Re: [Discussion] Sandbox API

From:	Pierre Joye	Date:	Wed, 07 Aug 2024 12:49:30 +0000
Subject:	Re: [Discussion] Sandbox API
References:	1 2 3 4 5	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message

On Wed, Aug 7, 2024, 7:13 PM Nick Lockheart <[email protected]> wrote:

>
>
>
> So I was thinking about this a bit more and I thought, what if instead
> of adding a sandbox as a feature of PHP, what if PHP *was* the sandbox.
>
> So consider this:
>
> What if the PHP engine added a C API that lets C/C++ programs not only
> spin up and run PHP, but those C/C++ programs could also control and
> monitor the execution of the PHP environment from the outside.
>


Something similar is done in things like frankenphp (go/caddi/own sapi) or
nativephp (desktop app, afair rust/tauri).

Not the same goal, same starting point.

But I would stay away to replace, or improve, OS security with my own
things. Totally possible but it is the kind of worms can I don't look
forward to open  :)

>


   

Thread (15 messages)

• Nick LockheartTue, 06 Aug 2024 06:09:34 +0000
  • Nick LockheartTue, 06 Aug 2024 08:41:56 +0000
    • Rob LandersTue, 06 Aug 2024 08:54:07 +0000
      • Nick LockheartTue, 06 Aug 2024 17:28:08 +0000
        • Rob LandersTue, 06 Aug 2024 18:51:30 +0000
          • Nick LockheartWed, 07 Aug 2024 09:55:11 +0000
    • Niels DosscheTue, 06 Aug 2024 18:59:03 +0000
      • Rob LandersTue, 06 Aug 2024 19:05:40 +0000
        • Niels DosscheTue, 06 Aug 2024 19:13:56 +0000
        • Pierre JoyeWed, 07 Aug 2024 11:02:06 +0000
        • Nick LockheartWed, 07 Aug 2024 12:09:04 +0000
          • Pierre JoyeWed, 07 Aug 2024 12:49:30 +0000
      • Christoph M. BeckerWed, 07 Aug 2024 11:11:50 +0000
  • Mike SchinkelTue, 06 Aug 2024 08:57:39 +0000
  • Calvin BuckleyWed, 07 Aug 2024 13:51:15 +0000