Seems very unlikely.
- RFP: hardened-malloc – hardened memory allocator
- glibc feature request - consider using Hardened Malloc
- debian glibc feature request - consider using hardened malloc (hardened memory allocator)
- glibc-alpha mailing list - consider using Hardened Malloc
- Hardened Malloc - Hardened Memory Allocator - #50 by Patrick
Users could boot into admin mode (without apparmor-profile-everything) and configure /etc/ld.so.preload?
We could allow root to run a yet to be invented script which copies a file /etc/ld.so.preload_template to /etc/ld.so.preload.
/etc/ld.so.preload_template would have the following contents:
/usr/lib/libhardened_malloc.so/libhardened_malloc.so
That way while apparmor-profile-everything is enabled, root could enable hardened malloc but not configure an arbitrary (malicious) /etc/ld.so.preload?