Xnamespace: whitelist certain operations on (real) root window
CreateWindow() needs access to root window, in order to create top level windows. Whitelisting this operation. Signed-off-by: Enrico Weigelt, metux IT consult <info@metux.net>
This commit is contained in:
Enrico Weigelt, metux IT consult
parent
df56b26ed4
commit
fdba5d405d
|
|
@ -9,6 +9,10 @@
|
||||||
#include "namespace.h"
|
#include "namespace.h"
|
||||||
#include "hooks.h"
|
#include "hooks.h"
|
||||||
|
|
||||||
|
static int checkAllowed(Mask requested, Mask allowed) {
|
||||||
|
return ((requested & allowed) == requested);
|
||||||
|
}
|
||||||
|
|
||||||
void hookResourceAccess(CallbackListPtr *pcbl, void *unused, void *calldata)
|
void hookResourceAccess(CallbackListPtr *pcbl, void *unused, void *calldata)
|
||||||
{
|
{
|
||||||
XNS_HOOK_HEAD(XaceResourceAccessRec);
|
XNS_HOOK_HEAD(XaceResourceAccessRec);
|
||||||
|
|
@ -33,6 +37,48 @@ void hookResourceAccess(CallbackListPtr *pcbl, void *unused, void *calldata)
|
||||||
if (XnsClientSameNS(subj, obj))
|
if (XnsClientSameNS(subj, obj))
|
||||||
goto pass;
|
goto pass;
|
||||||
|
|
||||||
|
// check for root windows (screen or ns-virtual)
|
||||||
|
if (param->rtype == X11_RESTYPE_WINDOW) {
|
||||||
|
WindowPtr pWindow = (WindowPtr) param->res;
|
||||||
|
|
||||||
|
/* white-listed operations on actual root window */
|
||||||
|
if (pWindow && (pWindow == pWindow->drawable.pScreen->root)) {
|
||||||
|
switch (client->majorOp) {
|
||||||
|
case X_CreateWindow:
|
||||||
|
if (checkAllowed(param->access_mode, DixAddAccess))
|
||||||
|
goto pass;
|
||||||
|
break;
|
||||||
|
|
||||||
|
case X_CreateGC:
|
||||||
|
case X_CreatePixmap:
|
||||||
|
if (checkAllowed(param->access_mode, DixGetAttrAccess))
|
||||||
|
goto pass;
|
||||||
|
break;
|
||||||
|
|
||||||
|
// we reach here when destroying a top-level window:
|
||||||
|
// ProcDestroyWindow() checks whether one may remove a child
|
||||||
|
// from it's parent.
|
||||||
|
case X_DestroyWindow:
|
||||||
|
if (param->access_mode == DixRemoveAccess)
|
||||||
|
goto pass;
|
||||||
|
break;
|
||||||
|
|
||||||
|
case X_TranslateCoords:
|
||||||
|
case X_QueryTree:
|
||||||
|
goto pass;
|
||||||
|
|
||||||
|
case X_ChangeWindowAttributes:
|
||||||
|
case X_QueryPointer:
|
||||||
|
goto reject;
|
||||||
|
|
||||||
|
case X_SendEvent:
|
||||||
|
/* send hook needs to take care of this */
|
||||||
|
goto pass;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
reject: ;
|
||||||
char accModeStr[128];
|
char accModeStr[128];
|
||||||
LookupDixAccessName(param->access_mode, (char*)&accModeStr, sizeof(accModeStr));
|
LookupDixAccessName(param->access_mode, (char*)&accModeStr, sizeof(accModeStr));
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue