gnh1201/wasm-micro-runtime
1
0
Fork 0
mirror of https://github.com/bytecodealliance/wasm-micro-runtime.git synced 2025-09-05 17:32:26 +00:00
Code Issues Actions 4 Packages Projects Releases Wiki Activity

Compare commits

base: gnh1201:8d32f62f9323928e25a3eb359579424e5e4f8b7c
Branches Tags
gnh1201:main
gnh1201:ospencer-patch-1
gnh1201:dev/zephyr_file_socket
gnh1201:dev/extended_const
gnh1201:dev/shared_heap
gnh1201:dev/runtime_instance
gnh1201:dev/simd_for_interp
gnh1201:dev/instantiate_linking
gnh1201:gitbook
gnh1201:loganek/message-ref-types
gnh1201:dev/memory64
gnh1201:dev/exce_handling
gnh1201:dev/dynamic_linking
gnh1201:dev/multi_memory
gnh1201:dev/checkpoint_and_restore
gnh1201:dev/thread_suspension
gnh1201:dev/gc_refactor
gnh1201:release/1.3.x
gnh1201:dev/dynamic_pgo
gnh1201:dev/interrupt_block_insn
gnh1201:dev/dylink
gnh1201:WAMR-2.4.1
gnh1201:WAMR-2.4.0
gnh1201:WAMR-2.3.1
gnh1201:WAMR-2.3.0
gnh1201:WAMR-2.2.0
gnh1201:WAMR-2.1.2
gnh1201:WAMR-2.1.1
gnh1201:WAMR-2.1.0
gnh1201:WAMR-1.3.3
gnh1201:WAMR-2.0.0
gnh1201:WAMR-1.3.2
gnh1201:WAMR-1.3.1
gnh1201:WAMR-1.3.0
gnh1201:WAMR-1.2.3
gnh1201:WAMR-1.2.2
gnh1201:WAMR-1.2.1
gnh1201:WAMR-1.2.0
gnh1201:WAMR-1.1.2
gnh1201:WAMR-1.1.1
gnh1201:WAMR-1.1.0
gnh1201:WAMR-1.0.0
gnh1201:fast-jit-06-29-2022
gnh1201:WAMR-05-18-2022
gnh1201:WAMR-01-18-2022
gnh1201:WAMR-12-30-2021
gnh1201:WAMR-08-10-2021
gnh1201:WAMR-04-15-2021
gnh1201:WAMR-03-25-2021
gnh1201:WAMR-01-29-2021
gnh1201:WAMR-09-29-2020
gnh1201:WAMR-09-08-2020
gnh1201:WAMR-07-10-2020
gnh1201:WAMR-06-15-2020
gnh1201:WAMR-04-15-2020
gnh1201:WAMR-03-30-2020
gnh1201:WAMR-03-19-2020
gnh1201:WAMR-03-05-2020
gnh1201:WAMR-02-27-2020
gnh1201:WAMR-02-18-2020
gnh1201:01-12-2020
gnh1201:tag-11-28-2019
..
compare: gnh1201:2fed811d92c3186c18fda972c55a49a9d53c4f79
Branches Tags
gnh1201:main
gnh1201:ospencer-patch-1
gnh1201:dev/zephyr_file_socket
gnh1201:dev/extended_const
gnh1201:dev/shared_heap
gnh1201:dev/runtime_instance
gnh1201:dev/simd_for_interp
gnh1201:dev/instantiate_linking
gnh1201:gitbook
gnh1201:loganek/message-ref-types
gnh1201:dev/memory64
gnh1201:dev/exce_handling
gnh1201:dev/dynamic_linking
gnh1201:dev/multi_memory
gnh1201:dev/checkpoint_and_restore
gnh1201:dev/thread_suspension
gnh1201:dev/gc_refactor
gnh1201:release/1.3.x
gnh1201:dev/dynamic_pgo
gnh1201:dev/interrupt_block_insn
gnh1201:dev/dylink
gnh1201:WAMR-2.4.1
gnh1201:WAMR-2.4.0
gnh1201:WAMR-2.3.1
gnh1201:WAMR-2.3.0
gnh1201:WAMR-2.2.0
gnh1201:WAMR-2.1.2
gnh1201:WAMR-2.1.1
gnh1201:WAMR-2.1.0
gnh1201:WAMR-1.3.3
gnh1201:WAMR-2.0.0
gnh1201:WAMR-1.3.2
gnh1201:WAMR-1.3.1
gnh1201:WAMR-1.3.0
gnh1201:WAMR-1.2.3
gnh1201:WAMR-1.2.2
gnh1201:WAMR-1.2.1
gnh1201:WAMR-1.2.0
gnh1201:WAMR-1.1.2
gnh1201:WAMR-1.1.1
gnh1201:WAMR-1.1.0
gnh1201:WAMR-1.0.0
gnh1201:fast-jit-06-29-2022
gnh1201:WAMR-05-18-2022
gnh1201:WAMR-01-18-2022
gnh1201:WAMR-12-30-2021
gnh1201:WAMR-08-10-2021
gnh1201:WAMR-04-15-2021
gnh1201:WAMR-03-25-2021
gnh1201:WAMR-01-29-2021
gnh1201:WAMR-09-29-2020
gnh1201:WAMR-09-08-2020
gnh1201:WAMR-07-10-2020
gnh1201:WAMR-06-15-2020
gnh1201:WAMR-04-15-2020
gnh1201:WAMR-03-30-2020
gnh1201:WAMR-03-19-2020
gnh1201:WAMR-03-05-2020
gnh1201:WAMR-02-27-2020
gnh1201:WAMR-02-18-2020
gnh1201:01-12-2020
gnh1201:tag-11-28-2019

2 Commits
8d32f62f93 ... 2fed811d92

Author SHA1 Message Date
liang.he
2fed811d92
Merge adbc8f1f07 into 6253bd1b52 2025-09-05 13:57:12 +08:00
liang.he
adbc8f1f07 Update issue templates 
Follow [the instructions at GitHub Documentation](https://docs.github.com/en/communities/using-templates-to-encourage-useful-issues-and-pull-requests/configuring-issue-templates-for-your-repository#creating-issue-templates)
to recreate issue templates. Apply the new format and add new fields.
 2025-09-05 05:55:32 +00:00
1 changed files with 2 additions and 2 deletions
Show Stats Expand all files Collapse all files

4
doc/security_need_to_know.md
View File

@ -29,9 +29,9 @@ Only bugs that affect [tier A platforms or features](./tired_support.md) should
Actions that differ from Wasm rules (like calculating wrong values) are not seen as security issues as long as they stay within the sandbox.
As embedded code, trusts inputs from the guest. By default, APIs and CLIs are following the principle of **caller guarantee**. If the caller provides incorrect parameters, it is not a security issue. For example, if a user passes an invalid file descriptor to `fd_read`, it is not a security issue.
By default, APIs and CLIs are following the principle of **caller guarantee**. If the caller provides incorrect parameters or users input malformed options, it is not a security issue. For example, if a user passes an invalid file descriptor to `fd_read`, it is not a security issue.
While .aot files are trusted, .wasm files are not. Any unexpected behavior caused by a .wasm file is not a security issue. For example, if a .wasm file causes a runtime crash or hang, it is a security issue. However, if the same .wasm file causes a crash or hang when converted to an .aot file, it is not a security issue.
.wasm are not trusted. Malformed .wasm files should be handled gracefully. If a .wasm file causes a runtime crash or hang, it is a security issue. On the other hand, it's expected that aot runtime alone doesn't provide the same guarantee. So user-crafted aot modules can cause anything, including crashes or hangs. They are not considered security issues.
A denial-of-service (DoS) attack is a cyberattack that aims to make a computer or network resource unavailable to its users. If the service (runtime in this case) can recover and start another module or run another function within the same instance, it is not considered unavailable, and thus not a Denial of Service (DoS).