[Python-checkins] r50611 - python/branches/bcannon-sandboxing/sandboxing_design_doc.txt
brett.cannon
python-checkins at python.org
Thu Jul 13 01:10:54 CEST 2006
Author: brett.cannon
Date: Thu Jul 13 01:10:54 2006
New Revision: 50611
Modified:
python/branches/bcannon-sandboxing/sandboxing_design_doc.txt
Log:
Clarify how interpreters are trusted. Also remove some cruft from the implementation todo list.
Modified: python/branches/bcannon-sandboxing/sandboxing_design_doc.txt
==============================================================================
--- python/branches/bcannon-sandboxing/sandboxing_design_doc.txt (original)
+++ python/branches/bcannon-sandboxing/sandboxing_design_doc.txt Thu Jul 13 01:10:54 2006
@@ -54,25 +54,6 @@
+ last merge on rev. 47248
* remove bare malloc()/realloc()/free() uses
* note in SpecialBuilds.txt
-* protect memory usage
- - _PyObject_New
- - _PyObject_NewVar
- - _PyObject_Del
- - PyObject_New
- - PyObject_NewVar
- - PyObject_Del
- - PyMem_Malloc
- - PyMem_Realloc
- - PyMem_Free
- - PyMem_New
- - PyMem_Resize
- - PyMem_Del
- - PyMem_MALLOC
- - PyMem_REALLOC
- - PyMem_FREE
- - PyMem_NEW
- - PyMem_RESIZE
- - PyMem_DEL
Goal
@@ -400,6 +381,8 @@
true.
* The Python interpreter itself is always trusted.
+ + Implemented by code that runs at the process level performing any
+ necessary security checks.
* The Python interpreter cannot be crashed by valid Python source code
in a bare interpreter.
* Python source code is always considered safe.
More information about the Python-checkins
mailing list