All logging, compatibility and access control (RBAC) features are excluded.
GRKERNSEC_IO
-CONFIG_SECURITY_LOCKDOWN_LSM
GRKERNSEC_KMEM
-CONFIG_SECURITY_LOCKDOWN_LSM
GRKERNSEC_BPF_HARDEN
-kernel.bpf_jit_harden
GRKERNSEC_KSTACKOVERFLOW
-CONFIG_VMAP_STACK
GRKERNSEC_HIDESYM
-kernel.kptr_restrict
GRKERNSEC_RANDSTRUCT
-CONFIG_GCC_PLUGIN_RANDSTRUCT