As a FOSS developer, I guess I'm ok with WebAssembly if and only if the source code is provided so we aren't just randomly downloading and executing binary blobs from the Internet (which we all know is an incredibly safe place of noble do gooders).
Edit: Maybe what is needed is a way of downloading the blob and executable with source in a way that they are signed and associated so that in a browser debugger you could trace through the program and know what it's doing, etc...
In short, the obvious goals of WebAssembly seem nefarious. Need a way to fix that.
Edit 2: I'd turn off wasm in your browser. Just saying. And I'd recommend running one of the many Javascript blockers so that you're not just willy nilly running untrusted code on your machine.
Announcement
Collapse
No announcement yet.
Miguel de Icaza Talks Up WebAssembly Greatness
Collapse
X
-
Originally posted by bug77 View Post
This adds complications of its own. You no longer have a single WASM file, you now have to manage the runtime and your code separately. And then what do you do if the compiler smartens up and doesn't include the whole runtime, but just the parts you actually use? How many runtimes do you keep around (I'm looking at you, Windows with a bazillion MSVC runtimes that no one dares touch).
It would be a stupid thing to charge browsers for handling the Wasm VM. It is better to let the OS do it.
- Likes 2
Leave a comment:
-
Originally posted by uid313 View Post
Maybe web browsers could implement a shared cache for runtimes.
- Likes 3
Leave a comment:
-
Originally posted by c117152 View Post
wasm-decompile produces fairly readable code compared to obfuscated javascript.
Originally posted by uid313 View Post
Maybe web browsers could implement a shared cache for runtimes.
At the moment in Emscripten it gets bundled into a single .wasm or .js file by default but there is no reason why it cannot be separated.
Leave a comment:
-
Originally posted by Zan Lynx View PostWASM is no worse. It can be decompiled and read about the same as obfuscated Javascript. At least it can't do x86 assembly tricks like computing a jump into unaligned code at a +1 byte offset or using Windows SEH to execute the real code during division by zero.
Leave a comment:
-
Originally posted by bug77 View PostThe problem is these languages need a runtime and that will make your WASM code quite big (e.g. ~5MB for a simple "hello world" written in Go). That'll wreak havoc with download speeds and data caps. The only language I know of that is up to the task is Rust. And I'm assuming C/C++, but I haven't checked.
But the spec and tooling are coming along nicely, it's no longer super-tedious to pass around things more complex than an int, we got support for multi-threading...
- Likes 1
Leave a comment:
-
Originally posted by uid313 View PostYeah, WebAssembly is really cool. Microsoft use it for Blazor which is a framework which allows the developer to write code in C# then it gets executed on the client side in the web browser.
But the spec and tooling are coming along nicely, it's no longer super-tedious to pass around things more complex than an int, we got support for multi-threading...
- Likes 3
Leave a comment:
-
Originally posted by Danny3 View PostThe answer to one question that I have about WebAssembly can determine if I like it or not...
Can the code that the browser run be seen like for HTML, CSS and Javascript ?
I don't want my browser to run any binary only code!
WASM is no worse. It can be decompiled and read about the same as obfuscated Javascript. At least it can't do x86 assembly tricks like computing a jump into unaligned code at a +1 byte offset or using Windows SEH to execute the real code during division by zero.
- Likes 2
Leave a comment:
-
Originally posted by Volta View PostAnother crap like mono from Icaza?
- Likes 5
Leave a comment:
Leave a comment: