300638 – [libpas] Enable MTE tagging for EnhancedSecurity processes

RESOLVED FIXED300638

[libpas] Enable MTE tagging for EnhancedSecurity processes

https://bugs.webkit.org/show_bug.cgi?id=300638

Summary [libpas] Enable MTE tagging for EnhancedSecurity processes

Marcus Plutowski

Reported 2025-10-13 10:42:41 PDT

rdar://162538653 In particular, processes named com.apple.WebKit.WebContent.EnhancedSecurity com.apple.WebKit.WebContent.EnhancedSecurity.Development should be MTE tagged as if they were privileged processes. This should include hardening features which are currently only enabled for privileged processes (e.g. adjacent-tag-exclusion).

Attachments
Add attachment proposed patch, testcase, etc.

Marcus Plutowski

Comment 1 2025-10-13 10:46:57 PDT

Pull request: https://github.com/WebKit/WebKit/pull/52248

EWS

Comment 2 2025-10-22 14:02:54 PDT

Committed 301970@main (6390f36dce31): <https://commits.webkit.org/301970@main> Reviewed commits have been landed. Closing PR #52248 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution FIXED

Priority P2

Severity Normal

Classification Unclassified

Version WebKit Nightly Build

Hardware Unspecified

OS Unspecified

Product WebKit

Component bmalloc

Assignee

Nobody

Reported

2025-10-13 10:42 PDT

Modified

2025-10-22 14:02 PDT History

CC List

2 users Show

URL

Keywords InRadar

Depends on

Blocks