Originally posted by gotar
View Post
Yes dbus you have selinux, apparmor and other linux security module integration.
Wayland protocol has done a reduced attack surface compared to X11. So not quite the same as please don't do bad things.
gotar interesting problem right. Why do libwsm for Wayland if nothing needing authorization is ever going over the Wayland protocol because it all has been pushed over dbus. Yes 7 years ago you see a lot of items like screen-capture feature requests killed from Wayland issue list.
Lets take a close look at for one min.
From here
WSM_SCREENSHOT default: soft-deny Ability to take a still screenshot of the whole screen
WSM_SCREENSHARING default: soft-deny Ability to record the screen continuously
WSM_VIRTUAL_KEYBOARD allow/inject-only/filter-only/soft-allow/soft-deny/deny default: soft-deny Ability to inject or filter input on the keyboard
WSM_VIRTUAL_POINTING default: soft-deny Ability to modify the position of the pointer and simulate clicks
WSM_GLOBAL_KEYBOARD_SEQUENCE object: key sequence default: soft-deny Ability to receive global keyboard sequences when not on focus
WSM_FORWARD_RESERVED_KEYBOARD_SEQUENCE object: key sequence default: soft-deny Ability to receive reserved keyboard sequences instead of compositor when on focus
All in xdg-desktop-portal. or atk so over dbus for normal applications. Yes does ask if virtual-keyboard-unstable-v1.xml should be dropped from wayland protocol.
WSM_FULLSCREEN default: soft-allow Ability to use the entire screen
WSM_CLIPBOARD_COPY default: allow Ability to copy to the clipboard
WSM_CLIPBOARD_PASTE default: soft-deny Ability to paste from the clipboard
WSM_RAISE_FOCUS default: soft-allow Ability to raise the window and grab focus programmatically
The next two are dbus libnotify uses the dbus protocol.
WSM_NOTIFICATION_API default: soft-allow Ability to use the libnotify API to raise notifications
WSM_CUSTOM_NOTIFICATION_API default: soft-deny Ability to build custom notification UIs and have them displayed (i.e., raised and positioned for a set duration) by the compositor Possible future capabilities not related to the Graphic Stack
These device accesses
DSM_RECORD_VIDEO default: soft-deny Ability to read data on video capture devices
DSM_RECORD_AUDIO default: soft-deny Ability to read data on audio capture devices
Will not be in the Wayland protocol.
From here
DSM_USE_PASSWORD_STORE default: soft-allow Ability to use password store APIs
DSM_PRIVILEGED_HEADLESS default: soft-allow Ability to perform privileged actions without having a GUI
DSM_SESSION_LOCKER default: deny Ability to lock the user session
DSM_AUTHENTICATION_UI default: deny Ability to act as an authentication UI
DSM_PERMISSION_UI default: deny Ability to act as a permission UI
Dbus again none of this need to be done by Wayland protocol.
Yes libwsm features not routed by dbus in a Wayland solution.
WSM_FULLSCREEN default: soft-allow Ability to use the entire screen
WSM_CLIPBOARD_COPY default: allow Ability to copy to the clipboard
WSM_CLIPBOARD_PASTE default: soft-deny Ability to paste from the clipboard
WSM_RAISE_FOCUS default: soft-allow Ability to raise the window and grab focus programmatically
Very short list right.
Yes everything already over dbus basically has libwsm duplicating functionality. libwsm stalled mostly it does not make sense due to how much the wayland protocol is not implementing or will have a default state of deined.
Comment