Hello,
I have a question very similar to: viewtopic.php?f=23&t=8227&hilit=grsecurity, on which there wasn't really a satisfying answer.
I would like to use a grsecurity hardened kernel on my raspberry pi 2, on which I plan to run a small webserver with docker. Unfortunately, the grsecurity patched kernel is not available for the ARM-version. So I would need to compile it myself.
However, I don't have any experience with compiling a kernel myself, so I probably need some help. The grsecurity documentation states that the patches they provide can only be applied to the vanilla kernel (https://en.wikibooks.org/wiki/Grsecurit ... nux_Kernel), but as far as I understand is the Archlinux ARM kernel version based on the build which can be found at: https://github.com/archlinuxarm/PKGBUIL ... aspberrypi. Can I apply the grsecurity patches to the Archlinux ARM kernel build? Or should I start with the vanilla kernel, and if so, what are the differences between them?
Thanks for any pointers.