|
2 | 2 |
|
3 | 3 | ## Folks |
4 | 4 |
|
5 | | -| Name | GH Username | TLA | Affiliation | |
6 | | -| --------- | --------------- | --- | ------------ | |
7 | | -| Full Name | @githubUsername | FNE | organization | |
8 | | -| | | | | |
| 5 | +| Name | GH Username | TLA | Affiliation | |
| 6 | +| ---------------- | --------------- | --- | ------------ | |
| 7 | +| Full Name | @githubUsername | FNE | organization | |
| 8 | +| Chris de Almeida | @ctcpip | CDA | IBM | |
| 9 | +| Mark Miller | @erights | MM | Agoric | |
| 10 | +| Jordan Harband | @ljharb | JHD | HeroDevs | |
| 11 | +| Kris Kowal | @kriskowal | KKL | Agoric | |
| 12 | +| Richard Gibson | @gibson042 | RGN | Agoric | |
| 13 | +| Daniel Veditz | @dveditz | DVE | Mozilla | |
9 | 14 |
|
10 | 15 | ## Agenda |
11 | 16 |
|
|
14 | 19 |
|
15 | 20 | Happy Valentine's Day to all whom'st've celebrate! 💘 |
16 | 21 |
|
17 | | -| Topic | Presenter(s) | |
18 | | -| -------------------------------------------------------------------------------------- | ---------------- | |
19 | | -| review issues in security repo | Chris de Almeida | |
20 | | -| ? discuss [WasmGC shared memory proposal][wasm] / [shared structs proposal][structs] ? | | |
21 | | -| ? does TC39 need a formal security review for proposals? [related issue][related] | | |
| 22 | +| Topic | Presenter(s) | |
| 23 | +| --------------------------------------------------------------------------------------------------------------- | ------------ | |
| 24 | +| discuss [WasmGC shared memory proposal][wasm] / [shared structs proposal][structs] / [convergence][convergence] | | |
| 25 | + |
| 26 | +### [WasmGC shared memory proposal][wasm] / [shared structs proposal][structs] / [convergence][convergence] |
| 27 | + |
| 28 | +MM: |
| 29 | + |
| 30 | +- does not want shared mem multi-threading in JS |
| 31 | +- dangerous for engine integrity |
| 32 | +- concurrent GC dangerous for engine integrity |
| 33 | +- will discuss concerns at upcoming structs mtg |
| 34 | +- also: general issue of JS as a language to support defensive programming, integrity protection |
| 35 | + |
| 36 | + - shared mem multithreading difficult to defend, not a that supports interaction of components, whereas comm event loops does support |
| 37 | + - related: <https://papers.agoric.com/papers/concurrency-among-strangers/abstract/> |
| 38 | + |
| 39 | +- structs mtg tomorrow at 18:00 UTC |
| 40 | + - MM, others attending |
| 41 | + |
| 42 | +ACTION: CDA, invite SYG to TG3 to discuss, also ask for new version of proposal referenced in slides (splitting into MVP for WASM convergence) |
| 43 | + |
| 44 | +JHD: us govt requirements suggest that in near future, memory-unsafe languages will be forbidden in any products/services consumed |
| 45 | + |
| 46 | +- <https://media.defense.gov/2023/Dec/06/2003352724/-1/-1/0/THE-CASE-FOR-MEMORY-SAFE-ROADMAPS-TLP-CLEAR.PDF> |
| 47 | + |
| 48 | +related: overwhelming majority of all security vulns are caused by memory safety issues |
| 49 | + |
| 50 | +CDA: recommendation for proposals repo: presentation history |
| 51 | + |
| 52 | +- need to better understand the split of the TC39 structs proposal re: MVP for WASM proposal convergence/delivery/ask for stage 2 at TC39 |
22 | 53 |
|
23 | 54 | [wasm]: https://github.com/WebAssembly/shared-everything-threads/blob/main/proposals/shared-everything-threads/Overview.md |
24 | 55 | [structs]: https://github.com/tc39/proposal-structs |
25 | | -[related]: https://github.com/tc39/security/issues/4 |
| 56 | +[convergence]: https://docs.google.com/presentation/d/1j0W_mFaR8wEBqgBPRzJ0h4-lmgl87U92TQeokfy0N2w/edit#slide=id.gc6f889893_0_0 |
0 commit comments