CommunityNews
Extent of safety properties in WebAssembly
WebAssembly has been one of the trendiest intermediate representations since a while.
However, its definition of safety means preventing breaching the sandbox. Its goal is to prevent escalation from the VM guest code to the VM host boundary.
WASI then defines a capabilities-based syscall interface that can be used by applications. Some alternatives which can be implemented with running native code are through using seccomp on Linux. (or using dkmon on Windows)
In WebAssembly, only one memory segment is allowed. As such, unlike managed language runtimes (such as Java and the CLR), WebAssembly by itself does not provide memory safety.
Each global variable gets its own memory segment however, as do local variables. A memory allocation on the heap means that you lose those thin guarantees…
https://threedots.ovh/blog/2021/01/extent-of-safety-properties-in-webassembly/
This thread was posted by one of our members via one of our automated news source trackers.
Popular Frontend topics
Other popular topics
Sponsor Spotlight
Practical resources that improve the lives of professional developers.
Latest in WebAssembly
Categories:
Sub Categories:
Popular Portals
- /elixir
- /rust
- /ruby
- /wasm
- /erlang
- /phoenix
- /keyboards
- /python
- /js
- /rails
- /security
- /go
- /swift
- /vim
- /clojure
- /haskell
- /emacs
- /java
- /svelte
- /onivim
- /typescript
- /kotlin
- /c-plus-plus
- /crystal
- /tailwind
- /react
- /gleam
- /ocaml
- /flutter
- /elm
- /vscode
- /ash
- /html
- /opensuse
- /zig
- /centos
- /deepseek
- /php
- /scala
- /react-native
- /lisp
- /textmate
- /sublime-text
- /nixos
- /debian
- /agda
- /django
- /kubuntu
- /arch-linux
- /deno
- /nodejs
- /revery
- /ubuntu
- /manjaro
- /spring
- /diversity
- /lua
- /markdown
- /julia
- /c
Devtalk Sponsors
Practical resources that improve the lives of professional developers.
We build trusted fault-tolerant systems that scale to billions of users.
Real-time error tracking, performance insights, and observability for devs.
Supporting innovation across the BEAM ecosystem.
We build reliable cloud platforms for business-critical systems.
Develop your skills with books, videos, and courses.
Catch errors, track performance, monitor hosts and more.
Enabling companies to succeed by building software people love.
Courses that move you from confusion to "Aha, now I get it!"