Home Explore Help
Sign In
ariadne
/
shttpd
Watch 1
Star 0
Fork 0
Files Issues 7 Pull Requests 0 Wiki
Branch: verification
Branches Tags
shttpd
/
README

README 2.2 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. .. SPDX-License-Identifier: GPL-2.0 or GPL-3.0
    2. 

  2. .. Copyright © 2018-2019 Ariadne Devos
    3. 

  3. 

  4. # s^2 Web Stuff
    5. 

  5. 

  6. s^2 is -- so far -- a personal project to write secure and sandboxed software
    7. 

  7. for doing things on the web. E.g. a web server and mail server and client.
    8. 

  8. In contrast to seemingly wide-held opinion, except perhaps by Intel,
    9. 

  9. it doesn't view speculative execution as an evil (*).
    10. 

  10. 

  11. (*)
    12. 

  12.   Except Meltdown and perhaps some others ... The model of Spectre I
    13. 

  13.   address is: all branches may temporarily be ignored or falsily taken and all
    14. 

  14.   indirect branch must be retpolined. Checking the page bits may be speculated.
    15. 

  15. 

  16.   s^2 should be safe against Speculative Store Bypass, Bounds Check Bypass,
    17. 

  17.   Branch Target Injection. Foreshadow is not relevant. Lazy FP State Restore
    18. 

  18.   is a bug of the kernel.
    19. 

  19. 

  20. As an extension to what nginx supports, s^2 will allow migration to
    21. 

  21. different versions and machines. The source code is intended to be readable.
    22. 

  22. 

  23. There is some architecture-specific code for Spectre mitigation.
    24. 

  24. Linux is supported, and the BSDs will be. W32 might be possible.
    25. 

  25. 

  26. Do `autoreconf` && `./configure` && `make` to compile.
    27. 

  27. A CFLAGS argument of "$(sed '/^[*/#]/d' CFLAGS |tr '\n' ' ')"
    28. 

  28. is recommended, although compiler support may vary.
    29. 

  29. 

  30. ## Stuff
    31. 

  31. 

  32. - [ ] apps/website.md: for static web sites, may be extended
    33. 

  33. - [ ] apps/torrent.md (TODO: bittorrent, webtorrent, Dat, IPFS, gnunet?)
    34. 

  34. - [ ] apps/mail.md: e-mail client and server, encrypted, signed, image support)
    35. 

  35. - [ ] apps/blog.md (TODO)
    36. 

  36. - [ ] apps/git.md (TODO)
    37. 

  37. - [ ] apps/ci.md (TODO)
    38. 

  38. 

  39. ## Some design details
    40. 

  40. 

  41. OO is used, except that inheritance isn't really used. Nothing is overridden.
    42. 

  42. Generics may be used sparely. SMP may be used for efficiency (power-efficiency
    43. 

  43. according to Intel?), but is not mandatory. Tasks of the same type are batched
    44. 

  44. to reduce cache pressure and branch misprediction.
    45. 

  45. 

  46. ## Contact
    47. 

  47. 

  48. Do NOT send a mail to Ariadne Devos <m-m@mailoo.org>, as I can't login anymore.
    49. 

  49. Instead, open a bug at <https://notabug.org/ariadne/shttpd>. Patches, ideas and
    50. 

  50. general discussion are welcome.
    51. 

  51. 

  52. ## Licensing
    53. 

  53. 

  54. The license is GPL-2.0 and GPL-3.0, see `doc/people/license-copyright.rst`
    55. 

  55. for details. The texts are respectively in `doc/people/gpl-2.rst` and
    56. 

  56. `doc/people/gpl-3.rst`.
    57. 

  57.