Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://toot.yosh.is/users/yosh/statuses/113538206133695429">yosh (yosh@toot.yosh.is)'s status on Monday, 25-Nov-2024 09:19:12 JST</a><a href="https://toot.yosh.is/@yosh" title="yosh@toot.yosh.is"><img src="https://gnusocial.jp/avatar/29488-48-20221117172847.webp" width="48" height="48" alt="yosh" style="position: absolute; left: 0; top: 0;">yosh</a><div><a href="https://toot.yosh.is/@yosh/113538132378073963" rel="in-reply-to">in reply to</a></div></section><article><p>“But Yosh, how would we sandbox C++ code at scale?”</p><p>While not a perfect solution — Firefox’s RLBox toolkit (<a href="https://rlbox.dev/" rel="nofollow noreferrer">https://rlbox.dev/</a>) provides the template for that. It compiles a C program to Wasm, puts it inside a Wasm sandbox, and provides the same API on the outside of the sandbox.</p><p>Now if the sandboxes library exhibits UB, it can no longer be used to exploit the rest of the program. Here’s a full writeup of how this works:</p><p><a href="https://hacks.mozilla.org/2020/02/securing-firefox-with-webassembly/" rel="nofollow noreferrer">https://hacks.mozilla.org/2020/02/securing-firefox-with-webassembly/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4064176#notice-7942073">In conversation</a><time datetime="2024-11-25T09:19:12+09:00" title="Monday, 25-Nov-2024 09:19:12 JST">about 2 months ago</time> <span>from <span><a href="https://toot.yosh.is/@yosh/113538206133695429" rel="external" title="Sent from toot.yosh.is via ActivityPub">toot.yosh.is</a></span></span><a href="https://toot.yosh.is/@yosh/113538206133695429">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://rlbox.dev/">Overview - Practical third-party library sandboxing with RLBox</a></h5><div></div></header><div></div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
yosh (yosh@toot.yosh.is)'s status on Monday, 25-Nov-2024 09:19:12 JST yosh
in reply to
“But Yosh, how would we sandbox C++ code at scale?”
While not a perfect solution — Firefox’s RLBox toolkit (https://rlbox.dev/) provides the template for that. It compiles a C program to Wasm, puts it inside a Wasm sandbox, and provides the same API on the outside of the sandbox.
Now if the sandboxes library exhibits UB, it can no longer be used to exploit the rest of the program. Here’s a full writeup of how this works:
https://hacks.mozilla.org/2020/02/securing-firefox-with-webassembly/
In conversationabout 2 months ago from toot.yosh.ispermalink
Attachments
1. No result found on File_thumbnail lookup.
  Overview - Practical third-party library sandboxing with RLBox

Public

Embed Notice

HTML Code

Corresponding Notice