Instead of working on expanding CFI coverage, our focus is on higher impact features including hardware memory tagging (MTE). We have a best-in-class implementation of MTE for heap protection in hardened_malloc and we deploy MTE for all but a single userspace process (camera HAL).
=> More informations about this toot | View the thread | More toots from GrapheneOS@grapheneos.social
text/geminiThis content has been proxied by September (ba2dc).