Bug 300638

Summary:	[libpas] Enable MTE tagging for EnhancedSecurity processes
Product:	WebKit	Reporter:	Marcus Plutowski <marcus_plutowski>
Component:	bmalloc	Assignee:	Nobody <webkit-unassigned>
Status:	RESOLVED FIXED
Severity:	Normal	CC:	ggaren, webkit-bug-importer
Priority:	P2	Keywords:	InRadar
Version:	WebKit Nightly Build
Hardware:	Unspecified
OS:	Unspecified

Marcus Plutowski

Reported 2025-10-13 10:42:41 PDT

rdar://162538653 In particular, processes named com.apple.WebKit.WebContent.EnhancedSecurity com.apple.WebKit.WebContent.EnhancedSecurity.Development should be MTE tagged as if they were privileged processes. This should include hardening features which are currently only enabled for privileged processes (e.g. adjacent-tag-exclusion).

Attachments
Add attachment proposed patch, testcase, etc.

Marcus Plutowski

Comment 1 2025-10-13 10:46:57 PDT

Pull request: https://github.com/WebKit/WebKit/pull/52248

EWS

Comment 2 2025-10-22 14:02:54 PDT

Committed 301970@main (6390f36dce31): <https://commits.webkit.org/301970@main> Reviewed commits have been landed. Closing PR #52248 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.