From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Eli Zaretskii Newsgroups: gmane.emacs.devel Subject: Re: master 3d38d1d: Add sqlite3 support to Emacs Date: Tue, 14 Dec 2021 15:12:31 +0200 Message-ID: <83fsqvl48w.fsf@gnu.org> References: <20211211035614.15517.53830@vcs0.savannah.gnu.org> <20211211035616.984DD20A0A@vcs0.savannah.gnu.org> <87ee6j4ty4.fsf@yahoo.com> <8735mz4o70.fsf@yahoo.com> <83k0gbr0dm.fsf@gnu.org> <87y24r33bn.fsf@yahoo.com> <87ilvu1ldh.fsf@yahoo.com> <87a6h5tap6.fsf@gnus.org> <87tufbu7jg.fsf@yahoo.com> <87y24nr6nk.fsf@gnus.org> <87lf0ntz0t.fsf@yahoo.com> <87pmpzr3jz.fsf@gnus.org> <87h7bbtukz.fsf@yahoo.com> <87h7bbqy5o.fsf@gnus.org> Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="18764"; mail-complaints-to="usenet@ciao.gmane.io" Cc: luangruo@yahoo.com, emacs-devel@gnu.org, stefankangas@gmail.com, rms@gnu.org To: Lars Ingebrigtsen Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane-mx.org@gnu.org Tue Dec 14 14:27:40 2021 Return-path: Envelope-to: ged-emacs-devel@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1mx7qG-0004do-4C for ged-emacs-devel@m.gmane-mx.org; Tue, 14 Dec 2021 14:27:40 +0100 Original-Received: from localhost ([::1]:50566 helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1mx7qE-0004kM-8o for ged-emacs-devel@m.gmane-mx.org; Tue, 14 Dec 2021 08:27:38 -0500 Original-Received: from eggs.gnu.org ([209.51.188.92]:49744) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1mx7bg-0006T0-9e for emacs-devel@gnu.org; Tue, 14 Dec 2021 08:12:36 -0500 Original-Received: from [2001:470:142:3::e] (port=37604 helo=fencepost.gnu.org) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1mx7bf-00010Z-Rm; Tue, 14 Dec 2021 08:12:35 -0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=gnu.org; s=fencepost-gnu-org; h=References:Subject:In-Reply-To:To:From:Date: mime-version; bh=SkufLcMCbpjQdzgV/knWly7iur7J1AKPEWzEJ9g4NtA=; b=iCdG/SunMbxH 6S1Pj9DD/4SannPjqKNb25uDLPmAKYeDESRJ5nGZd1HdW5kWv4Kqessq0VPR5eyv6RVeL073lx09P Tqf06LnKhwO1iqWveep5J1++CRAmvvS4/FE+9qmovZF6JbaeqNAdQlMbXehVQ5e7XLAyxcn8t2XhN wkWfADNEEoJPEr00FofiqGB0YbykfqhGn1oBcjfCXb1TVUQXxLsQrW5/z4XZ4mapPed/TRG8UTt7a nJVvFg7Slay4dlgpMs1gJZW2z+7tc9WdKfmugkDZ9efNzVx7jgojGrhngTfETrv2GYPNhja37jztm XHfSRg2vTeUAXAXMUEGvGw==; Original-Received: from [87.69.77.57] (port=4530 helo=home-c4e4a596f7) by fencepost.gnu.org with esmtpsa (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1mx7bd-0000dV-Q4; Tue, 14 Dec 2021 08:12:35 -0500 In-Reply-To: <87h7bbqy5o.fsf@gnus.org> (message from Lars Ingebrigtsen on Tue, 14 Dec 2021 11:27:31 +0100) X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane-mx.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.io gmane.emacs.devel:281895 Archived-At: > From: Lars Ingebrigtsen > Cc: eliz@gnu.org, stefankangas@gmail.com, Richard Stallman , > emacs-devel@gnu.org > Date: Tue, 14 Dec 2021 11:27:31 +0100 > > > How did you work around this problem? Thanks. > > I didn't. As I explained before, there's no technical way to block a > user from loading whatever they way, either via LD_PRELOAD or any number > of other mechanisms. We can only discourage it, which this allowlist > does. What about Andy Moreton's suggestion to disable loading the extensions via sqlite3_db_config? It sounds like a good idea, even if it's orthogonal to the reason for having a whitelist.