feat: enabled arm memory tagging extension#1132
Conversation
makes app exploitation much harder on devices and OS's with MTE support https://source.android.com/docs/security/test/memory-safety/arm-mte#enable-mte-apps
|
I don't know. This seems risky:
And what threat are you mitigating here? Feeder is hardly something worth exploiting. |
If you have no ability to debug an app nor test it on MTE-compatible device nor offload that testing on users (I am) then it is risky. Anyway I didn't achieve any MTE error on GrapheneOS with that app for few Feeder versions.
Well many people do not care about private messages because this "hardly something worth". Same for public media. But for some people spectrum changes, including but not limited with RSS feeds list. Theoretically it is possible to pass maliciously-crafted response for Feeder (Feeder does not have MITM protections - this is expected) and cause in-app memory exploit to, lets say, send all RSS feeds to remote server (well Feeder has access to Feeder's data storage and internet). MTE would make those theoretical (and I hope it would stay that way xD) exploits harder, that's it. |
|
Let's just see.. |
enable memory tagging makes app exploitation much harder on devices and OS's with MTE support https://source.android.com/docs/security/test/memory-safety/arm-mte#enable-mte-apps
makes app exploitation much harder on devices and OS's with MTE support https://source.android.com/docs/security/test/memory-safety/arm-mte#enable-mte-apps
I was using Feeder for around a week and it runs fine for me on GrapheneOS with Memory tagging enabled for an app. Propose to enable it by default.
This change will affect: