Hi! I’m confused by the behavior of the Racket sandbox — it doesn’t seem to actually restrict module loading as its docs seem to promise.
Alternatively, I'm misunderstanding the docs, and on my system (OS X) #:allow-for-require is unneeded altogether. But then, on what systems is it required? > In particular, filesystem access is restricted, which may interfere with > using modules from the filesystem. I observed this on the handin server (by accident), and minimized the problem down to this, so that people not involved with the handin server might take a look. Here's the example (also posted as http://pasterack.org/pastes/81863). ; Tested with Racket 6.2.1, while investigating a problem with the handin server. #lang racket (require racket/sandbox) (define evaler (make-module-evaluator '(module foo racket (require htdp/image) 1) #:language 'racket #:allow-for-require '(2htdp/image))) (evaler '(begin (require htdp/image) (require net/http-client) (circle 20 "solid" "red"))) Note I'm using `(require htdp/image)`, which I'd expect to be forbidden — in both the code passed to make-module-evaluator, and in the code passed to the resulting evaluator. -- You received this message because you are subscribed to the Google Groups "Racket Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
