From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.io!.POSTED.blaine.gmane.org!not-for-mail From: Philip Kaludercic Newsgroups: gmane.emacs.help Subject: Re: package-vc-install fails to build docs Date: Fri, 28 Apr 2023 21:17:15 +0000 Message-ID: <877ctvg10k.fsf@posteo.net> References: <87a5z0sc3r.fsf@breatheoutbreathe.in> <871qkcl6kq.fsf@posteo.net> <877cu3o6ld.fsf@breatheoutbreathe.in> <877cu293l9.fsf@posteo.net> <87pm7uedfa.fsf@breatheoutbreathe.in> <87pm7u1m44.fsf@posteo.net> <87354qe44v.fsf@breatheoutbreathe.in> <87cz3tn7ts.fsf@posteo.net> <87zg6raisd.fsf@breatheoutbreathe.in> Mime-Version: 1.0 Content-Type: text/plain Injection-Info: ciao.gmane.io; posting-host="blaine.gmane.org:116.202.254.214"; logging-data="17676"; mail-complaints-to="usenet@ciao.gmane.io" Cc: help-gnu-emacs@gnu.org To: Joseph Turner Original-X-From: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Fri Apr 28 23:17:50 2023 Return-path: Envelope-to: geh-help-gnu-emacs@m.gmane-mx.org Original-Received: from lists.gnu.org ([209.51.188.17]) by ciao.gmane.io with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92) (envelope-from ) id 1psVTR-0004Pq-Pq for geh-help-gnu-emacs@m.gmane-mx.org; Fri, 28 Apr 2023 23:17:49 +0200 Original-Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1psVSU-0007v2-RP; Fri, 28 Apr 2023 17:16:50 -0400 Original-Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1psVST-0007uu-H9 for help-gnu-emacs@gnu.org; Fri, 28 Apr 2023 17:16:49 -0400 Original-Received: from mout02.posteo.de ([185.67.36.66]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1psVSQ-0001rP-SI for help-gnu-emacs@gnu.org; Fri, 28 Apr 2023 17:16:49 -0400 Original-Received: from submission (posteo.de [185.67.36.169]) by mout02.posteo.de (Postfix) with ESMTPS id 0EBFF2402EA for ; Fri, 28 Apr 2023 23:16:44 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=posteo.net; s=2017; t=1682716604; bh=bF42pd0Kga+yMaGCFagdbkXVpaCGgto3IniK7iU000A=; h=From:To:Cc:Subject:Autocrypt:Date:From; b=FGGZxyOUlO4CnUgQ5FjJNtmRuFdqaSlEQEIyLYy2JFbVb0jarTkeXcACfLcrNcni8 rTBljGILRXFBi9m8BzCLPUKBzapy3KxyG6lS/2+QFrsGg3grkRIS62WqyibRDuILmR vYLxdE/bN5cE192M85MpkWKwcRK5Kra5jpTRCGEVsauW1UiozUaR4Hj2uAdqRuv36d tCKpbJqrWD7GSgLUA7bdv0iW89UU+PlMV4/SO2lJkLX+KXZ8aEThjQMxASRk4H6wjS +dQJoaBdvlI1Bo/XMcmpyG1yu4kdT5+RDBx3GzTtURfF3kBLKLfeq7JEXRy3Xs4gkM emORhFpz3Me+g== Original-Received: from customer (localhost [127.0.0.1]) by submission (posteo.de) with ESMTPSA id 4Q7QQg4F8zz6tyC; Fri, 28 Apr 2023 23:16:43 +0200 (CEST) In-Reply-To: <87zg6raisd.fsf@breatheoutbreathe.in> (Joseph Turner's message of "Fri, 28 Apr 2023 12:42:24 -0700") Autocrypt: addr=philipk@posteo.net; keydata= mDMEZBBQQhYJKwYBBAHaRw8BAQdAHJuofBrfqFh12uQu0Yi7mrl525F28eTmwUDflFNmdui0QlBo aWxpcCBLYWx1ZGVyY2ljIChnZW5lcmF0ZWQgYnkgYXV0b2NyeXB0LmVsKSA8cGhpbGlwa0Bwb3N0 ZW8ubmV0PoiWBBMWCAA+FiEEDg7HY17ghYlni8XN8xYDWXahwukFAmQQUEICGwMFCQHhM4AFCwkI BwIGFQoJCAsCBBYCAwECHgECF4AACgkQ8xYDWXahwulikAEA77hloUiSrXgFkUVJhlKBpLCHUjA0 mWZ9j9w5d08+jVwBAK6c4iGP7j+/PhbkxaEKa4V3MzIl7zJkcNNjHCXmvFcEuDgEZBBQQhIKKwYB BAGXVQEFAQEHQI5NLiLRjZy3OfSt1dhCmFyn+fN/QKELUYQetiaoe+MMAwEIB4h+BBgWCAAmFiEE Dg7HY17ghYlni8XN8xYDWXahwukFAmQQUEICGwwFCQHhM4AACgkQ8xYDWXahwukm+wEA8cml4JpK NeAu65rg+auKrPOP6TP/4YWRCTIvuYDm0joBALw98AMz7/qMHvSCeU/hw9PL6u6R2EScxtpKnWof z4oM Received-SPF: pass client-ip=185.67.36.66; envelope-from=philipk@posteo.net; helo=mout02.posteo.de X-Spam_score_int: -43 X-Spam_score: -4.4 X-Spam_bar: ---- X-Spam_report: (-4.4 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: help-gnu-emacs@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Users list for the GNU Emacs text editor List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Original-Sender: help-gnu-emacs-bounces+geh-help-gnu-emacs=m.gmane-mx.org@gnu.org Xref: news.gmane.io gmane.emacs.help:143448 Archived-At: Joseph Turner writes: > Philip Kaludercic writes: > >> Joseph Turner writes: >>> Philip Kaludercic writes: >>>> Joseph Turner writes: >> You have to look at elpa-admin.el, the "reference interpretation" for >> how package specifications are supposed to work. It is located on a >> separate branch in elpa.git (so that it can be shared between elpa.git >> and nongnu.git). >> >> https://git.savannah.gnu.org/cgit/emacs/elpa.git/tree/elpa-admin.el?h=elpa-admin >> >>> Mind pointing me in the right direction? >> >> Ping me if you need anything else, and submit a bug report with a patch >> as soon as you have something workable. Add a >> >> X-Debbugs-CC: Philip Kaludercic >> >> header so that I get notified as well. > > In elpa-admin.el, :make and :shell-command are handled by calling bwrap > to sandbox the external processes. Should we do the same thing? The issue is that bwrap is not available on all systems, and even if it is it is not necessarily installed. I would take the approach of implementing this as an opt-in system first, then improving the security perhaps even by writing a general process isolation library that could be added to Emacs 30, using what systems are available or what the user prefers (Guix and Nix could be useful here, there was a discussion on this topic in the past for elpa-admin.el). > Do you think we should also sandbox makeinfo like elpaa does? > That could be a separate patch. > > Best, > > Joseph