Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:61977
Return-Path: <leight@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 76194 invoked from network); 2 Aug 2012 23:17:25 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 2 Aug 2012 23:17:25 -0000
Authentication-Results: pb1.pair.com smtp.mail=leight@gmail.com; spf=pass; sender-id=pass
Authentication-Results: pb1.pair.com header.from=leight@gmail.com; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.216.170 as permitted sender)
X-PHP-List-Original-Sender: leight@gmail.com
X-Host-Fingerprint: 209.85.216.170 mail-qc0-f170.google.com  
Received: from [209.85.216.170] ([209.85.216.170:54746] helo=mail-qc0-f170.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 23/62-61111-48A0B105 for <internals@lists.php.net>; Thu, 02 Aug 2012 19:17:25 -0400
Received: by qcmt36 with SMTP id t36so53435qcm.29
        for <internals@lists.php.net>; Thu, 02 Aug 2012 16:17:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :cc:content-type;
        bh=lrKcgI7PQjcdsBZdfAMtlGIMqB9tcyGw4LU1F4cV+4c=;
        b=hD9BlKmwVAAZP36pIMHqmQEUiFu0uetmjaJJ/7NPAzYa+NRbdcIPTMOs07dhgGIynb
         bPafYN4WceBtsEkxo/v/L8SIgik4PMc9Yf+ko/jbSVTmSpgbxDNBPMWXrMj2D8l35sQf
         Hb7GYCkRKiPz6iHpLua0aO3X1k134YeV965ym/bdib+BT3n+2lT6VKyKniHG+PRzMI+r
         uCMTWV+Do92sIS2W77w1AG++QZe7IOiAD06taS54vUxthxitTs+cUJ4B9rLX/pxS/wcb
         j1MdyahAfsaX0XruA7p0NiZaypSqMmSOMQLo4txWzSWcpRpqxlY5r4oiw6OxwAAOwGw+
         eLfw==
MIME-Version: 1.0
Received: by 10.224.189.83 with SMTP id dd19mr45195212qab.45.1343949442018;
 Thu, 02 Aug 2012 16:17:22 -0700 (PDT)
Received: by 10.229.149.203 with HTTP; Thu, 2 Aug 2012 16:17:21 -0700 (PDT)
In-Reply-To: <CAESVnVpXTza67aOOeFqJ72F3=nxe3vTRHWkkzZNc+FChhCbwhg@mail.gmail.com>
References: <CANVTSm5g0FWqe=HaJTutniLYOj19rp5twOzF0jti0y3iEsnWEg@mail.gmail.com>
	<CAKOpQSwSwseEoxDYzpfwkgk-azxKyAVq=hRJa=P=v8qg7VAJ_A@mail.gmail.com>
	<CAFt2z-nHB91SSNaJpn_K1-OzWtC7=W4WUUKCBQYHbb+kbeKsBg@mail.gmail.com>
	<CAESVnVpXTza67aOOeFqJ72F3=nxe3vTRHWkkzZNc+FChhCbwhg@mail.gmail.com>
Date: Fri, 3 Aug 2012 00:17:21 +0100
Message-ID: <CAPwsocEbXSVSc-aDUQjjaADF3-pNLQF=Danxo67GE5oZpCY-5A@mail.gmail.com>
To: Sara Golemon <pollita@php.net>
Cc: PHP internals <internals@lists.php.net>
Content-Type: text/plain; charset=ISO-8859-1
Subject: Re: [PHP-DEV] Add runkit to PHP Runtime
From: leight@gmail.com (Leigh)

> Sandboxing: Complicated by the fact that it only works in a threaded
> build, can't transfer all types (e.g. resource, complex objects), and
> can't run concurrently.  Until/unless these problems can be
> meaningfully solved, I wouldn't consider it a functional
> implementation.

To me the "thread thing" feels like the dirty hack workaround
_because_ it's in PECL, and this is the only option available.

chroot() isn't available everywhere. chrooting with php-fpm requires
an additional amount of configuration (and forethought), and running
both a chrooted and non-chrooted pool even more so.

I did originally pose it as a potential v6 feature, and that's where
I'll leave it. In the "wouldn't it be nice" pile.

There's always going to be cases where products want to use
user-generated code, and isolating in a way that prevents it breaking
things is desirable. Having the right tools to do that instead of
requiring clunky workarounds "would be nice" when the engine can
support it.