jsdet-core 0.1.0

Core WASM-sandboxed JavaScript detonation engine
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134

/// Nested WASM execution — the novel capability.
///
/// When JavaScript inside `QuickJS` calls `new WebAssembly.Module(bytes)`,
/// the host intercepts this and creates a SECOND wasmtime instance.
///
/// ```text
/// ┌────────────────────────────────────┐
/// │ Host (Rust + wasmtime)             │
/// │                                    │
/// │  ┌──────────────────────┐          │
/// │  │ Outer WASM instance  │          │
/// │  │ (QuickJS engine)     │          │
/// │  │                      │          │
/// │  │  JS calls:           │          │
/// │  │  new WebAssembly     │          │
/// │  │    .Module(bytes)    │          │
/// │  │        │             │          │
/// │  └────────┼─────────────┘          │
/// │           │ host import            │
/// │           ▼                        │
/// │  ┌──────────────────────┐          │
/// │  │ Inner WASM instance  │          │
/// │  │ (user's WASM module) │          │
/// │  │                      │          │
/// │  │ - own linear memory  │          │
/// │  │ - own fuel budget    │          │
/// │  │ - no host imports    │          │
/// │  │   (fully sealed)     │          │
/// │  └──────────────────────┘          │
/// └────────────────────────────────────┘
/// ```
///
/// The inner instance:
/// - Has its own linear memory (cannot read outer's memory)
/// - Has its own fuel budget (cannot `DoS` the outer instance)
/// - Gets NO host imports (fully sealed — cannot call bridge APIs)
/// - Exports are callable from the outer instance via host trampolines
///
/// This means: even if the WASM module is a crypto miner, it runs
/// inside our fuel budget and memory cap, then stops. We observe
/// exactly what it imports, exports, and how much compute it uses.
///
use wasmtime::{Engine, Module, Store};

use crate::config::SandboxConfig;
use crate::error::{Error, Result};
use crate::observation::Observation;

/// Metadata about a nested WASM instantiation.
#[derive(Debug, Clone)]
pub struct NestedWasmInfo {
    /// Size of the WASM module bytes.
    pub module_size: usize,
    /// Names of functions the module imports (expects the host to provide).
    pub import_names: Vec<String>,
    /// Names of functions the module exports.
    pub export_names: Vec<String>,
    /// Whether the module was actually instantiated (vs just analyzed).
    pub instantiated: bool,
    /// Fuel consumed during execution (if instantiated).
    pub fuel_consumed: u64,
}

/// Analyze and optionally execute a WASM module provided by JavaScript.
///
/// Called when JS code does `new WebAssembly.Module(bytes)`.
///
/// # Errors
///
/// Returns an error if the initial metadata compilation fails.
pub fn handle_wasm_instantiation(
    engine: &Engine,
    wasm_bytes: &[u8],
    config: &SandboxConfig,
) -> Result<(NestedWasmInfo, Observation)> {
    // Compile the module to extract metadata.
    let module = Module::new(engine, wasm_bytes)
        .map_err(|e| Error::Internal(format!("nested WASM compilation failed: {e}")))?;

    let import_names: Vec<String> = module
        .imports()
        .map(|imp| format!("{}.{}", imp.module(), imp.name()))
        .collect();

    let export_names: Vec<String> = module.exports().map(|exp| exp.name().to_string()).collect();

    let mut info = NestedWasmInfo {
        module_size: wasm_bytes.len(),
        import_names: import_names.clone(),
        export_names: export_names.clone(),
        instantiated: false,
        fuel_consumed: 0,
    };

    // Only instantiate if configured to do so AND the module has no imports
    // (a module with imports expects host functions we don't provide).
    if config.allow_nested_wasm && import_names.is_empty() {
        let mut store = Store::new(engine, ());
        if config.nested_wasm_max_fuel > 0 {
            store
                .set_fuel(config.nested_wasm_max_fuel)
                .map_err(|e| Error::Internal(format!("nested fuel: {e}")))?;
        }

        // Instantiate with empty imports (module has none).
        let linker = wasmtime::Linker::new(engine);
        if let Ok(_instance) = linker.instantiate(&mut store, &module) {
            info.instantiated = true;
            if config.nested_wasm_max_fuel > 0 {
                let remaining = store.get_fuel().unwrap_or(0);
                info.fuel_consumed = config.nested_wasm_max_fuel.saturating_sub(remaining);
            }
        } else {
            // Instantiation failed — trap, OOM, etc. Record it.
            info.instantiated = false;
            return Ok((
                info.clone(),
                Observation::WasmInstantiation {
                    module_size: info.module_size,
                    import_names: info.import_names,
                    export_names: info.export_names,
                },
            ));
        }
    }

    let observation = Observation::WasmInstantiation {
        module_size: info.module_size,
        import_names: info.import_names.clone(),
        export_names: info.export_names.clone(),
    };

    Ok((info, observation))
}