From bff6d4db5bb20e2f6701b4886448cb8af6abfe7b Mon Sep 17 00:00:00 2001
From: Patrick Yavitz <pyavitz@gmail.com>
Date: Fri, 4 Jul 2025 13:16:59 -0400
Subject: [PATCH] Meson64: Defconfig: Enable `CONFIG_RANDOMIZE_BASE=y`

KASLR, or Kernel Address Space Layout Randomization, is a
security mechanism used in operating system kernels to randomize
the memory locations of kernel code and data. This makes it
significantly harder for attackers to exploit memory corruption
vulnerabilities by preventing them from knowing the exact
addresses of kernel components.

Signed-off-by: Patrick Yavitz <pyavitz@gmail.com>
---
 config/kernel/linux-meson64-current.config | 1 +
 config/kernel/linux-meson64-edge.config    | 1 +
 2 files changed, 2 insertions(+)

diff --git a/config/kernel/linux-meson64-current.config b/config/kernel/linux-meson64-current.config
index 184e4d066..60baa97c1 100644
--- a/config/kernel/linux-meson64-current.config
+++ b/config/kernel/linux-meson64-current.config
@@ -57,6 +57,7 @@ CONFIG_NODES_SHIFT=2
 CONFIG_XEN=y
 CONFIG_COMPAT=y
 CONFIG_ARMV8_DEPRECATED=y
+CONFIG_RANDOMIZE_BASE=y
 CONFIG_SWP_EMULATION=y
 CONFIG_CP15_BARRIER_EMULATION=y
 CONFIG_SETEND_EMULATION=y
diff --git a/config/kernel/linux-meson64-edge.config b/config/kernel/linux-meson64-edge.config
index 0c107cb2b..36a96e3fe 100644
--- a/config/kernel/linux-meson64-edge.config
+++ b/config/kernel/linux-meson64-edge.config
@@ -57,6 +57,7 @@ CONFIG_NODES_SHIFT=2
 CONFIG_XEN=y
 CONFIG_COMPAT=y
 CONFIG_ARMV8_DEPRECATED=y
+CONFIG_RANDOMIZE_BASE=y
 CONFIG_SWP_EMULATION=y
 CONFIG_CP15_BARRIER_EMULATION=y
 CONFIG_SETEND_EMULATION=y