sway: new policy module#1037
Conversation
38a0d14 to
f49a66f
Compare
|
w.r.t to needing |
d90b59c to
0640d78
Compare
Signed-off-by: Rahul Sandhu <nvraxn@gmail.com>
Signed-off-by: Rahul Sandhu <nvraxn@gmail.com>
Signed-off-by: Rahul Sandhu <nvraxn@gmail.com>
|
There's a lot of Wayland module related changes now that I'm using it in an actual compositor, so I'll split that out into a separate PR as that can be merged before this (ideally we can get some of the base sway tools in this one too, e.g. swaynag and swaymsg). |
I'm not familiar with these aspects of wayland, but I suspect they should be separate too.
Perhaps a template would help with the repetition. |
Very WIP atm. PR created early such that others can give feedback as it progresses given that Wayland is still very novel in reference policy.
@pebenito Couple questions while I'm working on this:
$1_sway_tapproach - do you think this is useful? I noticed that we don't rely solely on UBAC for protection (e.g. with$1_systemd_tand hence I think given the scope of the compositor this might be desirable.wayland_compositortypeattribute manage files perms onwayland_compositor_tmpfs_type, but decided against this so that different running compositors can't "contaminate" each others tmpfs's - I don't think this is a huge deal, but it adds a bit of repetition for consumers of the Wayland module (each compositor needs to give itself manage file perms + map on its tmpfs). Would you like me to change this? I personally think having them be separate is the best approach, but of course open to suggestions/ideas.Anyone else please also free to leave reviews and/or comment, very much open to opinions for this.
cc @aerusso @0xC0ncord
Thanks!