "echo 1 >/proc/sys/vm/drop_caches"
> /usr/bin/time rpmbuild -bc kernel-5.15.11-100.fc34.spec >rpmbuil
Here is one end-to-end performance measurement of using hardened_malloc.
sudo sh -c "echo 1 >/proc/sys/vm/drop_caches"
/usr/bin/time rpmbuild -bc kernel-5.15.11-100.fc34.spec >rpmbuild.out 2>&1
For glibc, the result was
19274.30user 2522.87system 1:49:06elapsed 332%CPU (0avgtext+0avgdat
