[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#45198: 28.0.50; Sandbox mode
From: |
Eli Zaretskii |
Subject: |
bug#45198: 28.0.50; Sandbox mode |
Date: |
Sat, 17 Apr 2021 19:15:06 +0300 |
> From: Philipp <p.stephani2@gmail.com>
> Date: Sat, 17 Apr 2021 18:10:14 +0200
> Cc: mattiase@acm.org,
> joaotavora@gmail.com,
> 45198@debbugs.gnu.org,
> stefankangas@gmail.com,
> monnier@iro.umontreal.ca,
> alan@idiocy.org
>
> > IMO, if we have no reasonably clear idea how this will be used on the
> > high level,
>
> I have a relatively clear idea how I want the high-level interface to look
> like:
>
> (cl-defun start-sandbox (function &key readable-directories stdout-buffer)
> ...)
> (defun wait-for-sandbox (sandbox) ...)
>
> where start-sandbox returns an opaque sandbox object running FUNCTION that
> wait-for-sandbox can wait for. That should be generic enough that it's
> extensible and implementable on several platforms, and doesn't lock us into
> specific implementation choices.
>
> If that's OK with everyone, then I'm happy to write the code for it.
I'm sorry, but I don't really understand what the above means in
practice.
What I'm missing is some details about what operations (in Emacs
terms) should not be allowed in the sandbox, and how can users take
advantage of that. I asked more questions about this a few days ago,
but got no responses. I don't really understand how we can
intelligently talk about using this in Emacs while we remain on the
level of file descriptors and syscalls.
- bug#45198: 28.0.50; Sandbox mode, Philipp Stephani, 2021/04/10
- bug#45198: 28.0.50; Sandbox mode, Philipp Stephani, 2021/04/10
- bug#45198: 28.0.50; Sandbox mode, Mattias EngdegÄrd, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Philipp, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Eli Zaretskii, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Philipp, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode,
Eli Zaretskii <=
- bug#45198: 28.0.50; Sandbox mode, Eli Zaretskii, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Philipp Stephani, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Eli Zaretskii, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Philipp Stephani, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Eli Zaretskii, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Philipp, 2021/04/17
- bug#45198: 28.0.50; Sandbox mode, Eli Zaretskii, 2021/04/18
- bug#45198: 28.0.50; Sandbox mode, Philipp Stephani, 2021/04/18
- bug#45198: 28.0.50; Sandbox mode, Eli Zaretskii, 2021/04/18
- bug#45198: 28.0.50; Sandbox mode, Mattias EngdegÄrd, 2021/04/17