From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Stefan Monnier Newsgroups: gmane.emacs.bugs Subject: bug#45198: 28.0.50; Sandbox mode Date: Sun, 18 Apr 2021 10:25:47 -0400 Message-ID: References: <5818DFAA-3A9C-4335-BAAF-1227A02C290A@acm.org> <83o8ecvnok.fsf@gnu.org> <83lf9gvktv.fsf@gnu.org> <83im4kvi4e.fsf@gnu.org> <83blacun30.fsf@gnu.org> Mime-Version: 1.0 Content-Type: text/plain Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="8716"; mail-complaints-to="usenet@ciao.gmane.io" User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/28.0.50 (gnu/linux) Cc: alan@idiocy.org, mattiase@acm.org, 45198@debbugs.gnu.org, stefan@marxist.se, p.stephani2@gmail.com, joaotavora@gmail.com To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Sun Apr 18 16:26:15 2021 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1lY8NK-00028c-Gt for geb-bug-gnu-emacs@m.gmane-mx.org; Sun, 18 Apr 2021 16:26:14 +0200 Original-Received: from localhost ([::1]:51420 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1lY8NJ-0002Az-AD for geb-bug-gnu-emacs@m.gmane-mx.org; Sun, 18 Apr 2021 10:26:13 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]:53356) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1lY8N8-0002At-Jx for bug-gnu-emacs@gnu.org; Sun, 18 Apr 2021 10:26:02 -0400 Original-Received: from debbugs.gnu.org ([209.51.188.43]:35828) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.90_1) (envelope-from ) id 1lY8N8-0006Pm-Cx for bug-gnu-emacs@gnu.org; Sun, 18 Apr 2021 10:26:02 -0400 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84_2) (envelope-from ) id 1lY8N8-000218-A1 for bug-gnu-emacs@gnu.org; Sun, 18 Apr 2021 10:26:02 -0400 X-Loop: help-debbugs@gnu.org Resent-From: Stefan Monnier Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Sun, 18 Apr 2021 14:26:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 45198 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: patch Original-Received: via spool by 45198-submit@debbugs.gnu.org id=B45198.16187559577740 (code B ref 45198); Sun, 18 Apr 2021 14:26:02 +0000 Original-Received: (at 45198) by debbugs.gnu.org; 18 Apr 2021 14:25:57 +0000 Original-Received: from localhost ([127.0.0.1]:47374 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lY8N2-00020m-RT for submit@debbugs.gnu.org; Sun, 18 Apr 2021 10:25:57 -0400 Original-Received: from mailscanner.iro.umontreal.ca ([132.204.25.50]:34406) by debbugs.gnu.org with esmtp (Exim 4.84_2) (envelope-from ) id 1lY8N1-00020Y-Mk for 45198@debbugs.gnu.org; Sun, 18 Apr 2021 10:25:56 -0400 Original-Received: from pmg2.iro.umontreal.ca (localhost.localdomain [127.0.0.1]) by pmg2.iro.umontreal.ca (Proxmox) with ESMTP id 22BBA80BA3; Sun, 18 Apr 2021 10:25:50 -0400 (EDT) Original-Received: from mail01.iro.umontreal.ca (unknown [172.31.2.1]) by pmg2.iro.umontreal.ca (Proxmox) with ESMTP id CAC5C8075E; Sun, 18 Apr 2021 10:25:48 -0400 (EDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=iro.umontreal.ca; s=mail; t=1618755948; bh=FawMmGa/6Ask3xFRX3NMZigvuXbzBHEflSCpWuBNHIM=; h=From:To:Cc:Subject:References:Date:In-Reply-To:From; b=fhe4hgitkXBWy8so9kkjXMouUMdjbj8TJIMloGmlY4upORqS1TKCihbXcMTrB8ciK ELeyC1f1pJeDuY+aTtMJ1g1Kyta7st9y1COFCscR5e6vL+k/o1sAkSAAm9F5MGSvTO bR+xKiO9rVi+GIA7tc4UQ/KukLou0bQyLXQKMrSChhg3ld9+qHtNVyqfxqPgidyLsE xU/ftdTpjI0XVKYHhmW0ABoREkzH8ZLLYKZ39Ji99vJHEGDebt8pFtNIuV7tuvuc3Y 2sWorKhklqdNXfv5T1AcNIT4EouHMVKsTC2Aa1WLTV+8GrPyp4JRIAsWnQ67RbfnP3 L4rznGBv9lXYA== Original-Received: from alfajor (104-222-126-84.cpe.teksavvy.com [104.222.126.84]) by mail01.iro.umontreal.ca (Postfix) with ESMTPSA id 7A7D712022C; Sun, 18 Apr 2021 10:25:48 -0400 (EDT) In-Reply-To: <83blacun30.fsf@gnu.org> (Eli Zaretskii's message of "Sun, 18 Apr 2021 09:24:35 +0300") X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: "bug-gnu-emacs" Xref: news.gmane.io gmane.emacs.bugs:204335 Archived-At: >> The whole point of the sandboxing exercise is so as to be able to have >> flymake-mode in the hook without exposing yourself to >> these vulnerabilities. > > So we are going to introduce all this non-trivial machinery into Emacs > just to solve the Flymake use case? Is that reasonable from the > project management POV, in your eyes? To the extent that this machinery will only be used by those rare places that need it (e.g. flymake), yes, as long as the low-level interface (e.g. the code that added the support for the `--seccomp` argument) is simple enough. BTW, in the context of GNU/Linux, an alternative to `--seccomp` is to require the `bwrap` tool (that's what I use in the `elpa-admin.el` scripts to run makefile rules from ELPA packages). Stefan