From f949698c7a1af8ace5b4d8339de0e742c6f4e45f Mon Sep 17 00:00:00 2001
From: Daniel Micay <danielmicay@gmail.com>
Date: Sat, 3 Nov 2018 03:11:59 -0400
Subject: [PATCH] note that MPK-based hardening is off by default

---
 README.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 0674fdf..dfa35bc 100644
--- a/README.md
+++ b/README.md
@@ -222,7 +222,8 @@ was a bit less important and if a core goal was finding latent bugs.
       the library doesn't leak the address of writable state
     * Allocator state is located within a dedicated region with high entropy
       randomly sized guard regions around it
-    * Protection via Memory Protection Keys (MPK) on x86\_64
+    * Protection via Memory Protection Keys (MPK) on x86\_64 (disabled by
+      default due to low benefit-cost ratio on top of baseline protections)
     * [future] Protection via MTE on ARMv8.5+
 * Extension for retrieving the size of allocations with fallback
   to a sentinel for pointers not managed by the allocator