None
Tracked by v8 issue https://bugs.chromium.org/p/v8/issues/detail?id=5072
--
--
Chromium Developers mailing list: chromi...@chromium.org
View archives, change email options, or unsubscribe:
http://groups.google.com/a/chromium.org/group/chromium-dev
+jbroman
If we assume a compromised renderer, the check at serialization time doesn't help much
If we assume a compromised renderer, the check at serialization time doesn't help much
Why do we think sending WebAssembly is scarier than sending JS source text?
On Fri, Sep 2, 2016 at 1:48 PM, Elliott Sprehn <esp...@chromium.org> wrote:Why do we think sending WebAssembly is scarier than sending JS source text?This proposal would send the compiled V8 representation, rather than the format sent over the network. (The objective being to avoid the time spent compiling.)
By restricting this to same origin, and once oopif is on by default, we'd make this exploit less likely (compromising one renderer from another)
I might be missing something here... isn't WebAssembly.Module just a opaque handle to the compiled binary? (which it seems by reading the reading the API can only come from the output of compiling an AST? i.e. we have full control as to what is in the binary?)