Re: safe subset of FFI?

lua-l archive

[Date Prev][Date Next][Thread Prev][Thread Next] [Date Index] [Thread Index]

Subject: Re: safe subset of FFI?
From: Josh Haberman <jhaberman@...>
Date: Tue, 17 May 2011 15:51:42 +0000 (UTC)

Justin Cormack <justin <at> specialbusservice.com> writes:
> It is not hard to wrap bounds testing around an ffi structure

This misses the point: once FFI is loaded, memory safety is gone.
Any malicious or buggy code that is loaded could buffer overflow.
If a memory-safe FFI subset existed, you could allow it to be
loaded (but not FFI) and get some of FFI's benefits without giving
up memory safety.

Also, I'm pretty sure that the bounds-checking would be a lot
faster if it were directly supported, rather than implemented in
Lua.

Josh

Follow-Ups:
- Re: safe subset of FFI?, Robert G. Jakabosky

References:
- safe subset of FFI?, Josh Haberman
- Re: safe subset of FFI?, Justin Cormack

Prev by Date: Re: Map generator in Lua
Next by Date: LuaJIT missing from language shootout benchmarking site
Previous by thread: Re: safe subset of FFI?
Next by thread: Re: safe subset of FFI?
Index(es):
- Date
- Thread