Eirikr70 webview JIT restricted for all apps except pdf,
DCF via memory restricted except Google Play and the browser,
DCF via storage restricted except Google Play and the browser.

Then see which apps encounter problems and decide per app.
Is that the option you generally chose ?

That's what I'm doing, because I can't see what else to do in my case, its security enhancements seem experimental at this stage but it's cool to be able to use them anyway.

DCL via storage is what causes the most problems in my case, the list of applications I've authorized is twice as long as with DLC via memory.

Eirikr70 my banking app, BanquePostale, require Dynamic Code Loading via memory. Should I report that on the dedicated PrivSec page ?

Yes you can. For my litte story I left them because I couldn't stand their totally crappy app that I was forced to use. I still have an account that I've totally emptied and that they've never closed after several insistent requests on my part but they've done nothing, I've given up and blocked the email address linked to the account so as not to receive any more notifications, it's now just a ghost account and they have no way of contacting me.

Eirikr70 I've tried DCL via memory with BoursoBank and I haven't had any problems. I have the impression that other parameters come into play or that it's random.

    doublefree Brave works fine without DCL via storage in my case. Doesn't work wjthout DCL via memory.

    Eirikr70 Finally, I also have a problem with BoursoBank

    Is it actually safe to play with various exploit protection settings (including memory tagging) with important to me third party apps that are unknown to be compatible with them? Let's say if an app crashes because of one or few default settings were changed, could that cause the app data corruption in an unfortunate circumstance? I was just looking for an assurance I am not going to do any harm in testing the toggles. Many thanks in advance, and apologies if this question is absolutely not relevant!

      876fi Any question is relevant, and don't worry, if there's a problem with an application a notification will appear to warn you, and all you have to do is reactivate the DCL concerned just for the application.

      6 days later

      Is there any influence on the battery consumption after the DCL implementation? Any experience?

      I mean after I set them to Disabled for both - via memory and via storage for most of my installed apps, despite the apps working and trying to use DCL (turned off the "Show notification about clocking DCL attempts").

      Should this constant trying to use the DCL by specific app(s) can be a culprit or not likely?

        Oggyo I haven't noticed any sort of impact on my device's battery life.

        Oggyo
        Good question!
        I had already noticed the increased energy consumption, but I had no idea what it could be because I hadn't changed anything.

        In idle mode, my P8P (no Google) used to consume one per cent of energy every 2 to 2.5 hours.
        Unfortunately, this is now hardly possible. Two hours is now the maximum and rarely, rather 1% in 1.5 hours.

        Not dramatic, but recognisable in the battery logbook and when I see in BatteryBot Pro on its main screen after how many hours the battery only has 30 % remaining capacity when I charge it again (I keep it between 30 and 70 % if possible to protect it).

        Up until 1 September = before the update to GOS version 2024083100, the battery lasted over 70 h with very little use, sometimes even 90 h!
        Since this update, even in almost pure standby mode with occasional battery checks and very infrequent opening of the SimpleX messenger, which only checks for new messages every 10 minutes, a maximum of 53 hours of operation is possible.

        Conclusion: something is now consuming more energy than before.
        However, this does not necessarily have to be due to GOS…
        TBF: At the same time, my mobile phone coverage seems to be a little worse here, at least on some days.

        BTW: I wanna thank the GOS devs again for their very very good hard work to give us best privacy and security!