wasm-sandbox 0.4.1

A secure WebAssembly sandbox with dead-simple ease of use, progressive complexity APIs, and comprehensive safety controls
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147

//! Shared memory abstractions for host-guest communication

use std::sync::{Arc, Mutex};
use std::collections::HashMap;

use crate::error::{Error, Result};

/// Shared memory region
pub struct SharedMemoryRegion {
    /// Region name
    name: String,
    
    /// Memory buffer
    buffer: Mutex<Vec<u8>>,
    
    /// Region size
    size: usize,
}

impl SharedMemoryRegion {
    /// Create a new shared memory region
    pub fn new(name: &str, size: usize) -> Self {
        Self {
            name: name.to_string(),
            buffer: Mutex::new(vec![0; size]),
            size,
        }
    }
    
    /// Read from the shared memory region
    pub fn read(&self, offset: usize, buf: &mut [u8]) -> Result<usize> {
        // Get the buffer
        let buffer = self.buffer.lock().unwrap();
        
        // Check if the offset is valid
        if offset >= self.size {
            return Err(Error::Communication {
                channel: "shared_memory".to_string(),
                reason: format!("Invalid offset: {}", offset),
                instance_id: None,
            });
        }
        
        // Calculate the number of bytes to read
        let n = std::cmp::min(buf.len(), self.size - offset);
        
        // Copy the data
        buf[..n].copy_from_slice(&buffer[offset..offset+n]);
        
        Ok(n)
    }
    
    /// Write to the shared memory region
    pub fn write(&self, offset: usize, data: &[u8]) -> Result<usize> {
        // Get the buffer
        let mut buffer = self.buffer.lock().unwrap();
        
        // Check if the offset is valid
        if offset >= self.size {
            return Err(Error::Communication {
                channel: "shared_memory".to_string(),
                reason: format!("Invalid offset: {}", offset),
                instance_id: None,
            });
        }
        
        // Calculate the number of bytes to write
        let n = std::cmp::min(data.len(), self.size - offset);
        
        // Copy the data
        buffer[offset..offset+n].copy_from_slice(&data[..n]);
        
        Ok(n)
    }
    
    /// Get the region size
    pub fn size(&self) -> usize {
        self.size
    }
    
    /// Get the region name
    pub fn name(&self) -> &str {
        &self.name
    }
}

/// Shared memory manager
pub struct SharedMemoryManager {
    /// Shared memory regions
    regions: Mutex<HashMap<String, Arc<SharedMemoryRegion>>>,
}

impl SharedMemoryManager {
    /// Create a new shared memory manager
    pub fn new() -> Self {
        Self {
            regions: Mutex::new(HashMap::new()),
        }
    }
    
    /// Create a new shared memory region
    pub fn create_region(&self, name: &str, size: usize) -> Result<Arc<SharedMemoryRegion>> {
        // Check if the region already exists
        let mut regions = self.regions.lock().unwrap();
        if regions.contains_key(name) {
            return Err(Error::Communication {
                channel: "shared_memory_manager".to_string(),
                reason: format!("Region already exists: {}", name),
                instance_id: None,
            });
        }
        
        // Create the region
        let region = Arc::new(SharedMemoryRegion::new(name, size));
        
        // Register the region
        regions.insert(name.to_string(), region.clone());
        
        Ok(region)
    }
    
    /// Get a shared memory region
    pub fn get_region(&self, name: &str) -> Option<Arc<SharedMemoryRegion>> {
        let regions = self.regions.lock().unwrap();
        regions.get(name).cloned()
    }
    
    /// Delete a shared memory region
    pub fn delete_region(&self, name: &str) -> Result<()> {
        let mut regions = self.regions.lock().unwrap();
        if regions.remove(name).is_none() {
            return Err(Error::Communication {
                channel: "shared_memory_manager".to_string(),
                reason: format!("Region not found: {}", name),
                instance_id: None,
            });
        }
        
        Ok(())
    }
    
    /// List all shared memory regions
    pub fn list_regions(&self) -> Vec<String> {
        let regions = self.regions.lock().unwrap();
        regions.keys().cloned().collect()
    }
}