[Pharo-project] FFI inside Pharo ?
siguctua at gmail.com
Sat Nov 29 06:13:15 EST 2008
2008/11/29 Michael Rueger <m.rueger at acm.org>:
> Marcus Denker wrote:
>> I personally think that a good FFI is base fuctionality, e.g. it allows to
>> move glue-code into the image that normally would be in primitives.
> The problem with FFI (and Alien) is that by using FFI and thus having the
> FFI plugin installed you completely circumvent any security you gain from
> the sandbox.
> This is only really interesting for an environment like etoys where you
> allow arbitrary scripts to be loaded. Right now we are not supporting etoys,
> but the question is what, down the road, is going to happen.
> Another question is how more use of FFI opens us up to issues other
> languages have. So far Smalltalk wasn't hackable (on the server), with FFI
> generally available it could be?
> If people vote this a non-issue I'm fine with it, but I wanted at least to
> raise the issue at hand.
I suggested it only for dev images. A basic image may not have FFI.
But then it shouldn't contain any package which using FFI (like
> Pharo-project mailing list
> Pharo-project at lists.gforge.inria.fr
Igor Stasenko AKA sig.
More information about the Pharo-dev