Re: Linus Torvalds is not a Security Expert
If you run hard safety-critical systems on a stock Linux kernel, you are in for a world of hurt anyways.
As for false positives - with this kind of mitigation there are no false positives. If it's properly implemented, triggering it means there's a kernel bug and not someone joking around in userland. If the system continued to run without the mitigation, it was sheer luck, and you don't know for how long. Atleast in the case of copying TO the kernel. In the case of copying FROM, it's the userland process triggering it that's gonna malfunction instead.