Xres: XResQueryClientResources: enable security filtering

Pass each client we're considering to report through XaceHookClientAccess(), so security extensions have a chance to filter them out. Signed-off-by: Enrico Weigelt, metux IT consult <info@metux.net>
2025-04-17 17:42:59 +02:00 · 2025-04-17 17:42:59 +02:00 · 146b04f4e2
parent 1594bad1f8
commit 146b04f4e2
1 changed files with 3 additions and 1 deletions
--- a/Xext/xres.c
+++ b/Xext/xres.c
@ -308,7 +308,9 @@ ProcXResQueryClientResources(ClientPtr client)

    clientID = CLIENT_ID(stuff->xid);

-    if ((clientID >= currentMaxClients) || !clients[clientID]) {
+    if ((clientID >= currentMaxClients) || !clients[clientID] ||
+        (XaceHookClientAccess(client, clients[clientID], DixReadAccess)
+                              != Success)) {
        client->errorValue = stuff->xid;
        return BadValue;
    }