Page MenuHomePhabricator
Create Task
Maniphest T182945

Apply shell restrictions (firejail) to Scribunto/LuaStandalone
Open, MediumPublic
Actions

Description

https://www.mediawiki.org/wiki/Manual:Shell_framework#Restrictions

It also doesn't use wfShellExec()/Shell::command() so I'm not sure if this will require something custom or what.

Related Objects
Search...

Event Timeline

Legoktm triaged this task as Medium priority.Dec 15 2017, 3:04 AM
Legoktm created this task.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 15 2017, 3:04 AM
Anomie added a comment.Dec 15 2017, 3:52 PM

MediaWiki\Shell\Command seems designed for executing a process to perform some specific task, waiting for it to complete and then returning the results.

LuaStandalone executes a process that runs a simple "server" to accept commands on stdin and write results to stdout, so startup costs are paid once per Parser instance rather than once per #invoke during every parse.

Aklapper removed a subscriber: Anomie.Oct 16 2020, 5:02 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL