frederik
/
xserver
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Xnamespace: filter transparency 

Silently drop transparency flag if namespace isn't allowed to use it.

Signed-off-by: Enrico Weigelt, metux IT consult <info@metux.net>
This commit is contained in:
Enrico Weigelt, metux IT consult 2025-03-19 10:50:56 +01:00
parent 14008eb698
commit 86dd87d46c
6 changed files with 35 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
Xext/namespace/config.c
View File

@ -8,6 +8,7 @@
struct Xnamespace ns_root = { struct Xnamespace ns_root = {
.allowMouseMotion = TRUE, .allowMouseMotion = TRUE,
.allowShape = TRUE, .allowShape = TRUE,
.allowTransparency = TRUE,
.allowXInput = TRUE, .allowXInput = TRUE,
.allowXKeyboard = TRUE, .allowXKeyboard = TRUE,
.builtin = TRUE, .builtin = TRUE,

29
Xext/namespace/hook-resource.c Normal file
View File

@ -0,0 +1,29 @@
#define HOOK_NAME "resource"
#include <dix-config.h>
#include "dix/dix_priv.h"
#include "Xext/xacestr.h"
#include "namespace.h"
#include "hooks.h"
void hookResourceAccess(CallbackListPtr *pcbl, void *unused, void *calldata)
{
XNS_HOOK_HEAD(XaceResourceAccessRec);
// special filtering for windows: block transparency for untrusted clients
if (param->rtype == X11_RESTYPE_WINDOW) {
WindowPtr pWindow = (WindowPtr) param->res;
if (param->access_mode & DixCreateAccess) {
if (!subj->ns->allowTransparency) {
pWindow->forcedBG = TRUE;
goto pass;
}
}
}
pass:
// request is passed as it is (or already had been rewritten)
param->status = Success;
}

1
Xext/namespace/hooks.h
View File

@ -29,6 +29,7 @@ void hookExtAccess(CallbackListPtr *pcbl, void *unused, void *calldata);
void hookExtDispatch(CallbackListPtr *pcbl, void *unused, void *calldata); void hookExtDispatch(CallbackListPtr *pcbl, void *unused, void *calldata);
void hookInitRootWindow(CallbackListPtr *pcbl, void *unused, void *calldata); void hookInitRootWindow(CallbackListPtr *pcbl, void *unused, void *calldata);
void hookReceive(CallbackListPtr *pcbl, void *unused, void *calldata); void hookReceive(CallbackListPtr *pcbl, void *unused, void *calldata);
void hookResourceAccess(CallbackListPtr *pcbl, void *unused, void *calldata);
void hookSelectionFilter(CallbackListPtr *pcbl, void *unused, void *calldata); void hookSelectionFilter(CallbackListPtr *pcbl, void *unused, void *calldata);
void hookWindowProperty(CallbackListPtr *pcbl, void *unused, void *calldata); void hookWindowProperty(CallbackListPtr *pcbl, void *unused, void *calldata);

1
Xext/namespace/meson.build
View File

@ -7,6 +7,7 @@ libxserver_namespace = static_library(
'hook-ext-dispatch.c', 'hook-ext-dispatch.c',
'hook-init-rootwindow.c', 'hook-init-rootwindow.c',
'hook-receive.c', 'hook-receive.c',
'hook-resource.c',
'hook-selection.c', 'hook-selection.c',
'hook-windowproperty.c', 'hook-windowproperty.c',
'namespace.c', 'namespace.c',

3
Xext/namespace/namespace.c
View File

@ -36,7 +36,8 @@ NamespaceExtensionInit(void)
AddCallback(&SelectionFilterCallback, hookSelectionFilter, NULL) && AddCallback(&SelectionFilterCallback, hookSelectionFilter, NULL) &&
XaceRegisterCallback(XACE_EXT_DISPATCH, hookExtDispatch, NULL) && XaceRegisterCallback(XACE_EXT_DISPATCH, hookExtDispatch, NULL) &&
XaceRegisterCallback(XACE_EXT_ACCESS, hookExtAccess, NULL) && XaceRegisterCallback(XACE_EXT_ACCESS, hookExtAccess, NULL) &&
XaceRegisterCallback(XACE_RECEIVE_ACCESS, hookReceive, NULL))) XaceRegisterCallback(XACE_RECEIVE_ACCESS, hookReceive, NULL) &&
XaceRegisterCallback(XACE_RESOURCE_ACCESS, hookResourceAccess, NULL)))
FatalError("NamespaceExtensionInit: allocation failure\n"); FatalError("NamespaceExtensionInit: allocation failure\n");
/* Do the serverClient */ /* Do the serverClient */

1
Xext/namespace/namespace.h
View File

@ -16,6 +16,7 @@ struct Xnamespace {
Bool builtin; Bool builtin;
Bool allowMouseMotion; Bool allowMouseMotion;
Bool allowShape; Bool allowShape;
Bool allowTransparency;
Bool allowXInput; Bool allowXInput;
Bool allowXKeyboard; Bool allowXKeyboard;
Bool superPower; Bool superPower;