On Friday 18 March 2005 14:29, I wrote: > As Timothy pointed out and I should have known, currently there is no > window-level security for X programs. So we just mmap video memory, > provide a way of flushing the render pipeline, and we're done. > > We should however, keep the window security question alive as a > background project. To me, it looks like a bleeding wound in X. Doing > something about it would be a worthwhile long term project.
OK, I talked this over with some folks here and we noticed that there is a much easier problem to tackle with a more clearcut benefit. Right now, a single buggy or malicious unprivileged 3D program can lock up your whole desktop if it fails to release the hardware lock, and there is not a lot you can do about it other than restarting X. This we can fix, by moving the synchronization into the kernel as I described earlier, and I think we can even do it within the current DRI framework. We can fix this because of our complete reliance on the indirect DMA command interface for hardware access. So I think we ought to plan on this right from the beginning. Regards, Daniel _______________________________________________ Open-graphics mailing list [email protected] http://lists.duskglow.com/mailman/listinfo/open-graphics List service provided by Duskglow Consulting, LLC (www.duskglow.com)
