DEVHIDE
Login Or Sign up

host can choose which system calls pass to each webassembly module

163 Views Asked by At

part of the talk of Lin Clark in https://hacks.mozilla.org/2019/03/standardizing-wasi-a-webassembly-system-interface/:

It also gives us sandboxing because the host can choose which wasi-core functions to pass in — so, which system calls to allow — on a program-by-program basis. This preserves security.

she says host can choose which system calls pass to each wasm module. for example read() system call passes to module A and write() system call to module B.

is it implemented in wasmtime or lucet or other runtimes? or is it just a dream without implementation in real world?

sandbox webassembly blazor-webassembly isolation wasmtime
Original Q&A
1

There are 1 best solutions below

0
On BEST ANSWER

Yes it is implemented in all runtimes implementing wasi. The reason is that this feature is related to import/export mechanism of WebAssembly.

Related Questions in SANDBOX

Related Questions in WEBASSEMBLY

Related Questions in BLAZOR-WEBASSEMBLY

Related Questions in ISOLATION

Related Questions in WASMTIME

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.