Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jyn514/von-neumann

executable memory for windows and unix
https://github.com/jyn514/von-neumann

Last synced: 9 days ago
JSON representation

executable memory for windows and unix

Host: GitHub
URL: https://github.com/jyn514/von-neumann
Owner: jyn514
License: mit
Created: 2024-01-27T08:38:07.000Z (9 months ago)
Default Branch: main
Last Pushed: 2024-10-24T20:45:15.000Z (12 days ago)
Last Synced: 2024-10-26T06:33:36.775Z (11 days ago)
Language: Rust
Size: 46.9 KB
Stars: 3
Watchers: 1
Forks: 1
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        Von Neumann

=====

executable memory for windows and unix ("von Neumann architecture")

## example

```rust

use vonneumann::ExecutableMemory;

fn main() {

    let mut memory = ExecutableMemory::new(6);

    // https://www.felixcloutier.com/x86/

    memory[0] = 0xb8;

    memory[1] = 0xff;

    memory[2] = 0xff;

    memory[3] = 0xff;

    memory[4] = 0xff;

    memory[5] = 0xc3;

    let f: fn() -> u32 = unsafe {

        std::mem::transmute((&memory[0..6]).as_ptr())

    };

    assert_eq!(f(), 4294967295);

}

```

## comparison with other executable-memory crates

### [`jit-allocator`]

`von-Neumann` maps pages as RWX. this is somewhat insecure and makes it easier to escalate security vulns. [`jit-allocator`] "dual maps" pages as RX and RW, avoiding this issue.

`von-Neumann` always allocates full pages, which is inefficient for small allocations, and slow if you allocate frequently. `jit-allocator` can return byte-level allocations instead.

`von-Neumann` supports the [`Allocator`] API when `--features nightly` is enabled. as a result, it can be used with `Vec`, and using it requires less unsafe (basically just the transmute to turn the data into a function pointer). jit-allocator inherently cannot do this because it uses dual-mapping.

[`Allocator`]: https://doc.rust-lang.org/nightly/std/alloc/trait.Allocator.html

[`jit-allocator`]: https://docs.rs/crate/jit-allocator/

### [`memfd-exec`]

[`memfd-exec`] serves a different purpose altogether: it executes whole processes. this crate is for executing individual functions that share your process state.

[`memfd-exec`]: https://lib.rs/crates/memfd-exec

### "just handrolling it with mmap lol"

this crate automatically unmaps the memory for you on drop, and supports windows as well as unix.

unlike `memmap2` you can have the memory be executable and writable at the same time :ferrisClueless:

## faq

### is anyone actually using this?

yes! 

### does this work on macOS?

yes!

### even with runtime hardening?

no???? the man page literally says "MAP_JIT regions are never writeable and executable simultaneously" lol

if someone wants this i can imagine an api that forces you to call `make_mut` and `make_exec` separately though. i am not doing dual-mapping. no.

### does it work on aarch64?

probably but i haven't tested 🤪

### can i use this in prod?

lol please do i want to watch your code burn

as a reminder THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED

## testimonials

"You have created an abomination before god and man." -- @philipaconrad