// the find
tiann/KernelSU
A Kernel based root solution for Android
KernelSU puts root management directly in the Android kernel rather than patching userspace binaries. It targets GKI 2.0 devices (kernel 5.10+) and ships a Kotlin/Compose manager app plus a Rust daemon (ksud) plus a loadable kernel module. The audience is Android power users and ROM developers who want root without touching the boot image's userspace.
The App Profile system is genuinely well-thought-out — you can cage root access per-app with Linux capabilities and SELinux policy rather than just allow/deny, which is a meaningful security improvement over Magisk's coarser model. The LKM (loadable kernel module) build path means you don't have to recompile the entire kernel to get KernelSU support on GKI devices. The manager UI has dual Material3/Miuix implementations sharing a common state layer, which is unusual but practical given how popular Xiaomi's MIUI skin is in the target demographic. The Rust daemon for the userspace side is a sensible choice for something that runs as pid 1's close relative.
The x86_64 kernel panic issue called out in the README with a caution block and no inline fix is a genuine red flag — shipping a known kernel panic trigger without a patch, just a note to check the website, is not confidence-inspiring. Support for kernels older than 5.10 requires building from source, which effectively locks out most non-Pixel, non-recent devices where the userbase is largest. The translation policy of 'all translations are now handled by LLMs' after dropping Weblate contributions is a bad precedent for a security tool where precise wording in warnings matters. The module ecosystem depends on third-party repos with no centralized trust or signing enforcement at the repo level, so module provenance is entirely on the user.