CheriBSD features
CheriBSD extends FreeBSD with added CHERI-enabled features, such as kernel and userspace memory safety:
- Kernel compilation modes
- Process environments
- CheriABI desktop environment
- Userlevel heap temporal memory safety (experimental - enabled by default)
- Userlevel software compartmentalization (experimental - disabled by default)
- bhyve hypervisor (experimental)
All of these features ship in the CheriBSD release, but some are not enabled by default.