https://issl-uk.com/author/kai-feng/Kai FengHugo Blox Builder (https://hugoblox.com)en-gbSun, 03 May 2026 00:00:00 +0000https://issl-uk.com/media/icon_hu50f38457f6b6599e0d3f54dba46915bd_31456_512x512_fill_lanczos_center_3.pnghttps://issl-uk.com/author/kai-feng/https://issl-uk.com/publication/ismm26/Sun, 03 May 2026 00:00:00 +0000https://issl-uk.com/publication/ismm26/<p><strong>Abstract</strong></p> <p>Memory safety is a critical issue in embedded systems. Although high-level languages such as MicroPython simplify IoT development, their C-based runtimes remain vulnerable to memory errors triggered by Python code or native extensions. CHERI (Capability Hardware Enhanced RISC Instructions) provides hardware-enforced memory safety, but its effectiveness in exposing latent bugs in real-world interpreters remains underexplored.</p> <p>We present diffCHERI:FruitFly, a differential testing framework for systematically uncovering memory defects in MicroPython across conventional x86/Arm platforms and CHERI-enabled Arm Morello hardware. Our framework mines historic vulnerabilities from diverse Python runtimes to extract recurring stress patterns, uses a large language model to generate new test programs, and applies Concrete Syntax Tree (CST) mutation to diversify inputs.</p> <p>In 24-hour automated testing, diffCHERI:FruitFly executed 8,189 generated programs on MicroPython v1.20 and the development branch, identifying 40 distinct defects in the conventional build and 51 in the CHERI port. Memory errors that caused silent corruption or weak symptoms on conventional hardware were converted into precise capability faults on CHERI.</p> <p>These results show that CHERI not only reduces the attack surface, but also provides an effective memory-safety oracle for revealing latent vulnerabilities in embedded interpreters.</p>