Mastodawn

David Chisnall (*Now with 50% more sarcasm!*)Jan 16

This probably deserves its own post:

We've just open sourced a tool that Tim Hutt wrote for #debugging #CHERIoT things. The tool consumes a CPU trace from CHERIoT Ibex and exposes a gdbserver protocol interface. You can then use CHERIoT lldb to step forwards and backwards in your trace.

GitHub - CHERIoT-Platform/riscv_trace_debugger: Tool for debugging RISC-V execution traces with a real debugger

Tool for debugging RISC-V execution traces with a real debugger - CHERIoT-Platform/riscv_trace_debugger

GitHub

Saar Amar Dec 17

David Chisnall (*Now with 50% more sarcasm!*)Dec 17

Mitre has just published their top 25 most dangerous software vulnerabilities of 2025

How does #CHERIoT stack up against this list?

5, 7, 8, 11, 14, and 16 are deterministically mitigated with just a recompile.

13 will trap, but is recoverable on a per-compartment basis.

15 is trivial to mitigate with compartmentalisation. Phil Day wrote about this 18 months ago.

6 is mitigated by good capability-based filesystem APIs.

25 is mitigated by our software capability model in the RTOS.

1, 2, 3, 9, 10, 12, 22, and 23 and are not normally applicable on embedded platforms.

That leaves you with a lot more spare brainpower to think about avoiding the remaining seven (4, 17, 18, 19, 20, 21, and 24). The impact of many of these is limited in an environment where there is a programmer model that makes implementing the principles of least privilege and intentional use trivial.

CWE - 2025 CWE Top 25 Most Dangerous Software Weaknesses

Common Weakness Enumeration (CWE) is a list of software and hardware weaknesses.

Saar Amar Dec 12

Félix Dec 11

_Defer landed in clang: https://github.com/llvm/llvm-project/commit/71bfdd13040328bc83b520d09eee847fd2b7f82c

[Clang] Add support for the C `_Defer` TS (#162848) · llvm/llvm-project@71bfdd1

This implements WG14 N3734 (https://www.open-std.org/jtc1/sc22/wg14/www/docs/n3734.pdf), aka `_Defer`; it is currently only supported in C if `-fdefer-ts` is passed.

GitHub

Saar Amar Dec 4

Pierre H.Dec 4

Here is some cool documentation and opensourcing of xzone malloc with type segregation and MTE support.

https://github.com/apple-oss-distributions/libmalloc/blob/af3c5dc3a540eeec030930b35b1349f4de400206/doc/xzone_malloc.md

libmalloc/doc/xzone_malloc.md at af3c5dc3a540eeec030930b35b1349f4de400206 · apple-oss-distributions/libmalloc

Contribute to apple-oss-distributions/libmalloc development by creating an account on GitHub.

GitHub

Saar Amar Dec 1

Longhorn Nov 30

You can really call anything RISC-V

(This is what Tenstorrent ships)

Saar Amar Nov 3

David Chisnall (*Now with 50% more sarcasm!*)Nov 3

We have released 1.0 of the #CHERIoT specification! The architecture has been unchanged for almost a year and has been implemented in two open-source cores. We (SCI) are getting back our first CHERIoT silicon from the fab soon and will be moving to mass production net year (I can't talk about what other people are doing with CHERIoT).

CHERIoT 1.0 Released!

Today, we released the 1.0 version of the CHERIoT specification! For those reading about CHERIoT for the first time, it is a hardware-software co-design project that aims to produce secure microcontroller-class systems for connected devices. We start with a foundational guarantee of memory safety (the hardware will trap on buffer overflows or use after free errors, even in assembly code) and build rich (and usable) compartmentalisation abstractions on top.

CHERIoT Platform

Saar Amar Nov 3

shac ron ₪‎Nov 3

Today in #RISCV:
Register mtval (optionally) holds the fault address of a data fault, is specified to hold “all valid virtual addresses and the value zero. It need not be capable of holding all possible invalid addresses.”
Hit an invalid virtual address? Good luck debugging it. 🤡

Saar Amar Oct 29

Ben Visness Oct 28

The write-up of my new graph layout algorithm for SpiderMonkey is finally live.

We built a custom layout algorithm for JS and WASM that follows the structure of the source code. No more spaghetti nightmares from Graphviz, and thousands of times faster.

https://spidermonkey.dev/blog/2025/10/28/iongraph-web.html

Who needs Graphviz when you can build it yourself?

Exploring a new layout algorithm for control flow graphs.

SpiderMonkey JavaScript/WebAssembly Engine

Saar Amar Oct 25

Swift Language Oct 24

📣Announcing the first preview releases of Swift for Android, enabling you to build Android business logic with the same Swift that you use for Apple platforms. https://www.swift.org/blog/nightly-swift-sdk-for-android/ #android

Saar Amar Oct 19

Frédéric Jacobs Oct 19

Beyond 2nm #GAAFET Transistors, "gate stack" engineering, a core technology for two-dimensional transistors, which are attracting attention as next-generation semiconductor devices.

The biggest obstacle to commercializing 2D transistors is the implementation of high-quality gate stacks. This research presents a standard blueprint to overcome this challenge.

Also, ferroelectric-embedded gate stacks for memory :)

https://www.nature.com/articles/s41928-025-01448-5

Twitter	https://twitter.com/AmarSaar
Publications	https://saaramar.github.io/Publications/
GitHub	https://github.com/saaramar