summaryrefslogtreecommitdiffstats
path: root/security/rlbox/rlbox.mozbuild
diff options
context:
space:
mode:
Diffstat (limited to 'security/rlbox/rlbox.mozbuild')
-rw-r--r--security/rlbox/rlbox.mozbuild57
1 files changed, 57 insertions, 0 deletions
diff --git a/security/rlbox/rlbox.mozbuild b/security/rlbox/rlbox.mozbuild
new file mode 100644
index 0000000000..8e91eff8ae
--- /dev/null
+++ b/security/rlbox/rlbox.mozbuild
@@ -0,0 +1,57 @@
+# -*- Mode: python; indent-tabs-mode: nil; tab-width: 40 -*-
+# vim: set filetype=python:
+# This Source Code Form is subject to the terms of the Mozilla Public
+# License, v. 2.0. If a copy of the MPL was not distributed with this
+# file, You can obtain one at http://mozilla.org/MPL/2.0/.
+
+
+@template
+def RLBoxLibrary(name):
+ WASM_SOURCES += [
+ "/memory/mozalloc/mozalloc.cpp",
+ "/third_party/rlbox_wasm2c_sandbox/c_src/wasm2c_sandbox_wrapper.c",
+ ]
+
+ SOURCES += [f"!{name}.wasm.c"]
+ SOURCES += ["/third_party/wasm2c/wasm2c/wasm-rt-impl.c"]
+
+ # Configuration for the wasm2c runtime used by RLBox
+
+ # Enable SIMD autovectorization
+ if CONFIG["WASM_CC_VERSION"] and int(CONFIG["WASM_CC_VERSION"].split(".")[0]) >= 11:
+ WASM_CXXFLAGS += ["-msimd128"]
+
+ # Use a mmap style allocation
+ DEFINES["WASM_RT_USE_MMAP"] = 1
+
+ # Don't use internal signal handler as Firefox already provides one
+ DEFINES["WASM_RT_SKIP_SIGNAL_RECOVERY"] = 1
+
+ # We provide a custom trap handler that calls MOZ_CRASH
+ DEFINES["WASM_RT_TRAP_HANDLER"] = "moz_wasm2c_trap_handler"
+
+ # Don't limit the nested call depth
+ DEFINES["WASM_RT_USE_STACK_DEPTH_COUNT"] = 0
+
+ # Configure the wasm runtime to invoke a callback when a Wasm memory growth
+ # fails inside the sandbox. This information is used to annotate crash reports.
+ DEFINES["WASM_RT_GROW_FAILED_HANDLER"] = "moz_wasm2c_memgrow_failed"
+
+ SOURCES[f"!{name}.wasm.c"].flags += [
+ "-Wno-unused",
+ ]
+
+ WASM_DEFINES["MOZ_IN_WASM_SANDBOX"] = True
+ if CONFIG["ENABLE_CLANG_PLUGIN"]:
+ WASM_DEFINES["MOZ_CLANG_PLUGIN"] = True
+
+ SANDBOXED_WASM_LIBRARY_NAME = f"{name}.wasm"
+
+ # Ideally we'd also list {name}.wasm.h as an output, but that would put the
+ # generation in export rather than pre-compile, and we prefer the latter.
+ GeneratedFile(
+ f"{name}.wasm.c",
+ script="/config/wasm2c.py",
+ entry_point="wasm2c",
+ inputs=["!/dist/host/bin/wasm2c" + CONFIG["HOST_BIN_SUFFIX"], f"!{name}.wasm"],
+ )
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-22 01:14:11 +0000