Hardene memory allocator and memory tagging issues

locked

I periodically check my security settings to make sure every thing that I set is in effect, and I just noticed that hard memory allocator is disabled, both, on the owner profile, and on a secondary profile I created. I can enable it, but when I go back to the setting it goes back to disabled. I enabled re-started, then it's disabled again, same thing for memory tagging.... I have a pixel 8 with the latest update 2024110700. When I do an attestation I get a green screen, so all appears good there. Any thoughts or help would be appreciated.

doublefree

locked

locked I just noticed that hard memory allocator is disabled, both, on the owner profile, and on a secondary profile I created. I can enable it, but when I go back to the setting it goes back to disabled. I enabled re-started, then it's disabled again,

There is no global toggle for it. Which app are you talking about? Does it have automatic compatibility mode?

Xtreix

locked You should open a ticket on Github if you haven't already, I have also the Pixel 8 and I don't know what the problem could be.

doublefree In security and privacy > exploit protection > app exploit protection

doublefree

Xtreix what is there? What's not there is a global toggle for hardened_malloc (Pixel 6), only per-app toggles.

locked

https://i.postimg.cc/65F3GZSX/hardenned.jpg

Take a look at that screen shot, It always go back to disabled. Is this normal? If I select enabled, I can see the dropdown list of the apps. All GoS apps are set on enabled and cannot be changed. The rest are left on default (enabled) So when this main setting always goes to disabled, does this still mean that each specific apps setting takes effect?

Xtreix

locked Everything seems fine for me, i don't understand the probleme here.

This is the expected behavior, Hardened Malloc is enabled by default for all applications, the “disabled” you read refers to applications that don't use Hardened Malloc, not Hardenec Malloc itself, in your configuration, all your applications use Hardened Malloc, there's nothing to do, you can disable Hardenec Malloc for individual applications, but I don't see the point of doing that if everything is working properly.

locked

Xtreix O.K, i think I get it now. It appears that it was just a misunderstanding on my part as to how hardened malloc was implemented. Thank you.