frederik
/
xserver
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

xace: add hooks + new access codes: core protocol server requests

This commit is contained in:
Eamon Walsh 2007-08-15 14:14:45 -04:00 committed by Eamon Walsh
parent 3c9553ac2c
commit 568ae737d1
7 changed files with 62 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
dix/dispatch.c
View File

@ -1169,6 +1169,7 @@ ProcConvertSelection(ClientPtr client)
int int
ProcGrabServer(ClientPtr client) ProcGrabServer(ClientPtr client)
{ {
int rc;
REQUEST_SIZE_MATCH(xReq); REQUEST_SIZE_MATCH(xReq);
if (grabState != GrabNone && client != grabClient) if (grabState != GrabNone && client != grabClient)
{ {
@ -1178,7 +1179,9 @@ ProcGrabServer(ClientPtr client)
IgnoreClient(client); IgnoreClient(client);
return(client->noClientException); return(client->noClientException);
} }
OnlyListenToOneClient(client); rc = OnlyListenToOneClient(client);
if (rc != Success)
return rc;
grabState = GrabKickout; grabState = GrabKickout;
grabClient = client; grabClient = client;
@ -3478,12 +3481,14 @@ int
ProcGetFontPath(ClientPtr client) ProcGetFontPath(ClientPtr client)
{ {
xGetFontPathReply reply; xGetFontPathReply reply;
int stringLens, numpaths; int rc, stringLens, numpaths;
unsigned char *bufferStart; unsigned char *bufferStart;
/* REQUEST (xReq); */ /* REQUEST (xReq); */
REQUEST_SIZE_MATCH(xReq); REQUEST_SIZE_MATCH(xReq);
bufferStart = GetFontPath(&numpaths, &stringLens); rc = GetFontPath(client, &numpaths, &stringLens, &bufferStart);
if (rc != Success)
return rc;
reply.type = X_Reply; reply.type = X_Reply;
reply.sequenceNumber = client->sequence; reply.sequenceNumber = client->sequence;

26
dix/dixfonts.c
View File

@ -65,6 +65,7 @@ Equipment Corporation.
#include "dixfontstr.h" #include "dixfontstr.h"
#include "closestr.h" #include "closestr.h"
#include "dixfont.h" #include "dixfont.h"
#include "xace.h"
#ifdef DEBUG #ifdef DEBUG
#include <stdio.h> #include <stdio.h>
@ -833,6 +834,10 @@ ListFonts(ClientPtr client, unsigned char *pattern, unsigned length,
if (length > XLFDMAXFONTNAMELEN) if (length > XLFDMAXFONTNAMELEN)
return BadAlloc; return BadAlloc;
i = XaceHook(XACE_SERVER_ACCESS, client, DixGetAttrAccess);
if (i != Success)
return i;
if (!(c = (LFclosurePtr) xalloc(sizeof *c))) if (!(c = (LFclosurePtr) xalloc(sizeof *c)))
return BadAlloc; return BadAlloc;
c->fpe_list = (FontPathElementPtr *) c->fpe_list = (FontPathElementPtr *)
@ -1105,6 +1110,10 @@ StartListFontsWithInfo(ClientPtr client, int length, unsigned char *pattern,
if (length > XLFDMAXFONTNAMELEN) if (length > XLFDMAXFONTNAMELEN)
return BadAlloc; return BadAlloc;
i = XaceHook(XACE_SERVER_ACCESS, client, DixGetAttrAccess);
if (i != Success)
return i;
if (!(c = (LFWIclosurePtr) xalloc(sizeof *c))) if (!(c = (LFWIclosurePtr) xalloc(sizeof *c)))
goto badAlloc; goto badAlloc;
c->fpe_list = (FontPathElementPtr *) c->fpe_list = (FontPathElementPtr *)
@ -1771,7 +1780,9 @@ bail:
int int
SetFontPath(ClientPtr client, int npaths, unsigned char *paths, int *error) SetFontPath(ClientPtr client, int npaths, unsigned char *paths, int *error)
{ {
int err = Success; int err = XaceHook(XACE_SERVER_ACCESS, client, DixManageAccess);
if (err != Success)
return err;
if (npaths == 0) { if (npaths == 0) {
if (SetDefaultFontPath(defaultFontPath) != Success) if (SetDefaultFontPath(defaultFontPath) != Success)
@ -1823,14 +1834,18 @@ SetDefaultFontPath(char *path)
return err; return err;
} }
unsigned char * int
GetFontPath(int *count, int *length) GetFontPath(ClientPtr client, int *count, int *length, unsigned char **result)
{ {
int i; int i;
unsigned char *c; unsigned char *c;
int len; int len;
FontPathElementPtr fpe; FontPathElementPtr fpe;
i = XaceHook(XACE_SERVER_ACCESS, client, DixGetAttrAccess);
if (i != Success)
return i;
len = 0; len = 0;
for (i = 0; i < num_fpes; i++) { for (i = 0; i < num_fpes; i++) {
fpe = font_path_elements[i]; fpe = font_path_elements[i];
@ -1838,7 +1853,7 @@ GetFontPath(int *count, int *length)
} }
font_path_string = (unsigned char *) xrealloc(font_path_string, len); font_path_string = (unsigned char *) xrealloc(font_path_string, len);
if (!font_path_string) if (!font_path_string)
return NULL; return BadAlloc;
c = font_path_string; c = font_path_string;
*length = 0; *length = 0;
@ -1850,7 +1865,8 @@ GetFontPath(int *count, int *length)
c += fpe->name_length; c += fpe->name_length;
} }
*count = num_fpes; *count = num_fpes;
return font_path_string; *result = font_path_string;
return Success;
} }
_X_EXPORT int _X_EXPORT int

4
hw/dmx/dmxfont.c
View File

@ -66,7 +66,7 @@ static char **dmxGetFontPath(int *npaths)
char *newfp; char *newfp;
int len, l, i; int len, l, i;
paths = GetFontPath(npaths, &len); GetFontPath(serverClient, npaths, &len, &paths);
newfp = xalloc(*npaths + len); newfp = xalloc(*npaths + len);
c = (unsigned char *)newfp; c = (unsigned char *)newfp;
@ -194,7 +194,7 @@ static int dmxProcSetFontPath(ClientPtr client)
if (total >= 4) if (total >= 4)
return BadLength; return BadLength;
tmpFontPath = GetFontPath(&nOldPaths, &lenOldPaths); GetFontPath(serverClient, &nOldPaths, &lenOldPaths, &tmpFontPath);
oldFontPath = xalloc(nOldPaths + lenOldPaths); oldFontPath = xalloc(nOldPaths + lenOldPaths);
memmove(oldFontPath, tmpFontPath, nOldPaths + lenOldPaths); memmove(oldFontPath, tmpFontPath, nOldPaths + lenOldPaths);

6
include/dixfont.h
View File

@ -105,8 +105,10 @@ extern int SetFontPath(ClientPtr /*client*/,
extern int SetDefaultFontPath(char * /*path*/); extern int SetDefaultFontPath(char * /*path*/);
extern unsigned char *GetFontPath(int * /*count*/, extern int GetFontPath(ClientPtr client,
int * /*length*/); int *count,
int *length,
unsigned char **result);
extern int LoadGlyphs(ClientPtr /*client*/, extern int LoadGlyphs(ClientPtr /*client*/,
FontPtr /*pfont*/, FontPtr /*pfont*/,

2
include/os.h
View File

@ -155,7 +155,7 @@ extern void AddEnabledDevice(int /*fd*/);
extern void RemoveEnabledDevice(int /*fd*/); extern void RemoveEnabledDevice(int /*fd*/);
extern void OnlyListenToOneClient(ClientPtr /*client*/); extern int OnlyListenToOneClient(ClientPtr /*client*/);
extern void ListenToAllClients(void); extern void ListenToAllClients(void);

32
os/access.c
View File

@ -1493,17 +1493,20 @@ LocalClientCredAndGroups(ClientPtr client, int *pUid, int *pGid,
#endif #endif
} }
static Bool static int
AuthorizedClient(ClientPtr client) AuthorizedClient(ClientPtr client)
{ {
int rc;
if (!client || defeatAccessControl) if (!client || defeatAccessControl)
return TRUE; return Success;
/* untrusted clients can't change host access */ /* untrusted clients can't change host access */
if (XaceHook(XACE_SERVER_ACCESS, client, DixWriteAccess) != Success) rc = XaceHook(XACE_SERVER_ACCESS, client, DixManageAccess);
return FALSE; if (rc != Success)
return rc;
return LocalClient(client); return LocalClient(client) ? Success : BadAccess;
} }
/* Add a host to the access control list. This is the external interface /* Add a host to the access control list. This is the external interface
@ -1515,10 +1518,11 @@ AddHost (ClientPtr client,
unsigned length, /* of bytes in pAddr */ unsigned length, /* of bytes in pAddr */
pointer pAddr) pointer pAddr)
{ {
int len; int rc, len;
if (!AuthorizedClient(client)) rc = AuthorizedClient(client);
return(BadAccess); if (rc != Success)
return rc;
switch (family) { switch (family) {
case FamilyLocalHost: case FamilyLocalHost:
len = length; len = length;
@ -1612,11 +1616,12 @@ RemoveHost (
unsigned length, /* of bytes in pAddr */ unsigned length, /* of bytes in pAddr */
pointer pAddr) pointer pAddr)
{ {
int len; int rc, len;
register HOST *host, **prev; register HOST *host, **prev;
if (!AuthorizedClient(client)) rc = AuthorizedClient(client);
return(BadAccess); if (rc != Success)
return rc;
switch (family) { switch (family) {
case FamilyLocalHost: case FamilyLocalHost:
len = length; len = length;
@ -1873,8 +1878,9 @@ ChangeAccessControl(
ClientPtr client, ClientPtr client,
int fEnabled) int fEnabled)
{ {
if (!AuthorizedClient(client)) int rc = AuthorizedClient(client);
return BadAccess; if (rc != Success)
return rc;
AccessEnabled = fEnabled; AccessEnabled = fEnabled;
return Success; return Success;
} }

9
os/connection.c
View File

@ -1081,11 +1081,15 @@ RemoveEnabledDevice(int fd)
* This routine is "undone" by ListenToAllClients() * This routine is "undone" by ListenToAllClients()
*****************/ *****************/
void int
OnlyListenToOneClient(ClientPtr client) OnlyListenToOneClient(ClientPtr client)
{ {
OsCommPtr oc = (OsCommPtr)client->osPrivate; OsCommPtr oc = (OsCommPtr)client->osPrivate;
int connection = oc->fd; int rc, connection = oc->fd;
rc = XaceHook(XACE_SERVER_ACCESS, client, DixGrabAccess);
if (rc != Success)
return rc;
if (! GrabInProgress) if (! GrabInProgress)
{ {
@ -1106,6 +1110,7 @@ OnlyListenToOneClient(ClientPtr client)
XFD_ORSET(&AllSockets, &AllSockets, &AllClients); XFD_ORSET(&AllSockets, &AllSockets, &AllClients);
GrabInProgress = client->index; GrabInProgress = client->index;
} }
return rc;
} }
/**************** /****************