Minimal supplement to upstream Kernel Self Protection Project changes. Features already provided by SELinux + Yama and archs other than multiarch arm64 / x86_64 aren't in scope. Only tags have stable history. Shared IRC channel with KSPP: irc.libera.chat #linux-hardening
FG-KASLR has already been ostensibly covered by the Phoronix Linux news website and many other Linux publications as a low overhead (<1% slower) improvement of Kernel Address Space Layout Randomization to harden against a number of kernel memory address related exploits.
FG-KASLR has already been ostensibly covered by the Phoronix Linux news website and many other Linux publications as a low overhead (<1% slower) improvement of Kernel Address Space Layout Randomization to harden against a number of kernel memory address related exploits.
More information on the wiki here.
The latest implementation seems to live here..
Is it in-scope and of interest to include this, or maybe in the future as time will allow?
Thanks.