[Dri-users] unprivileged X server

Enrico Weigelt, metux IT consult enrico.weigelt at gr13.net
Wed Dec 31 04:14:20 PST 2014


Hi folks,

is it already possible to run an fully unprivileged X server ?
(w/o suid flag).

Just had a try:

* created an new user
* made copy of /usr/bin/X
* given the new user access to the /dev/ttyX the Xserver wants to access
* given him access to /dev/dri/card0

But the Xserver died. strace showed up it gets permission denied
on certain ioctl()s ... haven't checked deeper which device it
actually was. The bad side: it locks up the corresponding tty
(still can switch back remotely, via chtty, but even deallocvt
doesnt remove that broken tty)

My kernel version:

Linux version 3.13.0-39-generic (buildd at roseapple) (gcc version 4.8.2
(Ubuntu 4.8.2-19ubuntu1) ) #66-Ubuntu SMP Tue Oct 28 13:31:23 UTC 2014

X server version:

X.Org X Server 1.15.1
Release Date: 2014-04-13


cu
--
Enrico Weigelt,
metux IT consulting
+49-151-27565287


More information about the dri-users mailing list