Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I really don’t want to sound argumentative just for the sake of it, but sandboxing through “not allowing any side effecting things” is quite.. trivial? Like, I have written a brainfuck interpreter and it can only do prints to stdout, so it is guaranteed safe, hell, it is quite good as a compile target!

There is nothing inherent in java bytecode that would make it unsafe, nor hard to AOT compile — runtime reflection is not part of the JVM spec itself, it is a separate API (akin to WASI) that provides this capability. So, a JVM interpreter can also do no harm without attaching the endpoints that can do harm obviously. Also, there used to be a project called gcj 20 years ago that managed to AOT compile java just fine, the only riddle here is the aforementioned reflection. Graal uses a closed-world assumption to solve it.

Your link is interesting though, will look into it.



> Your link is interesting though, will look into it.

Looks much like the byte-code verifier that is std. part of the JVM.

The foundations on which this is built look quite solid though.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: