Skip to content

WASM support #145

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Shnatsel merged 26 commits into from
May 3, 2024
Merged

WASM support #145

Shnatsel merged 26 commits into from
May 3, 2024

Conversation

@Shnatsel
Copy link
Member

@Shnatsel Shnatsel commented May 2, 2024
edited
Loading

  • Refactored platform detection to make it more robust
  • Added WASM support

TODO:

  • Add tests
  • Configure CI to test WASM targets
  • Make extraction guaranteed to be zero-allocation

Fixes #53

@Shnatsel Shnatsel mentioned this pull request May 2, 2024
Closed
@brooksmtownsend
Copy link

brooksmtownsend commented May 2, 2024

Gave this a shot with a fairly standard template component, it looks like the embedding works but cargo-audit might not have Wasm support. https://github.com/brooksmtownsend/cargo-auditable-wasmcloud

It's also possible I'm not using cargo audit properly 😄

@Shnatsel
Copy link
Member Author

Shnatsel commented May 2, 2024

Indeed, cargo audit doesn't support WASM yet. That will also have to be implemented.

Back when I was writing cargo auditable, I've found that the libraries for extracting data did not handle untrusted input particularly well - they could allocate unbounded amounts of memory, and also panicked on certain inputs. Because of that I've written https://github.com/Shnatsel/binfarce, which cannot have such failure modes by design.

I'm not sure how robust the wasmparser crate is. It seems to be doing a whole lot more parsing than what we actually need, presenting a rather big attack surface. I don't know how resilient it is to untrusted input; I don't see any indication that the parser has been fuzzed, for example.

It shouldn't be hard to extend binfarce to also parse WASM custom sections, if wasmparser proves unsuitable.

@Shnatsel
Copy link
Member Author

Shnatsel commented May 2, 2024

Well, it seems wasmparser actually was designed for parsing untrusted input - it is dealing with WASM after all. Fuzzing it didn't seem to turn up any issues. There is one unsafe block but there is no way to express that in safe code, and it appears to be correct. I think I'll be able to wire it up to the extraction pipeline.

The part I am not thrilled about is that I can no longer guarantee absence of heap allocations and therefore absence of OOM denial-of-service if I use wasmparser. Adding WASM support to binfarce would avoid that.

@Shnatsel
Copy link
Member Author

Shnatsel commented May 2, 2024

I've added the extraction pipeline using wasmparser. You can test it with rust-audit-info in-tree.

IIRC cargo audit will require a bit more work, but it is going to be quite trivial.

@Shnatsel Shnatsel marked this pull request as ready for review May 2, 2024 23:44
@Shnatsel
Copy link
Member Author

Shnatsel commented May 3, 2024

Sadly wasmparser pulls in more dependencies than I would like: bytecodealliance/wasm-tools#1528

It doesn't look like they're actually using them when the std feature is enabled, so it might not be active attack surface - but it's weird to lug all this dead weight around, and complicate packaging for distributions.

@Shnatsel Shnatsel merged commit 33ba39b into master May 3, 2024
@Shnatsel Shnatsel deleted the wasm branch May 3, 2024 15:01
@Shnatsel Shnatsel mentioned this pull request May 3, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

WebAssembly support

3 participants

@Shnatsel @brooksmtownsend