On Wednesday 16 March 2005 18:44, Daniel Phillips wrote: > On Wednesday 16 March 2005 07:54, Nicolai Haehnle wrote: > > On Wednesday 16 March 2005 12:08, Daniel Phillips wrote: > > > On Tuesday 15 March 2005 18:43, Nicolai Haehnle wrote: > > > > If we enforce window boundaries (which is btw not enforced by any > > > > graphics driver on Linux that I know of), we would also have to > > > > think about how mmap()'ing the framebuffer could (or couldn't) > > > > work. > > > > > > Can you do that? If a normal task can do that, then forget about > > > per-window security, it's impossible. But I have a feeling it's > > > not allowed. > > > > Well, software rendering fallbacks need some way to read to and write > > from the framebuffer. All current DRI drivers do this via a mapping > > of the framebuffer. > > But that is a privileged task. It is not a security worry as long as > it's not full of bugs.
I'm afraid I don't understand. The OpenGL implementation *will* run in an unprivileged context (it's loaded as a dynamic library into normal process space), and it *will* have to do software rendering, so software rendering definitely cannot be a privileged task. cu, Nicolai
pgphayFgy1Wre.pgp
Description: PGP signature
_______________________________________________ Open-graphics mailing list [email protected] http://lists.duskglow.com/mailman/listinfo/open-graphics List service provided by Duskglow Consulting, LLC (www.duskglow.com)
