There is madness, there is systemd and there is someone writing a WebAssembly kernel module for Linux…
“Because khttpd was sane”™
github.com/rianhunter/was
Conversation
Actually WebAssembly is just a language that can be used outside of a web. And it has safety (memory) checks built-in, so it is not a bad idea. Certainly better than C, e.g.
1
If you run a JIT in the kernel for any programming language which, on top, is designed to be used for Internet-connected activities you are simply asking for it.
If you think this is a good idea then please install kernel 2.4 and run khttpd.
1
7
eBPF has a JIT available. It doesn't always use it, and it isn't iptables. eBPF is terrible for security whether or not the JIT is used but that's par for the course for the Linux kernel. It gets increasingly complex with ever more attack surface and nothing to compensate for it.