================ @@ -0,0 +1,10 @@ +<?xml version="1.0" encoding="UTF-8"?> +<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd";> +<plist version="1.0"> +<dict> + <key>com.apple.security.hardened-process</key> + <true/> + <key>com.apple.security.hardened-process.checked-allocations</key> ---------------- yln wrote:
This enables MTE in processes spawned from this binary in the production config for security, but it does not mean that all memory of this process has tags. Only memory regions mapped with `vm_map(..., flags=VM_FLAGS_MTE, ...)` will be taggable. The system allocator and other OS components automatically do this, so most allocations are protected. So the scenario you mentioned above (intermingled tagged and untagged pages) can happen. https://github.com/llvm/llvm-project/pull/160952 _______________________________________________ lldb-commits mailing list [email protected] https://lists.llvm.org/cgi-bin/mailman/listinfo/lldb-commits
