Skip to content

feat: enabled arm memory tagging extension#1132

Merged
spacecowboy merged 1 commit into
spacecowboy:masterfrom
flexxxxer:master
May 11, 2026
Merged

feat: enabled arm memory tagging extension#1132
spacecowboy merged 1 commit into
spacecowboy:masterfrom
flexxxxer:master

Conversation

@flexxxxer

Copy link
Copy Markdown
Contributor

makes app exploitation much harder on devices and OS's with MTE support https://source.android.com/docs/security/test/memory-safety/arm-mte#enable-mte-apps

I was using Feeder for around a week and it runs fine for me on GrapheneOS with Memory tagging enabled for an app. Propose to enable it by default.

This change will affect:

  • Google Pixel's users with stock OS with Advanced Protection enabled
  • Google Pixel's users with GrapheneOS
  • Samsung Galaxy users in some near future
  • other devices with other OS's in some not that near future

@spacecowboy

Copy link
Copy Markdown
Owner

I don't know. This seems risky:

We recommend using this mode in production on well tested codebases where the density of memory safety bugs is known to be low, which is achieved by using the SYNC mode during testing.

And what threat are you mitigating here? Feeder is hardly something worth exploiting.

@flexxxxer

Copy link
Copy Markdown
Contributor Author

I don't know. This seems risky:

We recommend using this mode in production on well tested codebases where the density of memory safety bugs is known to be low, which is achieved by using the SYNC mode during testing.

If you have no ability to debug an app nor test it on MTE-compatible device nor offload that testing on users (I am) then it is risky. Anyway I didn't achieve any MTE error on GrapheneOS with that app for few Feeder versions.

And what threat are you mitigating here? Feeder is hardly something worth exploiting.

Well many people do not care about private messages because this "hardly something worth". Same for public media. But for some people spectrum changes, including but not limited with RSS feeds list. Theoretically it is possible to pass maliciously-crafted response for Feeder (Feeder does not have MITM protections - this is expected) and cause in-app memory exploit to, lets say, send all RSS feeds to remote server (well Feeder has access to Feeder's data storage and internet). MTE would make those theoretical (and I hope it would stay that way xD) exploits harder, that's it.

@spacecowboy

Copy link
Copy Markdown
Owner

Let's just see..

@spacecowboy spacecowboy changed the title Enable memory tagging feat: enabled arm memory tagging extension May 11, 2026
@spacecowboy spacecowboy merged commit 73dd3a1 into spacecowboy:master May 11, 2026
12 checks passed
jenningsloy318 pushed a commit to jenningsloy318/Feeder that referenced this pull request May 29, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants