Author: Armin Rigo <[email protected]> Branch: extradoc Changeset: r5958:3cfd520fdfe4 Date: 2019-08-07 15:53 +0200 http://bitbucket.org/pypy/extradoc/changeset/3cfd520fdfe4/
Log: tweaks diff --git a/blog/draft/2019-08-sandbox.rst b/blog/draft/2019-08-sandbox.rst --- a/blog/draft/2019-08-sandbox.rst +++ b/blog/draft/2019-08-sandbox.rst @@ -4,7 +4,7 @@ "sandbox" mode and upgrade it to PyPy3. Thanks to them, sandboxing will be given a second life! -Remember sandboxing? It is (or rather was) a special version of PyPy that runs +Remember sandboxing_? It is (or rather was) a special version of PyPy that runs in a fully-isolated mode. It gives a safe way to execute arbitrary Python scripts (*whole* scripts, not small bits of code inside your larger Python program). Such scripts can be fully untrusted, and they can try to do @@ -17,7 +17,10 @@ This sandbox mode of PyPy was deprecated long ago because of a lack of interest, and because it took too much effort for us to maintain it. -Now we have found that we have an actual user, Anvil_. The work starts now. +Now we have found that we have an actual user, Anvil_. As far as I can tell +they are still using a very old version of PyPy, the last one that supported +sandboxing. Thus this contract to modernize it and port it to PyPy3. + Part of my motivation for accepting this work is that I may have found a way to tweak the protocol on the pipe between the sandboxed PyPy and the parent controller process. This should make the sandboxed PyPy more resilient against @@ -26,9 +29,10 @@ PyPy. Among the advantages, such a more robust solution should mean that we can actually get a working sandboxed PyPy or sandboxed PyPy3 or sandboxed version of any other interpreter written in RPython---with just an extra -argument when calling ``rpython`` to translate this interpreter. +argument when calling ``rpython`` to translate this interpreter. If everything +works as planned, sandboxing may be given a second life. Armin Rigo .. _Anvil: https://anvil.works - +.. _sandboxing: http://doc.pypy.org/en/latest/sandbox.html _______________________________________________ pypy-commit mailing list [email protected] https://mail.python.org/mailman/listinfo/pypy-commit
