Friend's meme coping strategy isn't pulling any punches today. 😳

#politics #USPoli #CdnPoli #tariffs #literacy

While we did this for security purposes, you don't have to be security-oriented, this is generic OS research.

https://bird.makeup/@spendergrsec/1897722500806787312

Project: golang/go https://github.com/golang/go
File: src/cmd/compile/internal/ssa/regalloc.go:610 https://github.com/golang/go/blob/refs/tags/go1.23.4/src/cmd/compile/internal/ssa/regalloc.go#L610

func (s *regAllocState) init(f *Func)

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fgolang%2Fgo%2Fblob%2Frefs%2Ftags%2Fgo1.23.4%2Fsrc%2Fcmd%2Fcompile%2Finternal%2Fssa%2Fregalloc.go%23L610&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?github=https%3A%2F%2Fgithub.com%2Fgolang%2Fgo%2Fblob%2Frefs%2Ftags%2Fgo1.23.4%2Fsrc%2Fcmd%2Fcompile%2Finternal%2Fssa%2Fregalloc.go%23L610&colors=light

https://developers.redhat.com/articles/2024/12/11/making-memcpynull-null-0-well-defined - Making memcpy(NULL, NULL, 0) well-defined.

@ewolff auch:
„Massive amounts of Russian propaganda — 3,600,000 articles in 2024 — are now incorporated in the outputs of Western AI systems, infecting their responses with false claims and propaganda. […] A NewsGuard audit has found that the leading AI chatbots repeated false narratives laundered by the Pravda network 33 percent of the time“

https://www.newsguardrealitycheck.com/p/a-well-funded-moscow-based-global

Reversing Samsung's H-Arx Hypervisor Framework (Part 1) https://dayzerosec.com/blog/2025/03/08/reversing-samsungs-h-arx-hypervisor-part-1.html

this is my legacy

Project: mpengine-x64-pdb 1.1.24090.11
File: mpengine.dll
Address: 75aa89290

PostProcessRecordsWorker

SVG:
dark https://tmr232.github.io/function-graph-overview/render/?graph=https%3A%2F%2Fraw.githubusercontent.com%2Fv-p-b%2Fghidra-function-graph-datasets%2Frefs%2Fheads%2Fmain%2F%2Fmpengine-x64-pdb%2F75aa89290.json&colors=dark
light https://tmr232.github.io/function-graph-overview/render/?graph=https%3A%2F%2Fraw.githubusercontent.com%2Fv-p-b%2Fghidra-function-graph-datasets%2Frefs%2Fheads%2Fmain%2F%2Fmpengine-x64-pdb%2F75aa89290.json&colors=light

Hey did you know

1. It is Bandcamp Friday* I didn't know if they'd do Bandcamp Friday after last year but they're doing it. This means if you buy music on Bandcamp in the next 11 hours the artist gets a higher % than normal and the weird company that bought Bandcamp gets jack

2. ~ Lena Raine, who you may know as the composer from Celeste, dropped a new album today ~

https://radicaldreamland.bandcamp.com/album/earthblade-across-the-bounds-of-fate

---

* https://isitbandcampfriday.com/

Attacks against AD CS are de rigueur these days, but sometimes a working attack doesn’t work somewhere else, and the inscrutable error messages are no help. Jacques replicated the most infuriating and explains what’s happening under the hood in this post:
https://sensepost.com/blog/2025/diving-into-ad-cs-exploring-some-common-error-messages/

I’m not saying you definitely have to go to @bluehatil this year, I’m just letting you know it’s free, by the beach and I’ll be there dropping kernel pointers to anyone who asks nicely

This year I am joining the Black Hat USA review board as a guest reviewer. It's awesome to be part of such an industry defining event and help give back to the community 🫶

Since I learned English as a second language (ESL) myself, I understand how stressful it can be to work on CFPs. It's not just about the technical details, you also have to consider formatting, wording, and overall clarity. If anyone wants some structural feedback on their submissions, my DMs are open as always 🙇‍♂️

Fuck.

#Google #searchengine will soon be completely unusable instead of mostly unusable(paid results).

This is a real problem.

" you can't just scroll down in AI Mode to see organic results. … refine your search or ask follow-up questions."

https://arstechnica.com/google/2025/03/google-is-expanding-ai-overviews-and-testing-ai-only-search-results/

Wow the AutoCHERI report makes me not want to get into a car ever again:

The few memory issues that were detected by CHERI hardware (exceptions) required a detailed analysis of the error conditions to understand and address the them, which took significantly more time than is normally spent using conventional tools. CHERI’s increased demand on exception management needs a higher level of development effort and expertise, rather than enabling less experienced engineers to adopt it for embedded and safety-critical systems development.

If automotive vendors are employing developers who find it hard to debug memory-safety issues when the hardware tells you the precise instruction that triggers the bug (and a debugger stops at exactly that point showing you where in the bug exists in the source code), they must be really scraping the bottom of the barrel.

Odd that this is the exact opposite of the experience that everyone else has had developing on CHERI platforms.