tended the Glasgow Haskell Compiler (GHC) with Safe Haskell [44]. Safe Haskell, deployed with GHC as of version 7.2, guarantees type safety by removing the small set of language features that otherwise allow programs to violate the type system and break module boundaries.
With this change, Haskell permits the implementation of language-level dynamic IFC as a library. Accord- ingly, we implemeted LIO [40], which employs the label- tracking and confinement mechanisms of Section 2.2. De- spite sharing many abstractions with OS-level IFC sys- tems, such as HiStar [46] and Flume [17], LIO is more fine-grained (e.g., it allows labels to be associated with values, such as documents and email addresses) and thus better suited for web applications.
We believe the Hails architecture is equally realizable in other languages, though possibly with less backward compatibility. For example, JiF [33], Aeolus [5] and Breeze [15] provide similar confinement guarantees and are also good choices. However, to use existing libraries JiF and Aeolus typically require non-trivial modifications, while Breeze requires porting to a new language. Con- versely, about 4,000 modules in Hackage (27%), a popu- lar Haskell source distribution site, are currently safe for Hails applications to import. Of course, the functions that perform arbitrary I/O are not directly useful, and, like in JiF, must be modified to run in LIO. Nevertheless, many core libraries require no modifications. Moreover, we ex- pect the number of safe modules to grow significantly with the next GHC release, which refactors core libraries to remove unsafe functions from general-purpose mod- ules.

2. 
   
   Download 0.74 Mb.
   
   Do'stlaringiz bilan baham: