On Wed, Nov 21, 2012 at 12:08 PM, Dave Mandelin <[email protected]> wrote:
> Fair enough. Just out of curiosity, if it didn't have the security > benefits, would you think compartments are worthwhile? > I'm primarily a consumer of compartments from the perspective of XPConnect security invariants. AFAIK, the other main benefit of compartments is compartmental GC, whose fruits I think you can judge better than I. A few other advantages I forgot to mention: * Cross-compartment wrappers mean that we can statically compute the result of security checks, which helps performance a lot in the common case. * Cross-compartment wrappers allow us to dynamically recompute security relationships when things change, which is something that WebKit can't do. Certain security features that are trivial (even automatic) for us to implement are extremely difficult for them. > > If we're crashing like that, I think crashing is way better than the > > alternative of what's happening. > > Release drivers may or may not agree. I don't think there's any way to > know other than trying it and seeing how much more crashing there is. I > believe someone once did but I forget the outcome. > I sure hope there's not a lot. If there is, users are at risk. :-( bholley _______________________________________________ dev-tech-js-engine-internals mailing list [email protected] https://lists.mozilla.org/listinfo/dev-tech-js-engine-internals
