Wayland Security Module Gets Prototyped By Tizen

Written by Michael Larabel in Wayland on 9 March 2015 at 09:00 AM EDT. 15 Comments
WAYLAND
Covered last year on Phoronix was LibWSM: Wayland Security Modules For Better Wayland Security. The Wayland Security Module library was presented last year at XDC2014 as a way of bettering the Wayland compositor security. While back then it was talked about as a possibility, a Tizen developer has been working on the WSM code to make it a working reality.

Manuel Bachmann of the Tizen Project is requesting comments on the code he's been working on for libWSM for handling of unprivileged clients wanting to access privileged interfaces.

Bachmann wrote on the new mailing list thread, "We know all this was possible with X11 due to protocol flaws. Wayland is a lot more secure, but there are still legitimate third-party clients wanting access to these privliegied features (such as the 'Pick a color from the screen' tool of GIMP) ! Unfortunately, Wayland Compositors have no generic way to validate them. So, how do we allow GIMP, for instance, to work ? libwsm lives in the compositor (eventually in a plugin) and is able to takes decisions based on various configurable policies. Policies can be shared among compositors."

The current code for this Wayland Security Module can be found on GitHub and embedded below is a video demo of the current WSM work.

It's great to see Wayland developers continuing to be proactive about security and learning from some of the security fails of X11/X.Org.
15 Comments
Related News
Wayland 1.23 Alpha Released With OpenBSD Support & New APIs
Wine's Wayland Driver Will Finally Set The Window Title
Niri 0.1.5 Scrollable-Tiling Wayland Compositor Adds New Animations
Miracle-WM 0.2 Released For Mir-Based Wayland Compositor
Wayland Protocols 1.35 Introduces Alpha Modifier Protocol, Tablet-V2 As Stable
XWayland 24.1 RC Released With Explicit Sync, Improved Rootful & GLAMOR Optimizations
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
Rust-Written LAVD Kernel Scheduler Shows Promising Results For Linux Gaming
Fedora Linux 40 Cleared For Release Next Week
Fedora Linux 40 Available For Download As A Wonderful Upgrade
AMD: "Additional Parts Of The Radeon Stack To Be Open Sourced Throughout The Year"
Mozilla Finally Begins Offering Firefox ARM64 Linux Binaries
Linux 6.10 Preps A Kernel Panic Screen - Sort Of A "Blue Screen of Death"
openSUSE Factory Achieves Bit-By-Bit Reproducible Builds
MPV 0.38 Media Player Released With New Options & Fixes