Git-Mirrors/security-misc
1
0
Fork 0
mirror of https://github.com/Kicksecure/security-misc.git synced 2025-08-20 21:48:15 -04:00
Code Issues Projects Releases Packages Wiki Activity

Add option to switch (back) to using kCFI in the future

Browse source
This commit is contained in:
Raja Grewal 2024-07-22 17:26:00 +10:00
parent d2563ed923
commit d6fc71dba7
No known key found for this signature in database
GPG key ID: 92CA473C156B64C4
2 changed files with 23 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
README.md
View file

@ -137,6 +137,10 @@ configuration file.
- Provide the option to modify machine check exception handler.
- Provide the option to use kCFI as the default CFI implementation as it may be
slightly more resilient to attacks that can construct arbitrary executable
memory contents (when using Linux kernel version >= 6.5).
- Provide the option to disable support for all x86 processes and syscalls to reduce
attack surface (when using Linux kernel version >= 6.7).