Feedback about an experiment to embed Python interpreter with FFI API
Florian Weimer
fw at deneb.enyo.de
Wed Dec 29 16:27:21 UTC 2021
* Maxim Karpov:
> The topic I want to talk about is a small flag `--enable-native-access=X`
> that looks harmless and useful at first glance. tl,dr: it is neither
> harmless nor useful. The reasoning that "user must opt-in to use unsafe
> APIs" implies that: (1) unsafe APIs are something illegal and should be
> avoided; (2) user has competencies to make such decisions; (3) user has
> other choice than use unsafe APIs. From my point of view, all three
> assumptions are false.
I wanted to bring this up as well. I get the desire not to look at
the bogus VM crash reports caused by incorrect code. Maybe some
tainting framework could be used instead. Modules which have used FFI
would show up in the crash reports, and if they indicate that they do
not export a safe interfaces, other modules importing their interfaces
would be listed, too.
More information about the panama-dev
mailing list