T0b1/wasmtime
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Tidy up wording in the explanation of capabilities, and link to the tutorial.

Browse Source
This commit is contained in:
Dan Gohman
2019-03-28 10:51:07 -07:00
parent 5adbf58482
commit ab28cd9a2c
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
docs/WASI-capabilities.md
View File

@@ -47,9 +47,12 @@ advantage of the hierarchical nature of the filesystem and require untrusted
code to have a capability for a directory in order to access things inside code to have a capability for a directory in order to access things inside
that directory. that directory.
So you can launch untrusted code, and at runtime give it access to specific This way, you can launch untrusted code, and at runtime give it access to
directories, without having to set permissions in the filesystem or in specific directories, without having to set permissions in the filesystem or
per-application or per-user configuration settings. in per-application or per-user configuration settings.
See [this tutorial](WASI-tutorial.md) for an example of how this can look
in practice.
## Berkeley socket rules ## Berkeley socket rules