freenode/#sicl - IRC Chatlog
Search
22:03:41
lonjil
glibc compat works so that (for the most part) applications compiled against an older glibc will work with any newer glibc, but an application built against a newer glibc will not work with any older glibc.
3:38:59
beach
scymtym: Thanks. I will re-install my working version of SBCL and use it to compile the latest version.
3:59:36
beach
Problem fixed. Sourceforge is still unavailable, but I happened to have the sources for 2.0.1 around, so I used 1.5.3 to build 2.0.1 and I can now run the boot procedure again.
4:05:45
beach
alandipert: I don't see anything wrong with your scheme. But then, tree shaking is not something that I have given much thought. SICL needs the compiler to create things like effective methods and discriminating functions, and the compiler would probably suck in most of the rest of the system as well, so I don't think a tree shaker would be of much use for SICL.
6:53:35
Harag
so I am thinking about what the sandbox should allow and what not, things like should you be able to add a quicklisp library or should I just limit it to simple scripts.
6:57:00
beach
Not really. There seems to be different opinions about the goal of sandboxing. Mine is to keep the system "safe" by making it impossible to (say) alter the code generator of the compiler. Others want to go much further and allow the system to be used over the web without crashing.
7:01:35
no-defun-allowed
Yeah, crashing is relatively good compared to being able to execute untrusted code.
7:11:24
Harag
well having to parse all the code to make it safe has practical limits I think, some where along the line you might as well just use cl implementations straight and not use the sandbox
7:13:47
beach
Well, I think the solution I suggested to you is "safe". It is possible to keep the system internally consistent by allowing only a subset of the system.
7:13:50
Harag
for web stuff you can start the sandox in a docker, so if it crashes it will just be replaced by another
7:14:54
beach
Again, objectives vary. Some want the system to be used in collaboration with others over the web.
7:18:53
Harag
just out of curiosity would it be practical/sipmle/possible to mark safe and un safe code in the compiler say of sicl so that you could just toggle a switch to say what is allowed and what not
7:20:57
beach
I doubt it. The compiler is invoked to create discriminating functions and effective method functions. Then it may need to execute arbitrary code.