Stream: git-wasmtime

Topic: wasmtime / issue #3726 Add support for digital signatures


view this post on Zulip Wasmtime GitHub notifications bot (Jan 25 2022 at 21:04):

github-actions[bot] commented on issue #3726:

Subscribe to Label Action

cc @peterhuene

<details>
This issue or pull request has been labeled: "wasmtime:api"

Thus the following users have been cc'd because of the following labels:

To subscribe or unsubscribe from this label, edit the <code>.github/subscribe-to-label.json</code> configuration file.

Learn more.
</details>

view this post on Zulip Wasmtime GitHub notifications bot (Feb 02 2022 at 18:43):

jedisct1 commented on issue #3726:

Any feedback on this?

view this post on Zulip Wasmtime GitHub notifications bot (Feb 10 2022 at 19:48):

jedisct1 commented on issue #3726:

The --public-keys has been renamed to --experimental-public-keys.

view this post on Zulip Wasmtime GitHub notifications bot (Feb 16 2022 at 17:39):

github-actions[bot] commented on issue #3726:

Label Messager: wasmtime:config

It looks like you are changing Wasmtime's configuration options. Make sure to
complete this check list:

[fuzzing-config]: https://github.com/bytecodealliance/wasmtime/blob/ca0e8d0a1d8cefc0496dba2f77a670571d8fdcab/crates/fuzzing/src/generators.rs#L182-L194
[fuzzing-docs]: https://docs.wasmtime.dev/contributing-fuzzing.html


<details>

To modify this label's message, edit the <code>.github/label-messager/wasmtime-config.md</code> file.

To add new label messages or remove existing label messages, edit the
<code>.github/label-messager.json</code> configuration file.

Learn more.

</details>

view this post on Zulip Wasmtime GitHub notifications bot (Feb 23 2022 at 08:50):

jedisct1 commented on issue #3726:

Ping?

(no code changes in the rebases, these were just to fix merge conflicts introduced by the memfd work)

view this post on Zulip Wasmtime GitHub notifications bot (Feb 23 2022 at 23:22):

alexcrichton commented on issue #3726:

I believe that @tschneidereit was previously taking a look at this and I don't know where he left off. I also believe that he's away this week, but I can ping him about this next week when he's back.

view this post on Zulip Wasmtime GitHub notifications bot (Mar 01 2022 at 18:22):

alexcrichton commented on issue #3726:

Ok I talked with Till and it sounds like y'all mainly talked about the CLI interface and high-level concerns about this being experimental, so I'll focus more on the technical implementation.

Overall I'm personally concerned about the implementation of this where very little is in this repository and 99% of this is in an external crate. We do that for crates like wasmparser and wast and such but it's pretty rare to outsource large implementation details from Wasmtime. This can run the risk of integration issues and also runs the risk of diluting the quality of code coming into Wasmtime because the external code is not reviewed in the same manner as code in this repository. Some specific things I noticed reading over the wasmsign2 crate and the integration in this PR:

These are some of the more major points at least but I figured it's at least a starting point. In some sense this PR matches how wasi-crypto was integrated where a large external dependency is added that's largely outside of this repository, but wasi-crypto is also much more opt-in in that it's not part of the wasmtime crate API and it's only about host functions rather than integrating into the flow of processing wasm modules.

I think one possible way to improve the integration here would be to split the wasmsign2 crate into a reader/writer half where Wasmtime would only depend on the reading portions and the wasmsign2 crate would have APIs for creating the context used to process signatures and then have the ability to be fed individual sections as they're parsed in the main loop of parsing a wasm module with the wasmparser crate. Ideally the wasmsign2 crate would not do any parsing itself, or would have a mode where when integrated into Wasmtime it doesn't do any of its own parsing.


Last updated: Dec 23 2024 at 13:07 UTC